We have a wonderful opportunity to teach students to Annotate digitally. This pilot is used through iLearn. It is very simple to set up. Basically, you just add an activity in iLearn. See full instructions below:
‘Tis the season. I just received a notification that Pure Michigan’s account was compromised:
December 20, 2019
As most of you are aware, Wednesday, December 18th an email was sent out appearing to be from Pure Michigan / Michigan Festivals and Events regarding updating your membership information. Unfortunately our account with Constant Contact was compromised. Constant Contact recognized that it was a faux email, and quickly disabled the provided links so others were not at risk. We have taken the necessary measures to secure the account again.
While we are needing your updated information, please contact our office directly for forms.
Please accept our apology in this error.
Wishing everyone Happy Holidays
Mike Szukhent Michigan Festivals and Events Association President, CEO
This follows on the heels of the news that 2019 brought us at least 948 reported attacks. Oh, and 1,500 Ring passwords have been discovered to be available via the dark web (in other words, there are 1,500 known user name and password combinations from Ring available to the bad guys).
This follows the news that MysteryScience had a data breach. A couple of our users reached out to me when they received an email stating that MysterScience had been breached and telling them to reset their password. I reached out to MysteryScience to confirm that there was a breach. I also reminded people to NOT follow the link in the email. Instead, always go to the site by typing in the URL yourself. This way, if the email is legitimate, you’ll be prompted to change your password. If the email was a phishing attack, you haven’t fallen for it.
You can reset your password from the link in the email we sent out to all users affected by this breach. Alternatively, you can go directly to our website at www.mysteryscience.com, and it will prompt you to reset your password there.
I hope this clarifies–and I’m sure glad you reached out to confirm!
All of this is a good reminder to never use the same password twice. This can be accomplished via utilizing a good password manager (which I’ve been advocating for since 2016).
A couple of incidents remind us of why you should never reuse passwords.
Users have been receiving notice from MysteryScience about a breach. They are asking users to change their password.
*Reminder, do NOT click on the link in the email to change your password. Rather, go to the web site (in this case MysterScience) and use the Change password feature within the web site. This is a simple protection against phishing.
Billions of email addresses and plain text passwords have been leaked online by an unnamed party, putting countless internet users at risk from credential stuffing and other attacks.
In total, the database contained 2.7 billion email addresses, and plain text passwords for more than one billion of them — providing a perfect starting point for a credential stuffing campaign.
“Since many employees share passwords between their work and personal accounts, this leak not only problematic for the individuals who own the accounts, but a big risk for enterprises globally as well,”…
Quit wasting time and get started using a tool that is designed for teaching and learning by people passionate about education! iLearn is built for classroom activities. We now offer pdf and web page annotation, secured and shareable assessments, writing peer review workshops with rubrics, interactive H5P activities, and so much more!
ONE CLICK LOGIN
Log in with your Google Account Utilize Google Single Sign-on so that your students can access learning materials quickly.
SECURE BROWSER APP
Stop cheating before it happens The iLearn Secure Browser App prevents cheating by locking down Chromebooks.
MISTAR GRADE EXPORT
Publish grades directly to MISTAR Save time and be more efficient. Let iLearn grade your assessments and with the click of a button transfer grades to MISTAR.
With the holidays fast approaching, a rise in phishing attacks is traditionally seen as well. Phishing attacks can be frustrating to deal with. The best defense is to not fall for them in the first place. Unfortunately, we are seeing phishing attacks because “better” (i.e. harder to detect) and more polished.
What Phishing Does
Phishing is an attempt to do one of two things
Tricking users into revealing their credentials.
Getting users to install malware.
Quite frankly, your credentials are very valuable. For many of our users, district credentials lead to student information, lots of valuable district information and more. Plus, many users “reuse” passwords. So, learning a user name and password on one site can lead to the ability to log into other sites.
Protecting Against Phishing
We employ several strategies to prevent phishing attempts from ever reaching our users. However, even the best of all of these combined will not be perfect. Occasionally, phishing attempts will land in your inbox.
Tips to Identify Phishing Attempts
Be suspicious of “odd” grammar and punctuation
Be suspicious of “odd” wording
You probably didn’t “win” a gift card (especially if you never entered a contest)
Be wise about contests
Be aware of “urgent” deadlines
Watch out for shortened URL’s
Look at where the link is actually taking you
Carefully review the actual URL of the site that you are on
Spear phishing is targeted at specific individuals. Unlike phishing (which usually blankets a wide variety of users), spear phishing aims to trick high profile targets into giving up their credentials.
Preventing Becoming a Victim
It is important to prevent becoming a victim.
Use the Tips to Identify above.
Turn on 2-Step or 2-Factor Authentication.
Use a Password Manager.
Be suspicious (especially when on a mobile device).
Instead of clicking on a link, enter the URL of a website that you want to visit (or use a known bookmark)