You likely use internet-connected devices for work and play, so it’s important to implement cybersecurity measures for both.
If you are in charge of an IT team at work, these tips will remind you of the best practices that your organization needs to follow.
If you have any personal devices, these tips will provide you with general cybersecurity guidance.
No matter how many devices you manage, be sure to partner with a cybersecurity professional to determine the best software solutions based on your needs and to fine-tune your security measures on a consistent basis.
Basic security for most devices and accounts
- Use antivirus protection on all of your devices (yes, even your phone)
- Use a firewall
- Turn on automatic updates for all apps, software, and operating systems
- Never share passwords
- Use multi-factor authentication for accounts that contain sensitive information
- Use complex passwords
- Never reuse passwords; instead, have a unique password for every account
- Update passwords every 90 days
- Use a password manager
- Remove browser extensions and plugins you no longer use
- Create multiple users for your devices; one admin for maintenance and other users for daily use
- Use public WiFi connections safely
- Use a VPN when in public
- Avoid using devices that belong to other people
- Frequently back up data to the cloud (yes, even your phone data)
- Shop in trusted online stores
- Don’t allow online stores to save your billing information
- Log out of online accounts after completing a purchase
- Keep a record of your online purchases and compare it with your banking records
- Check your financial accounts frequently to ensure your accounts have not been hacked
- Use websites that start with “https” when providing sensitive information
- Never leave your devices unattended
- Use secured IP cameras for smart devices
- Disconnect your computer from the Internet when you aren’t using it
- Never put an unknown USB into your computer
- Be aware of malvertising (instead of clicking on ads, open a new tab and search for that brand to purchase an item)
- Consider an ad blocker
- Cover your webcam when you’re not using it
- Disable Adobe Flash
- Disable Internet Explorer (Microsoft hasn’t updated it since 2016)
- Never use unsupported software
- Keep your browsers updated
- Disable macros in Office files
- Perform a Google security checkup
- If your account gets hacked, update your password and enable two-factor authorization; then repeat for other accounts that account is connected to
- Choose the right service provider
- Turn off personalized ads in Google
- Don’t save sensitive data, such as social security numbers, credit card information, and health information on any device
Email security
- Never click on email or SMS links from an unknown sender
- Double-check an email sender’s email address before clicking a link or downloading an attachment within the email
- Never click on links in spam emails
- Never download or open attachments in spam emails
- Mark spammy emails as spam to notify your email provider
- Have separate email accounts for work, shopping, financial information, etc.
- Don’t use your work email for personal purposes
- Check for misspellings in emails; they can indicate spam
- Don’t reveal too much information in your out-of-office auto-responder emails
- Don’t share your email address online; only share it with people you trust
- Don’t respond to spam emails
Safe on social media
- Never accept a friend request from someone you don’t know in real life
- Update your privacy settings on social media so the general public cannot view your posts
- Report fake social profiles
- Avoid real-time “checking in” as it can reveal your home address or vacation plans
- Monitor all social media accounts periodically
- Check activity logs for all accounts; terminate old sessions where you used someone else’s device or if you see a session that you didn’t initiate
- Be careful what you share about your children on social media
- Remove geotags from past social media posts
- Turn on security notifications for messaging apps
- Start a Facebook security check
- Make your social media accounts private
- Be wary of giving third-party apps access to your social media accounts; revoke access from unused apps on a consistent basis
- Delete accounts and apps you haven’t used in the past 6 months
- Don’t respond to messages from people you don’t know
- If a friend sends you an odd message or a second friend request, confirm the request with them through another avenue, such as in-person or email, to validate that it’s not a scam
- Don’t click on a link within a suspicious message or post, even if it’s from a friend; their account could be infected
Phone security
- Turn on your screen lock for your phone and always use it
- Turn off your Bluetooth connectivity when you’re not using it
- Never download an app from an untrusted source
- Review the permissions of apps before you download them
- Turn on the auto-lock feature on your mobile phone
- Turn on your phone’s tracking solution e.g. Find My iPhone or Android Device Manager
- Before selling or giving away a phone, complete a Factory Data Reset
- Manage your Google Voice and Audio activity
- Disable auto connectivity for Bluetooth, WiFi, and more
- Be suspicious of phone numbers from random numbers; be sure to block numbers that are clearly scams
- Avoid sending sensitive information via text
- Remove sensitive information from your phone, encrypt it, or require a passcode to access it
This is not an exhaustive cybersecurity checklist, but it is a great place to start for your business and personal cybersecurity needs. These basic actions can help protect your sensitive data.
If this list is overwhelming, start by updating your passwords and purchasing antivirus protection for all of your devices.
Do you have the right antivirus protection?