Cyber attackers are getting smarter and can sometimes get past basic login protections, such as text messages, phone calls or simple Duo push approvals.
To help protect those who work and study at Case Western Reserve, the university recently added Verified Duo Push for logging into HCM. This extra step aims to confirm an individual's identity and helps prevent attackers from tricking users into approving a login they didn’t start.
Users can also take action to boost their protection by implementing a FIDO2 passkey or security key—a small USB or wireless device that makes signing in faster and safer by blocking phishing and fake login attempts for personal accounts—including email, social media and banking sites.
To help protect data and other sensitive information, users are encouraged to:
- Log in to the Duo device management portal;
- Remove old or unfamiliar devices;
- Delete less secure options like SMS or voice calls; and
- Add a FIDO2 security key or Verified Duo Push as their primary method.
For questions, contact the Office of Information Security at askinfosec@case.edu.
