Cybersecurity has become one of the biggest hot topics both inside and outside of technology circles over the last two years. From securing learning devices due to a rise in digital learning during the COVID-19 pandemic, to coping with the fallout of high-profile breaches of national infrastructure such as the Colonial Pipeline, there is a seemingly endless news cycles dedicated to cybersecurity mishaps and concerns.
And with this onslaught of negative news, it can be easy for everyday individuals to become overwhelmed and to feel powerless in the face of the “insurmountable” threats posed by cybersecurity. But nothing could be further from the truth.
With all the jargon that is typically thrown around in relation to cybersecurity there is a longstanding misperception that cybersecurity is beyond everyday people and that it should be left to the professionals. Moreover, there is a prevailing sense among the public that breaches are simply a fact of life and that we should just learn to deal with them. But this just isn’t true. In fact, everyday people have a huge role to play in cybersecurity threat prevention, detection, and remediation. For example, according to IBM, 95% of breaches have human error as a main cause. Therefore, everyday day technology users are very much the first line of defense when it comes to thwarting cybercrime. Unfortunately, though, many individuals are not aware of some of the best practices for boosting cybersecurity and how easy they are to use.
With that, here are a few key best practices that everyday people can implement today to enhance their own cybersecurity and create a more secure world for everyone. In fact, we suggest using the acronym PAUL B to remember the steps you can take to help stay secure online. Your friend PAUL B – Password manager, strong Authentication, regular Updates (and backups), filtered Links, and regular Backups can materially reduce your cyber risk.
Update Your Passwords and Use a Password Manager
Having unique, long, and complex passwords is one of the best ways to immediately boost your cybersecurity. Yet, only 43% of the public say that they “always” or “very often” use strong passwords. Password cracking is one of the go-to tactics that cybercriminals turn to access sensitive information. And if you are a “password repeater,” once a cybercriminal has hacked one of your accounts, they can easily do the same across all your accounts.
One of the biggest reasons that individuals repeat passwords is that it can be tough to remember all the passwords you have. Fortunately, by using a password manager, individuals can securely store all their unique passwords in one place. Meaning, people only must remember one password. In addition, password managers are incredibly easy to use and can automatically plug-in stored passwords when you visit a site.
Enable Multifactor Authentication
Multi-factor authentication (MFA) sounds complicated but it’s really not. “MFA” simply means using second set of verifying information besides a password, such as a secure code sent to a mobile device or pulled from an authenticator app. MFA is a hugely effective measure that anyone can use to drastically reduce the chances of a cybersecurity breach. In fact, according to Microsoft, MFA is 99.9 percent effective in preventing breaches. Therefore, it is a must for any individual that is looking to secure their devices and accounts.
Activate Automatic Updates
Making sure devices are always up to date with the most recent versions is essential to preventing cybersecurity issues from cropping up. Cybersecurity is an ongoing effort, and updates are hugely important in helping to address vulnerabilities that have been uncovered as well as in providing ongoing maintenance. Therefore, instead of trying to remember to check for updates or closing out of update notifications, enable automatic update installations whenever possible.
Watch Out for Links in Phishing Messages
Phishing – when a cybercriminal poses as a legitimate party in hopes of getting individuals to engage with malicious content or links – remains one of the most popular tactics among cybercriminals today. In fact, 80% of cybersecurity incidents stem from a phishing attempt. However, while phishing has gotten more sophisticated, keeping an eye out for typos, poor graphics and other suspicious characteristics can be a telltale sign that the content is potentially coming from a “phish.” In addition, if you think you have spotted a phishing attempt be sure to report the incident so that internal IT teams and service providers can remediate the situation and prevent others from possibly becoming victims.
Back Up Your Data
While steps can be taken to avoid your network, devices and accounts being hacked or compromised, they can never be 100% effective. You need to back up your data regularly, especially as it relates to important information. Users can protect their valuable work, photos, and other digital information by making electronic copies of important files and storing them safely. Backups can be done using cloud services or storage devices like external hard drives that are not normally connected to your network or other devices. Regardless, storing data in an alternative location that is safe and secure provides another layer of protection.
Effectively implementing PAUL B makes it possible to move to the next level of cybersecurity and deploy more sophisticated practices, such as network segmentation, administrator account management, and so on. But it all starts with inviting your friend PAUL B to be part of your organization. Take the time during National Cybersecurity Awareness Month to get to know PAUL B – you will be better off for it.
Author: Jeannette Jarvis
3 Aspects to Managing Systemic Cyber Risk
This blog on the importance of managing systemic cyber risk is reposted with permission from NETSCOUT, a Contributing Member of the Cyber Threat Alliance. This blog was authored by Michael Daniel, CTA President and CEO, as a guest posting for NETSCOUT’s blog. Cyberspace enables connections, whether between individuals, organizations, governments, or some combination of the […]
Cybersecurity Awareness Month – Prioritizing Cybersecurity in a Hybrid Workplace
By the National Cyber Security Alliance, a partner of the Cyber Threat Alliance Today, employees are more connected than ever. The hybrid workplace is here to stay, and for [...]
Cybersecurity Awareness Month – Shoring Up Your Phishing Defenses
By the National Cyber Security Alliance, a partner of the Cyber Threat Alliance From ransomware to SolarWinds, the cybersecurity space has been as hectic as ever over the last 12-24 months. However, for all of the emerging threats [...]