Ready For Anything: Responding To A Phishing Attack

A person pointing at a digital lock icon superimposed on binary code, symbolizing cybersecurity.

January 20, 2021 | CSD Team

Be Prepared for this Cybersecurity Event

How To Prevent Phishing Attacks:

Implement an awareness and training program for staff
Place interval controls to prevent any one person from having unrestricted, unmonitored information
Institute policies forbidding the transfer of financial assets and personal information unless accompanied by verbal or in-person confirmation from stakeholders
Use caution with unsolicited calls or emails from anyone asking for internal information
Use anti-virus software, firewalls, and spam filters as directed by IT staff
Use complex passwords at least eight characters long, including letters, numbers, and special characters (!, #, @, $, etc.)

If You Accidentially Click A Phishing Link But Aren’t Sure Of Infection:

Immediately contact management and your network administrators
Isolate your computer from your district’s network
From a separate computer, change your passwords that grant access to systems
Refer to IT administrators to determine if an infection has actually occurred
Notify your insurer
CSD Pool members should visit eRisk Hub’s Incident Roadmap to determine if the event is a real incident

If You Were Successfully Phished Or A Victim Of Social Engineering:

Immediately contact management and your network administrators
Secure all network logs, audits, notes, and any other documentation on the incident
Notify your insurer
Contact law enforcement and legal counsel for assistance
If necessary, prepare notifications to any customers or employees whose information has been compromised and obtain credit monitoring services on their behalf

Click here to order your copy today.

Website Accessibility Statement

Colorado Special Districts Property and Liability Pool (the "District") is committed to ensuring that its services are accessible to all members of the public. As part of this commitment, the District strives to provide an accessible website compatible with the Web Content Accessibility Guidelines (WCAG) version 2.1, AA, and commercial screen reading software. Features of the website are created to allow individuals with vision and other impairments to understand and use the website to the same degree as someone without disabilities.

If you need any special assistance or accommodations:

Contact our compliance support team via telephone at: (888) 765-1970

Ongoing Compliance Information

Compliance Coordinator

The District has designated a Compliance Coordinator for website disability-related accommodations. The Compliance Coordinator has received training in website accessibility and updates the site in accordance with those best practices and requirements.

Compliance Procedures

The District is working to ensure all website content complies with the Americans with Disabilities Act and controlling State laws. In an ongoing effort to continually improve and remediate accessibility issues, the website is regularly scanned to ensure ongoing compliance, and timely changes are made to any inaccessible content if found.

Accessible Documents Policy

The District is committed to providing all documents hosted on the website in an accessible format or making accessible alternatives available.

Linked Documents and Third Parties

Please note that this site may link out to third-party websites that do not have accessible content. This site may also include documents provided by third parties. While we cannot control the accessibility of content provided by third parties, we are happy to assist any member of the public with reading and accessing content on our site.

Report a Website Accessibility Issue

We are committed to your ability to access all content, and we will respond to all requests in a timely manner. If you need assistance or accommodations while accessing content on this website, please contact our Compliance Coordinator via the form below: