Do not provide any personal information over the Internet unless the site is encrypted and you know the audience.
All RU OIT and central services (RULink, eden, RCI, crab, clam, andromeda, pegasus) email and web services using the standard Rutgers password must be handled using SSH. Secure Shell (SSH) or Secure File Transfer Protocol (SFTP) should be used (rather than Telnet ) to move or transfer files. Check your department services to determine the level of security offered. Laptops must be configured to enable encryption.
Secure File Transfer Protocol (SFTP)
Secure Shell (SSH)

IPS suggests using the university's Virtual Private Network (VPN) at home or while traveling. If you use an outside ISP or a wireless connection at home, using the Cisco VPN Client will prevent others on the network from seeing your traffic. The Rutgers University Office of Information Technology recommends using the Cisco VPN Client which encrypts all communication going out to the Internet from your computer. Never send private/confidential information over the Internet without encryption as your account can be compromised and the information you are sending easily accessible to anyone. Unencrypted information puts you, your department, and the university at risk by allowing your information and password to be read by others.
Virtual Private Network (VPN)

Social network services are insecure. There there are over 300 social network services including Facebook and MySpace, and most include instant messaging, peer-to-peer connectivity, and blog sharing. These sites provide the most accurate and easiest to use resource for obtaining information about people unless security options are set. Profiles and photos can be accessed by everyone from prospective employers to stalkers. Do not provide personal or identifiable information.
blog
instant messaging
peer-to-peer networks
social network

Credit card and online banking sites are convenient and easy ways to purchase and handle financial transactions. They are also the most often spoofed sites for phishing scams. Information you provide to online banking and shopping sites should be encrypted and site's URL should begin with https . Some browsers have an icon representing a lock at the lower right of the browser window.
phishing

Cookies identify you. A cookie is a small packet of information stored on users' computers by websites in order to uniquely identify the user. Visited websites leave behind cookies for identification when you visit again. These cookies identify you and provide information to the visited site. You can visit your "temporary Internet sites" (C:\Documents and Settings\Local Settings\Temporary Internet Files) on your computer to delete cookies.

Check privacy policies. The company will store any information you provide to them and/or distribute it according to their privacy policy. Your information is sometimes provided to subcontractors to enter into a database, send email, and determine whether or not you read their email. Your email can be sent to the company's affiliates, third party companies and third party financial institutions. Most privacy policies include an opt-out of distribution of your private information to noncompany affiliates. However this usually requires you to request it in writing.

Talk to children about online communication. Make sure children know to be safe online. Risks exist and teaching safe behavior is important. View the FTC short video "Teaching Kids to be Safe Online" for the four rules to follow.
Teaching Kids To Be Safe Online

Protect your information and your computer. Weak passwords, spam, phishing, and spyware can have damaging effects on you, your family, and your computer. Review the solutions on the short FTC video "Protect your Privacy, Your Family and Your PC".
Protect Your Privacy, Your Family, and Your PC

Additional resources:

OnGuard Online
Stay Safe Online