That second step is a lot harder for a hacker to fake.So, prove it’s you with two… two steps, that is.
Now that you know what it is, you’ll see prompts for multifactor authentication all over. So opt-in. Start with your email account, then financial services, then social media accounts, then online stores, and don’t forget your gamingand streaming entertainmentservices!
Update your software. In fact, turn on automatic software updates if they're available.
Bad actors will exploit flaws in the system. Network defenders are working hard to fix them as soon as they can,but their work relies on all of us updating our software with their latest fixes.
Updatethe operating system on yourmobilephones, tablets, and laptops. And update your applications – especially the web browsers – on all your devices too. Leverage automatic updatesfor alldevices,applications, and operating systems.
Think before you click
Have you ever seen a link that looks a little off? Itlooks like something you’ve seen before,but it says you need to change or enterapassword. Or maybe it asks you to verify personal information. It could be a text message or even a phone call. They may pretend to be your email service, your boss, your bank, a friend…. Themessagemay claimitneedsyour information because you’ve been a victim of cybercrime.
It’s likely a phishing scheme: a link or webpage that lookslike alegitimate,but it’s a trick designed by bad actors to have you reveal your passwords, social security number, credit card numbers, or other sensitive information. Once they havethat information, they can use it on legitimate sites. And they may try to get you to runmalicious software, also known asmalware. Sadly,we aremore likely to fall for phishing than we think.
If it’s a link you don’t recognize, trust your instinctsand think before you click.We all need toPhightthe Phish!
Use strong passwords
Did you know the most common password is “password”? Followed by “123456”? Using yourchild’sname withtheirbirthday isn’t much better.
Picking a password thatiseasy is like locking your door but hanging the key on the doorknob. Anyone can get in.
Here are some tips for creating a stronger password. Make sure it’s:
- long – at least 15 characters,
- unique – never used anywhere else,
- and randomly generated – usually by a computeror password manager. They’re better than humans at being random.
Make sure you’re not recycling the same password across all your apps and websites. You can use apassword managerto store all of your passwords.That way you don’t have to remember them all!If you go this route, makesureyour master passwordisstrong and memorable, and secure your password manager account with MFA!
Being cybersmart is contagious.
Our world is increasingly digital and increasingly interconnected. So,while we must protect ourselves, it’s going to take all of us to really protect the systems we all rely on. Being cyber smart is contagious.Take the four basic steps outlined above and help two friends do the same.
For more information, visitCISA’s Cybersecurity Awareness MonthResources page.
