Tuesday 15-01-2019 - 10:24

Don’t lose your January student loan before you’ve had chance to blow it in the sales – here’s how to keep your details, data (and maybe even nudes) safe and secure. 

 

Use a decent password
Strong passwords need to be at least 12 characters and to be complicated (including numbers, symbols, and a mix of upper and lower caps). Ideally, they shouldn’t be a dictionary word and shouldn’t rely on obvious substitutions (like a 0 for an o). 

An example of a really strong password is something like “P7jLb_@3@4p” – this would be impossible to for anyone to guess but pretty tough to remember too. If you need a hand remembering strong passwords – get a password manager*.

To be in the 1% of internet safety, use a different password for everything. Hackers can test out your email and password combination on hundreds of websites to see if they work, so if you use the same one for everything ¬– they’ll be able to get into it all. 

Get a password manager*
A password manager will store your passwords for you and help you to generate strong passwords. Some will also autofill them on certain sites, so you don’t even have to bother copy and pasting them in. It’ll also prompt you to change your passwords every few months – if one of your passwords is compromised, it won’t be an issue for long. 

Popular ones are: Dashlane, LastPass, KeePass and 1Password.

 

Have you been pwned? 
To check whether you’ve been part of a data breach, you can use the website “have you been pwned?”. It will tell you if your data has ever been compromised and if it’s on the DarkWeb just waiting for someone to test it out. If you have been pwned… change your passwords straight away.

Check if you've been pwned.

 

2-step/2-factor authenticate
This adds an extra layer of security to your account – if someone has your password, they still can’t get in. It usually means linking your account to your phone, so it texts you a single-use code that you have to enter to log in. 

If you want to be even more secure, you can get a YubiKey. A YubiKey is a physical chip that you sync with websites – plug it into in your USB port or phone and it will act as your second form of authentication. It will also protect you from phishing attempts, as it will only work on the original website you linked it to.  

Twofactorauth is a great website to show you all websites that support 2FA. 

 

 

Don’t overshare on social media 
If someone wants to target you specifically, they may look through what they can find on your social media accounts to try to guess your password. Be wary of what you make public and what you share openly. 

 

HTTPS
The difference between http and https is when you enter anything personal like your password, credit card details or phone number, a https site will encrypt it. This means your information is much safer than on a http site. 

You can use a https everywhere to make sure that you’re always https when you’re using the internet.

Install the plugin. 

Pay with your smartphone 
Surprisingly, paying with your phone is safer than shopping online or using a physical card. Payments only work if someone steals your phone and your actual thumb – which is unlikely to ever happen. Most mobile wallets also don’t use your real card information for transactions – they generate things called tokens, which are randomly generated numbers that function like card numbers, so your card details never get used in the transaction.

 

Get a VPN
A VPN will protect you in scenarios where your data is most likely to be stolen – public Wi-Fi is the worst offender, think coffee shops, airports and public transport. A VPN creates an encrypted tunnel that all your internet use is routed through, meaning no prying eyes can take your details. 

 

Be wary of phishing 
“Your account has been compromised” – we’ve all had that email, text or phone call. Don’t give out any personal information if you’re not sure, and if in doubt email the real company to ask if something is legitimate. Never log onto something if you’re even a little bit suspicious about. 

 

Check links before you click them 
Clicking on an unsafe link is a world of pain. They can appear as ‘like’ buttons, click bait news stories, hidden in hyperlinks, all sorts. If you hover over a link, the true destination will appear at the bottom left of your browser. If you’re uncertain about a link, it’s worth checking this before you click on it. 

 

Do your computer updates
Raise a hand if you’ve left your updates for months and months… yep, that’s everyone that’s ever owned a computer or phone in their lifetime. Updates often have improved security (and will get rid of bugs), so you really should just do it.