You likely use internet-connected devices for work and play, so it’s important to implement cybersecurity measures for both. 

If you are in charge of an IT team at work, these tips will remind you of the best practices that your organization needs to follow. 

If you have any personal devices, these tips will provide you with general cybersecurity guidance.

No matter how many devices you manage, be sure to partner with a cybersecurity professional to determine the best software solutions based on your needs and to fine-tune your security measures on a consistent basis. 

Basic security for most devices and accounts

1. Use antivirus protection on all of your devices (yes, even your phone)
2. Use a firewall
3. Turn on automatic updates for all apps, software, and operating systems
4. Never share passwords
5. Use multi-factor authentication for accounts that contain sensitive information
6. Use complex passwords
7. Never reuse passwords; instead, have a unique password for every account
8. Update passwords every 90 days
9. Use a password manager
10. Remove browser extensions and plugins you no longer use
11. Create multiple users for your devices; one admin for maintenance and other users for daily use
12. Use public WiFi connections safely
13. Use a VPN when in public
14. Avoid using devices that belong to other people
15. Frequently back up data to the cloud (yes, even your phone data)
16. Shop in trusted online stores
17. Don’t allow online stores to save your billing information
18. Log out of online accounts after completing a purchase
19. Keep a record of your online purchases and compare it with your banking records
20. Check your financial accounts frequently to ensure your accounts have not been hacked
21. Use websites that start with “https” when providing sensitive information
22. Never leave your devices unattended
23. Use secured IP cameras for smart devices
24. Disconnect your computer from the Internet when you aren’t using it
25. Never put an unknown USB into your computer
26. Be aware of malvertising (instead of clicking on ads, open a new tab and search for that brand to purchase an item)
27. Consider an ad blocker
28. Cover your webcam when you’re not using it
29. Disable Adobe Flash
30. Disable Internet Explorer (Microsoft hasn’t updated it since 2016)
31. Never use unsupported software
32. Keep your browsers updated
33. Disable macros in Office files
34. Perform a Google security checkup
35. If your account gets hacked, update your password and enable two-factor authorization; then repeat for other accounts that account is connected to
36. Choose the right service provider
37. Turn off personalized ads in Google
38. Don’t save sensitive data, such as social security numbers, credit card information, and health information on any device

Email security

39. Never click on email or SMS links from an unknown sender
40. Double-check an email sender’s email address before clicking a link or downloading an attachment within the email
41. Never click on links in spam emails
42. Never download or open attachments in spam emails
43. Mark spammy emails as spam to notify your email provider
44. Have separate email accounts for work, shopping, financial information, etc.
45. Don’t use your work email for personal purposes
46. Check for misspellings in emails; they can indicate spam
47. Don’t reveal too much information in your out-of-office auto-responder emails
48. Don’t share your email address online; only share it with people you trust
49. Don’t respond to spam emails

Safe on social media

50. Never accept a friend request from someone you don’t know in real life
51. Update your privacy settings on social media so the general public cannot view your posts
52. Report fake social profiles
53. Avoid real-time “checking in” as it can reveal your home address or vacation plans
54. Monitor all social media accounts periodically
55. Check activity logs for all accounts; terminate old sessions where you used someone else’s device or if you see a session that you didn’t initiate
56. Be careful what you share about your children on social media
57. Remove geotags from past social media posts
58. Turn on security notifications for messaging apps
59. Start a Facebook security check
60. Make your social media accounts private
61. Be wary of giving third-party apps access to your social media accounts; revoke access from unused apps on a consistent basis
62. Delete accounts and apps you haven’t used in the past 6 months
63. Don’t respond to messages from people you don’t know
64. If a friend sends you an odd message or a second friend request, confirm the request with them through another avenue, such as in-person or email, to validate that it’s not a scam
65. Don’t click on a link within a suspicious message or post, even if it’s from a friend; their account could be infected

Phone security

66. Turn on your screen lock for your phone and always use it
67. Turn off your Bluetooth connectivity when you’re not using it
68. Never download an app from an untrusted source
69. Review the permissions of apps before you download them
70. Turn on the auto-lock feature on your mobile phone
71. Turn on your phone’s tracking solution e.g. Find My iPhone or Android Device Manager
72. Before selling or giving away a phone, complete a Factory Data Reset
73. Manage your Google Voice and Audio activity
74. Disable auto connectivity for Bluetooth, WiFi, and more
75. Be suspicious of phone numbers from random numbers; be sure to block numbers that are clearly scams
76. Avoid sending sensitive information via text
77. Remove sensitive information from your phone, encrypt it, or require a passcode to access it

This is not an exhaustive cybersecurity checklist, but it is a great place to start for your business and personal cybersecurity needs. These basic actions can help protect your sensitive data. 

If this list is overwhelming, start by updating your passwords and purchasing antivirus protection for all of your devices.

Do you have the right antivirus protection?

LEARN MORE >