Postal Bulletin: Be Creative with your PINs and Passphrases
It’s been proven that password reuse is a leading cause of account compromise.
Corporate Information Security Office
Postal Bulletin focuses on social engineering risks
Social engineering schemes target Postal Service employees and contractors with deceptive tactics that convince individuals to reveal sensitive information or compromise systems.
USPS: Use Email to Access LiteBlue? You’ll Need to Make a Change
Employees who already use one of the other methods are not affected by this change.
USPS OIG Report: Legacy Systems at the U.S. Postal Service
Background The U.S. Postal Service performs a variety of operations, dependent on its vast information technology infrastructure. This infrastructure encompasses 761 systems that the Postal Service strives to maintain and secure from network attacks. In support of the Delivering for America plan, the Postal Service plans to invest in modernizing and enhancing cybersecurity technologies, but it is still … Read more
Postal Bulletin: Beware of Text Message Scams
Phishing is the fraudulent practice of sending emails or other messages claiming to be from trustworthy companies. These messages encourage individuals to disclose personal information, such as passwords and credit card numbers. Many people don’t realize that cybercriminals can also deliver phishing attacks through text messages, which is known as smishing. These types of scams … Read more
USPS updates security policies
July 22, 2021 The Postal Service has updated Handbook AS-805, Information Security, which details the organization’s security policies for technology assets and information resources. The updates include several new topics, including: The Executive Cyber Risk Committee, which evaluates and monitors cyber risk management activities and their alignment with the overall corporate risk profile; Contractual security … Read more
USPS OIG Report: Integrity of the Social Media Presence
Objective Our objective was to assess the U.S. Postal Service’s social media and digital channel security posture. We also assessed whether policies are in place to protect the integrity of the Postal Service’s official social media and digital channel presence. The Postal Service uses social media to promote its brand, products, and services and to … Read more
Postal Bulletin: Protecting USPS Networks
When plugging a smart mobile device (e.g., phone, tablet, or wearable technology) into a computer’s USB port, the two devices can exchange information or malware.1 At the United States Postal Service®, this could put sensitive information into the wrong hands and potentially affect our business and reputation. To prevent a security breach, follow these important … Read more