Limit giving out Personal Identifiable Information
When browsing the internet sometimes we can inadvertently share information that is too personal. Make sure that when an organization or post asks for information it is actually information they need and is coming from a verified source.
Pay attention to links that request things that give too much personally identifiable information (address, SIN, account number, etc). If you are uncertain about the source or the reason the information is needed reach out to the organization yourself through their website or number on your invoices.
The same is true for any messages that are requesting verification or validation of personal information, especially when you have not made any interactions with that organization to cause such a notification, post or inquiry.
Verify any requests for:
- Personally identifiable information (address, SIN number, etc)
- Verification or validation
- Private information (passwords, account numbers)
Take a moment before clicking a link
One of the easiest ways to be compromised or scammed is through social engineering and phishing attacks. Requests to click a link often come with some form of generalized threat or required urgency. These are usually in order to make you panic or prompt distress so you miss the signs that the post, email or text has errors and generalizations. Be skeptical of any unknown requests especially those that demand immediate response or urgent attention.
Take a moment to consider the source, sender and reason for any of the following:
- Requests to Confirm, Validate or Verify personal information or accounts
- Requests to sign into an account
- Unprompted emails from your Bank, Utility, Organization or Tbaytel
- Emails and text messages stating you have a refund or prize
Secure your internet connection with AV & VPN
It is an absolute necessity for any device that goes on the internet to have some form of protection on it such as an antivirus or internet security suites.
Like any piece of technology it is vital that any security software is kept up to date. Most software will update automatically on their own; but it is advised to to check now and again, especially if you are not in the habit of rebooting your computer regularly.
Another way to secure your internet connection is by using a Virtual Private Network (VPN). A VPN creates a secure path between your device and the site that you are trying to connect to and it hides your IP address by routing to an alternate server. This means that when you are browsing the internet the VPN becomes the source of your data, rather than your device.
A VPN also filters and encrypts your information - making it unintelligible, so even if someone did manage to get the data; they wouldn’t be able to do anything with it.
Choose Strong Passwords
Passwords are the keys to our digital life and they are just as important as having a lock on your front door. Making sure the lock and key to your internet life is secure can be a complicated task especially when it is recommended that we keep a different password for each site/service we use.
Password managers are a great tool to help keep your passwords complex but easily accessible to you when you need them. There are a few available and we recommend doing some research into the ones that you are interested in using to be sure it will suit your needs.
For strong passwords consider the following:
- Use between 10-15 characters
- Using upper case letters as well as lower case letters
- Using special characters ( @ ! * - _ # )
- Try making a passphrase rather than just a password
- Use a different password for each website
- Use a reliable password manager to keep passwords secure but accessible
Keep all software up to date
No matter how strong your passwords are if you don’t keep your devices software up to date as well you are leaving your device open to vulnerabilities that malicious software can utilize to gain access to your data.
If you don’t keep your software up to date, it is akin to locking your front door and leaving the side door wide open.
- Be it your computer, cell phone or tablet, be sure to keep the software up to date
- Be sure that your antivirus software is up to date
- Be sure that your apps are also up to date
Be sure you're on a secure site before making an internet purchase (HTTPS)
Legitimate websites should have a secured version of the site if they are offering online sales. A secured website would start with https://. If you are about to purchase something online ensure you double check that the site has this beginning. It will also appear as a lock in the address bar.
A secure website will encrypt the data to secure your passwords, as well as financial and transactional information in the sale. So, when shopping online it is best to look for secured sites to protect your private information.
Check up on your Cyber health
Internet browsers do have ways where you can check on the security of your personal information. You can also review the safety and security settings on your devices. There are multiple settings that can be enabled or disabled as you prefer. The browser will give you recommendations based on the manufacturer’s design of the software. The average user can keep the recommended settings, whereas more advanced users can go through and change the settings as desired.
If you are using a Password Manager they will have a password health check. Running the password manager’s health check will review how strong your passwords are, how many are being reused and if any passwords have been found on known password lists.
- Check Safety & Privacy settings in your browser.
- Check your Google Security if you have a Google account
Check for Privacy Policies
Make sure that a website has a privacy policy available for review. Privacy policies are typically required by law (depending on the country) where the website originates. These policies outline how a website can use your information and what data it collects and for what reasons.
Using Public Devices
When using an Internet enabled public device at a hotel, library or a store, always be sure that you protect your account privacy by making sure you logout of any connected accounts you’ve signed into while on the public device. If you sign into a private account on a public machine, if prompted to save the password; don’t allow the password to be saved. Make sure you clear the browsing data, cache and cookies as this will clear any potentially saved data of yours from the device as well.