Jolly IT’s Cyber-Security Do’s and Dont’s
If you were to implements everything on these lists, hacking your systems becomes extremely difficult. These are all based on Cyber Essentials and ISO2000 standards
- Use Strong Passwords: Create complex passwords with a mix of letters, numbers, and special characters. Avoid common words or easily guessable information like birthdays.
- Enable Two-Factor Authentication (2FA): Whenever possible, use 2FA to add an extra layer of security to your accounts.
- Regularly Update Software: Ensure that your operating system, antivirus software, and other applications are up-to-date to protect against the latest security threats.
- Secure Your Devices: Lock your computer, smartphone, and other devices when not in use. Encrypt sensitive data and use privacy screens when working in public places.
- Be Aware of Phishing Attempts: Learn to recognize phishing emails or messages. Do not click on suspicious links or open attachments from unknown sources.
- Use Secure Networks: Avoid using public Wi-Fi for business purposes. Use a VPN (Virtual Private Network) when accessing company resources remotely.
- Backup Important Data: Regularly backup important data to secure cloud services or external drives. This protects against data loss from ransomware or hardware failure.
- Report Security Incidents: Immediately report any suspicious activity or security incidents to your IT department or cybersecurity team.
- Attend Security Training: Participate in cybersecurity awareness training provided by your organization.
- Use Authorized Software Only: Only use software that is authorized and provided by your company. Avoid downloading or installing unauthorized applications on work devices.
Jolly IT’s Cyber-Security Don’ts
- Don’t Click on Unknown Links or Attachments: Be cautious about clicking on links or downloading attachments from unknown or unsolicited emails.
- Don’t Share Sensitive Information Carelessly: Avoid sharing sensitive personal or business information over email or messaging platforms, especially if not encrypted.
- Don’t Use the Same Password for Multiple Accounts: Using the same password for multiple accounts increases the risk of a security breach.
- Don’t Ignore Software Updates: Postponing or ignoring software updates can leave your devices vulnerable to cyber-attacks.
- Don’t Connect Unknown Devices: Avoid connecting unknown or untrusted devices, like USB drives, to your work computer as they may contain malware.
- Don’t Leave Devices Unattended: Never leave your devices unattended in public places. Physical security is as important as online security.
- Don’t Use Personal Accounts for Work: Keep work and personal emails and files separate. Don’t use personal email accounts for work purposes.
- Don’t Disable Security Software: Never disable antivirus or firewall software on work devices.
- Don’t Ignore Privacy Settings: Be mindful of privacy settings on social media and other online platforms. Avoid oversharing information that could be used for social engineering attacks.
- Don’t Discuss Sensitive Information in Public: Be aware of your surroundings and avoid discussing confidential information in public areas where you can be overheard.
There is loads more guidance on this topic here: https://www.ncsc.gov.uk/section/advice-guidance/all-topics
Either read up and try to become and expert or call us for advice..
Thanks for reading!