You are a target to hackers
Don’t ever say “It won’t happen to me”. We are all at risk and the stakes are high – to your personal and financial well-being.
By following the tips below and remaining vigilant, you are doing your part to protect yourself and others.
Keep software up to date
Installing software updates for your operating system and programs is critical. Always install the latest security updates for your devices:
Turn on Automatic Updates for your operating system.
Use web browsers such as Chrome or Firefox that receive frequent, automatic security updates.
For business and/or enterprise, follow up with your technology or IT provider and find out what they can do to keep your updates frequent.
Make sure to keep browser plug-ins (Flash, Java, etc.) up to date.
Avoid Phishing scams – beware of suspicious emails and phone calls
Phishing scams are a constant threat – using various social engineering ploys, cyber criminals will attempt to trick you into divulging personal information such as your login IDs and passwords, banking or credit card information.
Phishing scams can be carried out by phone, text, or through social networking sites – but most commonly by email.
Be suspicious of any official-looking email message or phone call that asks for personal or financial information.
Practice good password management
We all have too many passwords to manage – and it’s easy to take short-cuts, like reusing the same password. A password management program can help you to maintain strong unique passwords for all of your accounts. These programs can generate strong passwords for you, enter credentials automatically, and remind you to update your passwords periodically.
There are several online password management services that offer free versions, and KeePass is a free application for Mac and Windows.
Here are some general password tips to keep in mind:
Use long passwords – 20 characters or more is recommended.
Use a strong mix of characters, and never use the same password for multiple sites.
Don’t share your passwords and don’t write them down (especially not on a post-it note attached to your monitor).
Update your passwords periodically, at least once every 6 months (90 days is better).
Be careful what you click
Avoid visiting unknown websites or downloading software from untrusted sources. These sites often host malware that will automatically, and often silently, compromise your computer.
If attachments or links in email are unexpected or suspicious for any reason, don’t click on it.
Never leave devices unattended
The physical security of your devices is just as important as their technical security.
If you need to leave your laptop, phone, or tablet for any length of time – lock it up so no one else can use it. If your computer is facing a window, go a step further and either face it away or purchase a screen dampening shield, so you have to be up close and in front of your screen to see.
If you keep sensitive information on a flash drive or external hard drive, make sure to keep these locked as well.
For desktop computers, shut-down the system when not in use – or lock your screen.
Protect sensitive data
Be aware of sensitive data that you encounter, and associated restrictions.
Keep sensitive data (e.g., SSN’s, credit card information, health information, etc.) off your workstation, laptop, or mobile devices.
Securely remove sensitive data files from your system when they are no longer needed.
Always use encryption when storing or transmitting sensitive data.
Use mobile devices safely
Considering how much we rely on our mobile devices, and how susceptible they are to attack, you’ll want to make sure you are protected:
Lock your device with a PIN or password – and never leave it unprotected in public.
Only install apps from trusted sources.
Keep your device’s operating system updated.
Don’t click on links or attachments from unsolicited emails or texts. If you receive attachments from multiple unknown sources as part of your business (printing, art, etc.) give these customers or vendors an unadvertised email address for transmission.
Avoid transmitting or storing personal information on the device.
Most handheld devices are capable of employing data encryption – consult your device’s documentation for available options.
Use Apple’s Find my iPhone or the Android Device Manager tools to help prevent loss or theft.
Install anti-virus protection
Keep virus definitions, engines and software up to date to ensure your anti-virus program remains effective. A competent IT and/or technology service provider will keep this done automatically as a matter or principle. We strongly recommend Symantec.
Back up your data
Back up on a regular basis – if you are a victim of a security incident (ransomware, data breach, etc.), the only guaranteed way to repair your computer is to erase and re-install the system. Having a regular back-up established is essential (consult your IT and/or technology company for details).
Here are some additional tips to help keep you safe and secure online:
Use a firewall – Mac and Windows have basic desktop firewalls as part of their operating system that can help protect your computer from external attacks, these can be vulnerable as they are not regularly updated. Consult you IT/technology company for details on an external firewall to best protect your system.
Be conscientious of what you plug in to your computer (flash drives and even smart phones can contain malware).
Be careful of what you share on social networking sites.
Monitor your accounts for suspicious activity.
Bank or shop online only on trusted devices and networks – and logout of these sites when you’ve completed your transactions.
These simple steps will keep you one step ahead of the hackers and your information safe.