Not opening e-mail attachments from unknown or unexpected sources.
Not clicking on any links included with suspicious messages.
Employees should not respond to e-mail requests for personal information.
No downloading of unauthorized software.
Employees should not divulge user ID and password information.
All antivirus, firewall, and other security technologies should be kept up-to-date.
Vulnerabilities in operating systems and software should be patched as quickly as possible by the appropriate technical personnel.