How to protect yourself User Shield and the Organization Building Shield

  • Complete the Information Security Awareness training to recognize cyber threats and know what measures to take. Access the training On Workday.
  • Understand more about phishing in this visual guide.
  • Use Multi-Factor Authentication (MFA) on your UNHCR and personal accounts.
  • Create and use strong passwords as per the password policy
  • Enable strong passwords, PINs or biometrics on your mobile devices.
  • Use a Password Manager to securely manage all your accounts and passwords.
  • Protect your work and personal devices. If your laptop or phone is lost or stolen, your data can end up in the wrong hands.
  • Report any suspicious messages to the Global Service Desk by clicking the "Report Phishing" button in your Outlook, or by forwarding the email to GSD@unhcr.org.

Keeping UNHCR secure starts with you

Please do not tell your colleagues about the exercise, and read through the following message to see how you can help protect yourself and UNHCR from future phishing attacks.