An official website of the United States government
Here's how you know
A .mil website belongs to an official U.S. Department of Defense organization in the United States.
A lock (lock ) or https:// means you’ve safely connected to the .mil website. Share sensitive information only on official, secure websites.

News from around the Fleet

In the office? Here are some cybersecurity best practices while logged on to a Navy network

11 October 2022

From Office of the Deputy Chief of Naval Operations for Information Warfare

The Navy begins observance of the second week of Cybersecurity Awareness Month today, focusing on best practices to exercise while logged onto a Navy network.

“Cybersecurity is a Navy priority and commander’s business,” said Rear Adm. Tracy Hines, director of the Navy’s Enterprise Networks and Cybersecurity Division. “Any individual logging on to a Navy information system is immediately on the front lines of the cyber battlespace.”

In keeping with the National Cybersecurity Alliance’s Cybersecurity Awareness Month theme of “See Yourself in Cyber,” this week the Navy is asking Sailors and staff to see themselves in cyber while in the office or “on duty.”

Cybercriminals often rely on operator mistakes to gain access to systems; 95 percent of all cybersecurity breaches are due to human error.

“Cyber compliance alone will not keep us safe,” said Rear Adm. Hines. “The annual cyber awareness challenge does not equate to the automatic defense of our networks, and that’s where our people come in. It’s on all of us to protect our information systems.”

Here are some best practices to keep in mind while at your desk:

- Every member of the Navy team shares responsibility in protecting the Navy’s systems and information. Remember that every time you check your e-mail, access a shared drive, or log onto a network, you are immediately a cyber warrior, and cybersecurity is the best means of defense.

- Verify links and files before clicking or downloading; both are common attack vectors for nation states, criminals, and insider threats.

- When clicking on hyperlinks in emails, hover over the link to verify authenticity. Also ensure that URLs begin with “https.” The “s” indicates encryption is enabled to protect users’ information.

- Always check the “To” and “Cc” line to ensure information is being sent to those with a need to know.

- Make passwords complex and change them frequently. Strong passwords include one uppercase letter, one lowercase letter, at least one number and 11 or more characters. Never write passwords down.

- Keep your computer healthy. This includes reading User Awareness Bulletins and acting as necessary to install software updates and apply security patches when prompted.

- Keep your Common Access Card (CAC) in your possession at all times. Your CAC serves as part one of two-factor authentication; it is something you have. Your pin, something only you know, serves as part two. A bad actor in possession of even one part of two-factor authentication increases the likelihood of access.

- Report phishing or suspicious activity. According to the National Cybersecurity Alliance, only 22 percent of email recipients report phishing. Utilize your Information Systems Security Manager and cybersecurity professionals for support.

Since 2004, the President of the United States and Congress have declared October Cybersecurity Awareness Month, helping individuals protect themselves online as threats to technology and confidential data become more common. Celebrating its nineteenth year, the campaign has grown globally since its inception, reaching consumers, small and medium-sized businesses, corporations, and families in over 75 countries and territories.

For more information on the Navy’s Cybersecurity Awareness Campaign, visit doncio.navy.mil and search “Cybersecurity Awareness Month.”

 

Google Translation Disclaimer

  • Google Translate, a third party service provided by Google, performs all translations directly and dynamically.
  • Commander, U.S. Navy Region Korea, cnrk.cnic.navy.mil has no control over the features, functions, or performance of the Google Translate service.
  • The automated translations should not be considered exact and should be used only as an approximation of the original English language content.
  • This service is meant solely for the assistance of limited English-speaking users of the website.
  • Commander, U.S. Navy Region Korea, cnrk.cnic.navy.mil does not warrant the accuracy, reliability, or timeliness of any information translated.
  • Some items cannot be translated, including but not limited to image buttons, drop down menus, graphics, photos, or portable document formats (pdfs).
  • Commander, U.S. Navy Region Korea, cnrk.cnic.navy.mil does not directly endorse Google Translate or imply that it is the only language translation solution available to users.
  • All site visitors may choose to use similar tools for their translation needs. Any individuals or parties that use Commander, U.S. Navy Region Korea, cnrk.cnic.navy.mil content in translated form, whether by Google Translate or by any other translation services, do so at their own risk.
  • IE users: Please note that Google Translate may not render correctly when using Internet Explorer. Users are advised to use MS Edge, Safari, Chrome, or Firefox browser to take full advantage of the Google Translate feature.
  • The official text of content on this site is the English version found on this website. If any questions arise related to the accuracy of the information contained in translated text, refer to the English version on this website, it is the official version.

Commander, U.S. Navy Region Korea   |   PSC 478 Box 1   |   FPO AP, 96212-0001
Official U.S. Navy Website