June is National Internet Safety Month! The Department of Homeland Security, in coordination with the National Cybersecurity Alliance, has created a public awareness campaign called STOP.THINK.CONNECT. The goal of this campaign is to educate individuals and organizations to be safer online by improving their understanding of cyber threats. With that in mind, our June newsletter will break down this campaign and help you and your organizations stop, think, and tune in for Internet Safety Month.
STOP – are safety measures in place?
What do Microsoft, News Corp and the Red Cross have in common? All underwent a cybersecurity attack in 2022. Unfortunately, cyberattacks and breaches are big business. There is a plethora of malicious actors populating the internet, ready to pounce on insecure data and immature security practices. How do you defend against these attacks? The old adage “to fail to prepare is to prepare to fail” applies here. Preparing for attacks before they happen will give you a layer of defense early on. In other words, it’s important to understand what your security posture is within your organization.
Do you have security procedures in place? If so, do your employees know and follow these procedures? Do your employees feel empowered to stop attackers? Do they know the different attack vectors against which they must protect themselves? Instead of waiting for a cyberattack to find the answers to these questions, implementation of a training program will help you get a good idea of your security posture. It will also arm your employees with the right defense.
THINK – about the consequences of your online actions and behaviors
According to a recent report, there are 3.96 billion social media users worldwide in 2022. Yes, you read that right, BILLION. Statistics also show that more than 91% use their mobile devices to access social networks. Do everything from promoting their business to selling goods, reaching out to friends and family or being influencers. It is clear that social networks are not going away. So how do you protect yourself on such a large forum?
Never click and say
Limit the information you post on social media. Marking your location at your favorite local cafe can give a bad actor personal details that can be used in an attack. Seemingly random details are all an attacker needs to know to target you, your loved ones, and your physical possessions. Also, always keep social security numbers, account numbers, and passwords private, as well as specific information about your full name, address, date of birth, and even vacation plans. And it’s also important to turn off location services that allow anyone to see where you are — and where you’re not — at all times.
Speak up if you are uncomfortable
We’ve all seen a friend post something that made us cringe. Perhaps it was a young friend delighted to have obtained his first license who proudly held him while he took a selfie. Or a couple buying their first house in front of their new address. Although we are happy for them, the information they post may be harmful to them. It’s never easy to approach a friend about something they post, but it can protect them and their family.
Report suspicious or harassing activity
Work with your social media platform to report and possibly block harassing users. Another key point is to report an incident if you have been the victim of a cybercrime. Local and national authorities can help you.
Remember that there is no “delete” button on the Internet
Share with caution, because even if you delete a post or image from your profile minutes after posting it, chances are someone has still seen it.
Update your privacy settings
Adjust the privacy and security settings to your comfort level for sharing information. This is not a one-time process as social media platforms often update and change their settings. So every once in a while check the settings to make sure they are at the level of security you want. It’s also important to turn off geolocation, which lets people see where you are.
Only connect with people you trust
Although some social networks may seem safer to connect to due to the limited amount of personal information shared through them, keep your connections with people you know and trust.
CONNECT – and enjoy your devices with more peace of mind
The world we live in is constantly connected. From our phones to our fitness trackers, to our refrigerator and our personal digital assistants, everything is connected. And while these things have made our lives easier, they also come with security issues. More than 7 million Internet of Things (IoT) devices are used in homes every day. In light of this, there are things you should consider and do yourself to use your products safely.
- Regularly monitor your accounts and devices. Monitor and report any unusual activity.
- Have strong passwords. Use long, unique passwords that include special characters. Do not use the same password for multiple devices.
- Read the Terms of Service (ToS). The permissions and access outlines in the ToS will often surprise you and help you make informed decisions.
- Keep IoT devices out of your main internal network, where all your personal devices are connected. By keeping devices alone, individual networks separated by a firewall to isolate your main network.
- Unplug your devices when not in use.
- Enable multi-factor authentication (MFA). This will add an extra layer of protection that can prevent criminals from easily accessing your account.
Personal security is cybersecurity
Staying safe online can seem like a daunting task, we understand. But there are simple things you can do to keep yourself and your family safe. The Cybersecurity and Infrastructure Security Agency (CISA) offers 4 simple things you can do to ensure your cybersecurity.
- Enable MFA for all appropriate accounts.
- Update your software – enable automatic updates if available.
- Think before you click! – more … than 90% of successful cyber attacks start with a phishing email.
- Use strong passwords. Ideally, use a password manager to generate and store unique passwords.
Our world is increasingly digital and interconnected. We all have a responsibility to protect ourselves and the systems we all rely on.
Don’t go it alone
Cybersecurity holidays like National Internet Safety Month are definitely important to recognize, especially within your organization. But it can also be difficult to push this type of outreach content when juggling multiple other tasks. That’s why it’s good to take advantage of resources provided by other organizations. For example, the National Cybersecurity Alliance offers a number of tips to protect yourself online. Share these tips with your population will help keep them up to date. There are also many written sources such as blogs, and this newsletter that aim to educate people on security best practices. If reading isn’t your thing, then maybe our security-based podcast suits you better.
Cyber Security Awareness Month 2022 is not far away. This annual initiative sponsored by the Cybersecurity and Infrastructure Security Agency (CISA) takes place every October. It was created to raise awareness of the importance of cybersecurity and ensure access to the resources needed to protect information and make it more secure. Planning an awareness campaign for your organization? The team at Social-Engineer, LLC is not only made up of experts in identifying information security threats, but also professionally trained and certified social engineers who can share insights. view, tactics and how to defend against them. As part of a special initiative for Cybersecurity Awareness Month, our expert speakers offer virtual, in-person or hybrid engagements on over 15 different topics.
Visit our website for more information and discover early booking discounts: www.social-engineer.com
Written by: Amanda Marchuck
*** This is a syndicated blog from the Security Bloggers Network of Safety through education written by Social-Engineer. Read the original post at: https://www.social-engineer.org/social-engineering/internet-safety-month-stop-think-connect/