What makes a good password?
Your password is your first line of defence. Make sure it can’t be guessed.
Strong
- At least 8 characters
- Include a mix of upper and lower case letters
- Numbers and symbols
- Different passwords for different accounts
Weak
- Repeating numbers (5555)
- Number sequences (1234)
- Name, birthday, pet, celebrity names
Good practice
- Don’t share passwords
- Change your password every month
- Use a password manager
- Opt for dual factor identification – e.g., where a log-in code is sent to your mobile
How to spot phishing
Malicious software and phishing scams can try to steal your information or compromise your device. Look out for emails, internet pop-ups, robocalls or texts containing the following:
Unexpected good or bad news
Scammers tell you things like you’ve won a million dollars; you’ve been overcharged and are due for a big refund; you’ve incurred a fine; ‘tech support’ needs some details.
Requests for personal data
Phishing scams usually ask you to click a link to ‘verify’ your bank account details, credit card number, date of birth, etc. They’ll also ask you to update your username and/or reset your password.
It contains an attachment
Malware is often in an attachment claiming to be a photo or file you are encouraged to open. Once open, it can infect your computer and might use your inbox to email and potentially infect your contacts.
It looks official and sounds urgent
Scammers often use logos from the organization they are impersonating, so keep an eye out for email addresses or logos that don’t look quite right. To trick you into acting fast, without checking it closely, they usually ask you to react immediately.
Ask yourself these questions
- Is the message “urgent”?
- Is there a threat?
- Is the spelling or grammar off?
- Would my bank/school/government actually ask this?
Look closely
- Does the link look strange? E.g. instead of paypal.com it’s payal.com
- Does the email address look suspicious? E.g. instead of name@microsoft.com it’s from microsafe@complaints.com
What to do…
- If you receive an email with a suspicious attachment, delete it immediately and don’t click on the attachment
- Notify and forward scam emails to the company that’s being impersonated
- Warn family and friends
Quick Quiz!
How good are you at protecting yourself online?