Social media security

Departments and other campus organizations at the University of Montana continue to increase their social media presence on Facebook.  With that in mind, it is important to remember that social media is another potential attack vector that can be exploited by malicious actors.  As an example, the University of Michigan was recently targeted in one of these attacksWe advise careful review of social media initiatives to ensure those that post on Facebook as representatives of the university are aware of the dangers.   

Here are some tips provided by Facebook stemming from the University of Michigan situation: 

  • Facebook will never send official communication via Messenger. 

  • Never enter your password anywhere but facebook.com. Scammers often set up fake pages to look like a FB login page so it’s important to always check that you’re really logging into www.facebook.com. 

  • Watch out for fake pages/apps as well as “official” links using URL shorteners such as the gl links from the phishing messages. 

  • Try to keep the number of admins to a minimum 

  • Ensure that Admin and Editor roles have login approvals turned on. This will add an additional layer of security when someone attempts to login from an unrecognized device.