Guides

Digital safety tips

Whether you spend a little or a lot of time online, it's always good to have a digital safety plan. Not sure where to start? Check out the following tips.

Written by Medibank

25 January 2023 3 min read

Re-think passwords

There’s a password for everything: apps, online banking, streaming services, email, videogames and the list goes on and on. That’s a lot of passwords to remember and it’s easy to fall into the habit of using the same words, numbers and phrases for each account. Instead, re-think your approach to passwords – ditch whatever you’ve done in the past.

Start fresh with eight or more characters and focus on random combinations of characters, numbers and symbols to form a passphrase. The goal is to be completely random because passwords that include personal information, like birthdays, names or addresses, could be guessed easily.

Also, avoid using the same passphrase with a variation each time you update or add a new one, for example: Purplemonkeyd!shwasher1, Purlplemonkeyd!shwaher2, Purplemonkeyd!shwasher3.

Give a password manager a try if you find it too tricky.

Password managers

A password manager is a program that will create and store passwords. The program will automatically generate unique, complex passwords for use across multiple accounts and it may take the hassle out of thinking up strong passwords. Before you select a password manager make sure the provider is reputable.

Two Factor Identification

Add another layer of security with two factor identification where available, also known as two-step login. How does it work? You enter your password followed by a unique code. Usually, the unique code is sent via an app, email or text message. You can also incorporate a biometric check, where available, such as utilising facial recognition or a fingerprint, paired with a password – which will again make this identification process stronger. There are lots of two factor identification options to choose from but make sure it’s made by a trusted organization.

Say 'no' to notifications

On a daily basis, you may get bombarded with notifications from text messages, emails, social media and apps. The amount of notifications you get can make it harder to tell the difference between legitimate messages and scam messages. Reduce the number of notifications by turning them off on your devices. That way, the only notifications you get will be from trusted sources.

Online account audit

Make a list of all the accounts you’ve created online that require a username and password. It’s easy to create lots of accounts and forget about them. If you keep track of your online accounts, you can maintain a list of your different passwords and who stores your data, or, as mentioned earlier – use a password manager. Keep the list in a secure location.

Have you been pwned?

Have I been pwned? is a website where you can enter your email address or mobile phone number and find out if it has been involved in a data breach. You’ll need to subscribe to obtain a detailed list of where and when your data was unintentionally exposed.

Assess your social media presence

Social media sites like Twitter and Facebook can be a target for hackers. Think about your social media usage and the apps or websites you frequent the most. If you no longer use them regularly – deactivate. Otherwise, check your privacy settings regularly, and limit who you can see your posts and information. And if you get a message from a friend about an investment opportunity or request for money, call them as their account may have been hacked.

Delete downloads

It’s easy to download files on your computer or phone and then forget the piles of data you’ve got stored. Often, your downloads folder will be full of data you never intended to keep and it’s easy to confuse it with the files you do want to keep. Clean out your downloads folder on a regular basis so you know what’s supposed to be there and what’s not.

Check third-party apps

Do you ever give Facebook or Google permission to log in to websites? These are known as ‘third-party integrations’ and they can be risky. How? If a website gets hacked, the hackers will get access to the login credentials provided. Keep track of websites you visit that use third-party integrations and consider blocking access to any sites you no longer frequent. This can be done through your internet browser settings.

Stay informed

Be aware of potential scams before they hit. The Australian Competition and Consumer Commission runs Scamwatch to keep Australian residents informed about data breaches and scams. Make it a habit to check the Scamwatch website on a regular basis to stay up to date.

You can also check the Australian Cyber Security Centre, where you can find information for yourself or your family on scams and cyber security, report cybercrimes or read tips on how to stay secure online.

Written by Medibank
Tags

Previous article

Seasonal planting guide

Skip list

Related articles

Read More
Article Image

Skip list