There are many approaches in the cyber security field that mitigate exposure to vulnerabilities and exploits, however, some of the simplest ones are the most important. Below we’ll talk about basic things you can do to be secure.
- Password Management (Complex passwords)
- Dual Factor Authentication
- Phishing, Vishing, Spear Phishing
- Malicious Redirects and Downloads
- Importance of Firewalls and Antivirus
Passwords are the first line of defense against someone gaining access to your information, making them incredibly important in the cyber security world. Therefore, it would make sense that you would want to make hard to breach. A simple method of doing so would be to make your password longer and more complex. By increasing the characters in a password, you increase the variables a hacker must figure out in order to brute force or guess. Adding numbers, symbols, and even capitalized letters, all make it more challenging for your password to be compromised. If your information is important to you, make sure your password is as complex as possible in order to remain secure.
Dual Factor Authentication
Cyber Security is always implemented in layers. Along with secure passwords, you want to ensure dual factor is enabled when available. Adding Dual Factor Authentication security to your account enhances the security of an account by requiring a second method of verification when entering a password. This can be done by having a text or email sent to your number every time someone tries logging into your account. This gives your account multiple layers of protection to keep your information secure and prevent unauthorized access.
Phishing, Vishing, Spear Phishing Awareness
Phishing, vishing, and spear phishing are all forms of social engineering. Social engineering is considered an act of deception to manipulate an individual into divulging confidential information that may be used for malicious reasons. A typical example of this attack is the tech support scam. Users receive a call from an impersonator claiming to be from Microsoft or the IRS. They lure the victim in by convincing you that your PC has a virus or threaten you with legal action if pretending to be with the IRS. Being aware of these attacks are the first steps in preventing them. Managerial awareness is just as important as employee awareness. Training is the ultimate mitigation strategy in response to social engineering attacks. Simply posting notes, posters, or reminders can raise awareness and make this type of attack less likely to occur, keeping your business safe.
Malicious Redirects and Downloads
A malicious redirect is a bit of code inserted into a website by hackers that redirect the user to a malicious website. An example of this would be a pop-up ad when visiting a certain untrusted website. This can be done for the purpose of downloading malware (viruses) or generating advertising impressions, or both. When this occurs, it is important to close the tabs that were opened (and the original website) as soon as possible. Note: If you close the browser (such as Chrome) without closing the tabs, the website may reopen when you relaunch the browser. In the event you’re redirected and notice something downloading, it is important you remove the download from your downloads folder. It may be a malicious application in the form of malware, adware, or any other type of potentially unwanted software.
Firewalls and Antivirus Importance
Firewalls and Antivirus software give your computer your main line of defense when it comes to malicious software and unsolicited connection requests from the internet. Firewalls block unauthorized access and monitor the flow of information into a computer. to make ensure it is legitimate. Antivirus software generally scans all applications, software, and processes in search of unusual behavior. It is important that these are installed on your computer and that they are enabled in order to prevent your computer from being compromised. If you’re a Windows user then these come with Windows 10. Just be sure you never disable it, seriously don’t!!
Spectre Intelligence is a private investigation and intelligence firm located in sunny Round Rock, TX (Austin area). If you need investigation or cybersecurity services, visit us at www.spectreintel.com and www.spectretechnology.com