Internet security has been in the news a lot recently due to the cyber-attacks at M&S, Coop and Harrods. Hackers don’t just target big companies, they also attack individuals. The Crime Survey for England & Wales estimated that there were over 1 million computer misuse offences committed in the year to March 2024, up by 37% from 2023. So online safety is something everyone should take very seriously.
There are some good practices to follow that can help keep you safe when using the internet and we’ve put together a list of 10 tips below:
1. Use strong passwords with a mix of lower and uppercase letters, numbers and special characters and always use different passwords for different websites/log-ins. Although this sounds complicated, there are password managers you can use that will generate strong passwords for you and will securely store all your different log in credentials.
2. Always set up two-factor authentication (2fa) when it is offered. This adds an extra layer of security and makes your accounts much harder to gain access to if your password has been compromised.
Why are these two things important? Loads of companies, both large and small, have had user credentials stolen over time. It surprises some people but these credentials are often available to buy on the dark web. Hackers buy large numbers of them and then use automated programmes to try reusing on different websites in the off-chance that a few work, and because some people reuse passwords, they often do.
These tips are particularly critical for log-ins on email accounts because if hackers get access to your email, they can easily reset passwords for all your log-ins. It is similar for your phone and you should always enable phone locking using biometrics or pins depending on what is offered.
3. Be careful with what you’re doing when connected to public Wi-Fi as these are often less secure due to them being open for people to join without a password or with a widely known password. This can make them an easy target for hackers and cybercriminals to steal data from people browsing on it. Similarly don’t save personal data or passwords on public devices like library computers or save your details to auto-fill as anyone else who accesses the device will then be able to see what you’ve saved. You can make using a public Wi-Fi safer by using a Virtual Private Network (VPN). VPNs encrypt your internet traffic and disguise your online identity as if you were using a private network rather than a public one. You can get 26% back with nordVPN with KidStart.
4. Be very wary of clicking links or downloading documents in emails unless you are completely confident that the email or link is legitimate. This is a very easy way for hackers to gain access to your device or steal personal data. If you were not expecting the email, double check it is legitimate first by taking a look at the email address it has been sent from. You can check that it’s the correct address that belongs to the business or person in question and keep an eye out for spelling mistakes. If you’re at all unsure, contact the company or person the email has come from directly using an email or phone you have used before or go straight to their website without using the link.
Hackers are very clever: I once received an email from a contact replying to an email I had just sent him. I was suspicious because he had sent me a document that I did not expect. I called him and it turned out his email had been hacked and the hackers were replying in real time to messages sent to him with a document containing malware!
5. Always Install antivirus software to help keep your devices safe. They will detect and remove any viruses and malicious software on your PC and will also warn you about entering websites that may not be secure. There are many antivirus software providers out there that are free to download and use.
6. Always update device software when prompted to as older out-of-date software can be more susceptible to hacking. Some updates are also to fix known security loop holes that have been identified and leaving them unfixed will put you at risk
7. Don’t enter (or send to anyone) your card details without being sure that the site (or the company) is genuine and the payment process is secure. Similarly if you are sent bank details to make a payment for something via email, double check they are correct by, for example, calling.
Last year, we were sent an invoice by a decorator for work done in our office. We called to check before sending the payment and it turned out someone had access to his Gmail and was editing his invoices and resending them with changed bank details.
8. Be careful about what personal data you share online such as on social media. It is an obvious example but publicly posting that you are away on holiday tells the world you are not at home and thieves do monitor for this. Similarly if you receive an unexpected call from, for example, your bank who use information they know about you to “prove their identity”, be aware that it might be a fraudster who has got access to this information elsewhere.
9. Practice safe browsing which means being cautious about the websites you visit and avoid clicking on suspicious links or ads. Anti-virus programmes can help as they often contain browsing protection that warns you by checking website blacklists or suspicious elements on the website.
10. Finally create regular backups of your important files and data just in case of a system problem or security breach. Over time this has become significantly easier to do with cloud based services like apple iCloud, Google Drive and Microsoft OneDrive.