Page 21 - NYS_ESS_01-2024
P. 21
[ short takes ]
2023 FEMA Elevation Certificate Tutorial
FEMA has released a tutorial We have recently been made aware of email scams
on the changes to the targeting our association. We wanted to inform you of a
2023 Elevation Certificate common cyber-attack that everyone should be aware of
called “phishing”.
which went into effect on
November 1, 2023. “Phishing” is the most common type of cyber-attack that
affects organizations like ours. Phishing attacks can take
In the training, FEMA many forms, but they all share a common goal – getting
provides background infor- you to share sensitive information such as login credentials,
mation on the Elevation credit card information, or bank account details.
Certificate form and connects the recent form changes to the Although we maintain controls to help protect our
way that flood insurance is rated. Instruction also involves a networks and computers from cyber threats, it’s important
review of changes within each section of the form, including everyone is on the look for suspicious emails.
the addition of two new sections (Sections H and I). We’ve outlined a few different types of phishing attacks to
watch out for:
Access the recording on YouTube here: • Phishing: In this type of attack, hackers impersonate
https://youtu.be/8_iYHiouQMA?si=Ttk2PoV7bXJcXFgf a real company to obtain your login credentials. For
example, they could send an e-mail asking you to
Revamped and Ready to Educate: beasurveyor.com verify your account details with a link that takes you to
an imposter login screen that delivers your information
Beasurveyor.com has undergone a complete redesign, tailored directly to the attackers.
specifically to engage K-12 audiences. With a sleek new design • Spear Phishing: Spear phishing is a more
and user-friendly interface, the website is geared towards sophisticated phishing attack that includes customized
making surveying accessible and exciting for young minds. The information that makes the attacker seem like a
updated aesthetics, curated videos, and intuitive navigation are legitimate source. They may use a familiar name and
sure to captivate students and educators alike. refer to NYSAPLS or your local Regional in the e-mail
to trick you into thinking they have a connection
Surveying Outreach Resource Page to you, making you more likely to click a link or
One of the standout features of the redesigned website is the attachment that they provide.
Surveying Outreach Resource Page. This section is a treasure trove • Whaling: Whaling is a popular ploy aimed at getting
you to transfer money or send sensitive information
for surveyors interested in outreach and educators looking to to an attacker via email by impersonating a real
incorporate surveying into their curriculum. It offers a variety of NYSAPLS or Regional officer or board member. Using
valuable resources. You can download lesson plans for classroom a fake domain that appears similar to ours or the
activities, access surveying presentations, play videos, and even regional’s, they look like normal emails from people
order materials for speaking engagements or career fairs. you know and ask you for sensitive information
(including usernames and passwords).
For those new to outreach, the “Outreach 101” section offers Best Practices to Avoid Phishing Schemes
guidance on how to effectively engage students and the broader Do not click on links or attachments from senders that you
community in surveying. It’s the perfect starting point for do not recognize.
surveyors eager to share their knowledge. • Do not provide sensitive personal information (like
Why Focus on K-12 Education? usernames and passwords) over email.
The decision to cater to K-12 audiences is a strategic move. After • Watch for email senders that use suspicious or
a yearlong research project, results pushed for outreach efforts misleading domain names.
to be aimed mainly at K-12 demographics. By introducing How to Report a Phishing Scheme
Forward any phishing attempts to the following
surveying to students at an early age, beasurveyor.com aims to two organizations:
kindle an interest that could turn into a lifelong passion and a 1. The Anti-Phishing Working Group at
career choice. Although K-12 is the main target audience, the reportphishing@apwg.org
website and outreach plan will incorporate college students, ex- 2. The Federal Trade Commission (FTC) at
military, and others looking for a change in career. ReportFraud.ftc.gov.
Get Started Today Note: If you ever receive a phishing text message you
Together, we can inspire the next generation of surveyors and should forward it to SPAM (7726).
change the way they perceive the world around them. Visit the Thanks for helping to keep our members safe
new and improved https://beasurveyor.com/ today and be a from these cyber threats!
part of the surveying revolution!
EMPIRE STATE SURVEYOR / VOL. 60 • NO 1 2024 • JANUARY/FEBRUARY 19
