Cybersecurity Awareness: Simple Actions To Dial Up Digital Defences

Uploaded on 2022-11-16 in TECHNOLOGY--Resilience, FREE TO VIEW

The traditional 9-5 working day at the office now seems like a hazy memory from a very distant past. In its place, we find ourselves in an ‘always on’ digital world with hybrid or work-from-anywhere practices now a cemented fixture in day-to-day life. 

Our lives have shifted at enormous speed and against those shifting sands, hackers have revealed their many faces.  

Today, hackers have ramped up operations, with an increasingly targeted and complex bag of tricks. The figures alone highlight the scale of the challenge. Every day 450,000 new pieces of malware are detected, and 3.4 billion phishing emails hit inboxes across the globe. 

If there’s one key takeaway from this new state of play, it’s that awareness, vigilance, and education are vital weapons and our most critical first line of cyber defence. To get ahead of the challenges, each of us, whether at work or play, has a n important role in our collective safety online. The ball now lies firmly in our court, so what are the core threats we need to tackle, and what simple actions can dial up digital defences? 

Ransomware 

Ransomware is a type of malware. Like other types of malware, it commonly infects your computer when you open an infected email attachment or click on a malicious link. It takes over the data on your computer, usually encrypting it. You receive a notice that you can no longer access your data until you pay a ransom. Cyber criminals may also threaten to publicly release your data if you don’t pay the ransom.

What are the best ways to protect yourself?

  • Be suspicious of any urgent messages pressuring you into clicking a link, installing software, or opening an email attachment.
  • Make sure you are running the latest version of anti-virus software.
  • Make sure the operating systems, programmes, and apps you use are always updated and current.

Phishing Indicators 

Email phishing attacks attempt to infect your computer, steal your passwords, fool you into sharing sensitive data, and more. After clicking on a link or opening an email attachment, you are asked to enable various permissions to access your account or system. While phishing attacks often have different goals, they share many of the same tell-tale signs.

What should you look for to keep yourself off the phishing line?

  • Always beware of an email using an enormous sense of urgency, often using fear or demanding “immediate action.” These emails are attempting to rush you into making a mistake.
  • Someone pressuring you to bypass or ignore our security policies and procedures. Requests for highly sensitive information, such as your credit card details, banking information, or passwords.
  • An email that appears to be from a person you know, but their tone of voice or email signature seems odd or strangely worded.
  • An email that creates a strong sense of curiosity or enticement, perhaps even an offer for something that is too good to be true.
  • An email with a generic greeting such as “Dear Customer,” or has numerous spelling or grammar mistakes.

Passwords

We all want to protect information, and that often starts with a secure password. 

What are the best ways to keep your passwords safe?

  • Make each password long and strong. The more characters in your password, the stronger it is.
  • Use multiple words to create a passphrase, such as “Don’t forget to stand” or “stopping- woods-snowy-evening”.
  • Create a unique password for each account. If you can’t remember them all, ask if you can use a password manager.
  • Keep passwords a secret. Never share them with anyone, including a supervisor.
  • Never use public computers to log in to your online accounts.
  • Use two-step verification whenever possible

What Does This All Mean?

People are at the heart of the cybersecurity solution. Whether at work, rest, or play, all of us are more likely than ever to be attached to one or more digital devices.

While these devices bring convenience and opportunity, they also bring considerable risk. Securing our digital lives with a few key tips helps reduce the risk so we can enjoy the benefits of our digital age. Now, more than ever, we need to be prepared for anything and everything, so let’s not wait until there’s an emergency to take action. 

Contributed by SANS Institute:

You Might Also Read:

The Do’s and Don’ts Of Security Risk Management:

 

« The Role of Zero Trust Architecture In Minimising Cyber Risks
The Hidden Costs Behind Black Friday Bargains »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Group-IB

Group-IB

Group-IB is a leading provider of solutions dedicated to detecting and preventing cyberattacks, identifying online fraud, investigating high-tech crimes, and protecting intellectual property.

DocAuthority

DocAuthority

DocAuthority automatically discovers and accurately identifies unprotected, sensitive documents, enabling a broad yet business-friendly security policy.

StrongKey

StrongKey

StrongKey (formerly StrongAuth) is a leader in Enterprise Key Management Infrastructure, bringing new levels of capability and data security at a price point significantly lower than other solutions.

R2S Technologies

R2S Technologies

R2S can help you implement a cyber security framework to ensure your business is more resilient towards the growing threat of cyber crime. We provide Web and Mobile Application Security Assessment..

HSB

HSB

HSB offers insurance for equipment breakdown, cyber risk, data breach, identity recovery & employment practices liability.

Enclave Networks

Enclave Networks

Our mission is to give IT professionals a simple way to rapidly build secure connectivity between any application, computer system, device or infrastructure - regardless of the underlying network.

NanoVMs

NanoVMs

NanoVMs is the industry's only unikernel platform available today. NanoVMs runs your applications as secure, isolated virtual machines faster than bare metal installs.

Intersistemi Italia

Intersistemi Italia

Intersistemi is a leading Italian company in the field of information technology integration and digital transformation including cybersecurity.

ISECURION Technology & Consulting

ISECURION Technology & Consulting

ISECURION is an information security consulting company. We provide a unique blend of services to our customers catering to the current information security landscape.

Nemstar

Nemstar

Nemstar is a specialist in Information Security & Cyber Training with over 25 years' industry experience.

Zuul IoT

Zuul IoT

Zuul take an asset-centric approach to OT security, enabling security teams to protect the critical IIoT/IoT devices that are at the foundation of critical business functions.

TuxCare

TuxCare

TuxCare make Linux more secure. We take care of Linux so that organizations can use Linux to support environments that require high levels of Cybersecurity, stability, and availability.

Mutare

Mutare

For three decades, Mutare has been empowering organizations to re-imagine a better way to connect through our transformative voice security, digital voice and text messaging solutions.

rThreat

rThreat

rThreat is a cloud-based SaaS solution that challenges your cyber defenses using real-world and custom threats in a secure environment, ensuring your readiness for attacks.

Chorology

Chorology

Chorology is a leading provider of intelligently automated, data compliance and posture enforcement solutions.

Defend

Defend

DEFEND are 100% focused on providing managed cybersecurity solutions and services that make a real difference to the cyber resilience of your organisation.