Follow these practices to protect your password. If someone else gets a hold of your password or credentials, you have no control over the information and processes that they can access with your details.
We recommend using as many characters as the service allows.
Each password, from your UniKey to your personal email, should be different from one another. This ensures that if one password is compromised, your other accounts aren't vulnerable.
Record them only in a private place. Consider a password manager app, such as KeePass, LastPass, 1Password and Dashlane.
Many sites allow you to reset your password if you correctly answer security questions about yourself. Since this information is readily available online, we recommend avoiding easy questions.
This option requires you to authenticate with both a password and another ‘factor’ (typically your phone).
Your UniKey is your ‘digital key’ to a wide range of University online services and resources. Before providing these credentials to any app, make sure that the app is safe and legitimate.
Ensure that the app is created or endorsed by the University. If not, you would be putting your information at risk of being stolen or misused.
University login pages are branded with the University crest and often include links to relevant University webpages.
Before entering your UniKey and password on a website, check that the URL is ‘sydney.edu.au’ or ‘usyd.edu.au’.
Attackers sometimes try to hide or impersonate a website by using hyphens ‘ – ‘ or groups of words that seem appropriate, for example: sydney.edu.au.notavirus.org or sydney-edu-au.freewebsite.com.
If you're not sure about a website or app that’s asking for your UniKey details, contact the ICT Service Desk.
During your time here at the University, you may come across information of a confidential or sensitive nature through your study or research.
Some examples are personal identity documents like your passport and driver's licence, health and financial information, visa details, academic records and your student ID.
It’s important that you handle this information carefully at all stages so your data remains protected.
Be sure you only share data with those who require or are authorised to access it. Always store this data in a secure location, such as an encrypted physical drive or on your University network drive.
Always have the appropriate protection for your devices and storage. Laptops, tablets, phones, even USB sticks/thumb drives should be encrypted.
Your online presence generates lots of data that can be harvested and misused. There are some simple ways to protect your information.
Remember, it’s quick to click but safer to open a browser and go directly to the actual website.
To report a cyber security incident, give us a call or send an email.
Call the ICT Service Desk at 1800 SYD UNI (1800 793 864) or +61 2 8627 1444 (Option 4 for ICT). Available 7am to 9pm, Monday to Friday and 9am to 5pm, Saturday, with limited out-of-hours support.
You can also submit an online enquiry or email ict.support@sydney.edu.au.
Visit one of our staffed Learning Hubs or seek support at the Fisher Library, Level 3 Service Hub, available from 9am to 5pm, Monday to Friday.
