Cybersecurity Awareness: Simple Actions To Dial Up Digital Defences

The traditional 9-5 working day at the office now seems like a hazy memory from a very distant past. In its place, we find ourselves in an ‘always on’ digital world with hybrid or work-from-anywhere practices now a cemented fixture in day-to-day life. 

Our lives have shifted at enormous speed and against those shifting sands, hackers have revealed their many faces.  

Today, hackers have ramped up operations, with an increasingly targeted and complex bag of tricks. The figures alone highlight the scale of the challenge. Every day 450,000 new pieces of malware are detected, and 3.4 billion phishing emails hit inboxes across the globe. 

If there’s one key takeaway from this new state of play, it’s that awareness, vigilance, and education are vital weapons and our most critical first line of cyber defence. To get ahead of the challenges, each of us, whether at work or play, has a n important role in our collective safety online. The ball now lies firmly in our court, so what are the core threats we need to tackle, and what simple actions can dial up digital defences? 

Ransomware 

Ransomware is a type of malware. Like other types of malware, it commonly infects your computer when you open an infected email attachment or click on a malicious link. It takes over the data on your computer, usually encrypting it. You receive a notice that you can no longer access your data until you pay a ransom. Cyber criminals may also threaten to publicly release your data if you don’t pay the ransom.

What are the best ways to protect yourself?

  • Be suspicious of any urgent messages pressuring you into clicking a link, installing software, or opening an email attachment.
  • Make sure you are running the latest version of anti-virus software.
  • Make sure the operating systems, programmes, and apps you use are always updated and current.

Phishing Indicators 

Email phishing attacks attempt to infect your computer, steal your passwords, fool you into sharing sensitive data, and more. After clicking on a link or opening an email attachment, you are asked to enable various permissions to access your account or system. While phishing attacks often have different goals, they share many of the same tell-tale signs.

What should you look for to keep yourself off the phishing line?

  • Always beware of an email using an enormous sense of urgency, often using fear or demanding “immediate action.” These emails are attempting to rush you into making a mistake.
  • Someone pressuring you to bypass or ignore our security policies and procedures. Requests for highly sensitive information, such as your credit card details, banking information, or passwords.
  • An email that appears to be from a person you know, but their tone of voice or email signature seems odd or strangely worded.
  • An email that creates a strong sense of curiosity or enticement, perhaps even an offer for something that is too good to be true.
  • An email with a generic greeting such as “Dear Customer,” or has numerous spelling or grammar mistakes.

Passwords

We all want to protect information, and that often starts with a secure password. 

What are the best ways to keep your passwords safe?

  • Make each password long and strong. The more characters in your password, the stronger it is.
  • Use multiple words to create a passphrase, such as “Don’t forget to stand” or “stopping- woods-snowy-evening”.
  • Create a unique password for each account. If you can’t remember them all, ask if you can use a password manager.
  • Keep passwords a secret. Never share them with anyone, including a supervisor.
  • Never use public computers to log in to your online accounts.
  • Use two-step verification whenever possible

What Does This All Mean?

People are at the heart of the cybersecurity solution. Whether at work, rest, or play, all of us are more likely than ever to be attached to one or more digital devices.

While these devices bring convenience and opportunity, they also bring considerable risk. Securing our digital lives with a few key tips helps reduce the risk so we can enjoy the benefits of our digital age. Now, more than ever, we need to be prepared for anything and everything, so let’s not wait until there’s an emergency to take action. 

Contributed by SANS Institute:

You Might Also Read:

The Do’s and Don’ts Of Security Risk Management:

 

« The Role of Zero Trust Architecture In Minimising Cyber Risks
The Hidden Costs Behind Black Friday Bargains »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Bsquare

Bsquare

Bsquare DataV software and engineering services help enterprises implement business-focused Internet of Things systems.

Techmeme

Techmeme

Techmeme is an online news curation service focused on leading edge technology, including cyber security.

European Cybercrime Training and Education Group (ECTEG)

European Cybercrime Training and Education Group (ECTEG)

The primary aim of ECTEG is to enhance the coordination of cybercrime training, by identifying opportunities to build the capacity of countries to combat cybercrime

Global Security Network (GSN)

Global Security Network (GSN)

GSN focuses on specialized IT Security solutions & services for the military, law enforcement, critical infrastructure and oil & gas sectors in the Middle East.

CyberSec.sk

CyberSec.sk

CyberSec.sk is the Slovak portal bringing the latest cyber security news, politics, tips and instructions on how to protect the internet.

Cybersecurity & Infrastructure Security Agency (CISA)

Cybersecurity & Infrastructure Security Agency (CISA)

CISA leads the national effort to defend critical infrastructure against the threats of today and to secure against the evolving risks of tomorrow.

Cylus

Cylus

Cylus, a global leader in rail cybersecurity, helps rail and metro companies avoid safety incidents and service disruptions caused by cyber-attacks.

EMnify

EMnify

EMnify is a Software-as-a-Service (SaaS) company, revolutionizing cellular Internet of Things (IoT).

SafeHouse Technologies

SafeHouse Technologies

SafeHouse is a cloud-based, high-end cybersecurity platform that can secure and insure any device that is connected to it.

Secberus

Secberus

SECBERUS creates cloud security technology to help organizations stay secure & compliant in the public cloud.

Privacyware

Privacyware

Privacyware's ThreatSentry combines a state-of-the-art Web Application Firewall and port-level firewall with advanced behavioral filtering to block unwanted IIS traffic and web application threats.

X Technologies

X Technologies

X Technologies provide world-class engineering, information technology, information security, program management and repair services to Federal, State and commercial customers.

CybersCool Defcon

CybersCool Defcon

CybersCool is committed to educate and train, re-skill and up-skill the current workforce of various industries and businesses in the knowledge and know-how of cybersecurity.

Glasstrail

Glasstrail

Glasstrail are single-minded about helping organisations gather intelligence and manage vulnerabilities in their attack surface before adversaries exploit them.

CyberForceHQ

CyberForceHQ

CyberForce helps cyber security professionals take real-world tests, get ranked and get paid better. It's that simple.

GrayHats

GrayHats

GrayHats is a platform-based cybersecurity company devoted to delivering comprehensive, scalable, and proactive protection for businesses in an ever-evolving threat landscape.