By
Set Security Goals for 2025
https://ift.tt/i7PzahQ
January marks the beginning of a New Year, and endless possibilities. As we step into that new year, many of us set goals to improve our lives, whether it’s focusing on health, nurturing relationships, or advancing our careers.
So, what are some security-related goals that we can adopt to get our year off to the best start possible?
Know what you’re sharing
Whether it’s in the context of social media, small talk on the phone, or chatter with the person cutting our hair, it is all too common to overshare — which can pose an unexpected security risk. While it is not always a problem to share bits of ourselves in these situations, it is still important to be aware of what has been shared, and with whom.
Take this opportunity in the new year to evaluate what information you are sharing with the different social circles you interact with.
Consider reducing the information you share about
- Your job
- Your travel
- Your activities
- Your spending
- Your family, especially children
By being mindful of what you share, and with whom, you can be better prepared for recognizing phishing or vishing attempts that may be tailored to you.
Use Strong Passwords
A 2023 study done by security.org indicated that about 37% of people share their passwords with others. Password sharing, and the use of personal information in passwords, can drastically reduce the security of your online accounts and information.
The same study indicated that many people still use information such as pets’ names, family names, birthdays, and other important dates in their passwords.
A few key factors for password strength are:
- Length and character set: Passwords should be at least 8 characters in length, but the longer the better! Adding variation with an expanded character set helps too! Alternatively, pass phrases can increase randomness even faster without being more difficult to memorize or type.
- Uniqueness: Using a different password for each account helps reduce the chance of a single breach impacting multiple accounts.
- Storage: A shared secret is not a secret! Don’t share your passwords with others, don’t write them down where they can be discovered, and don’t transmit them without encryption.
Further tips and tricks on creating strong passwords can be found here.
Do you have trouble remembering all those passwords? There are a variety of different password managers available at different price points that can fit both personal and business needs.
Implement Due Diligence
EVERYONE is vulnerable to social engineering attempts under the right circumstances. Implement some due-diligence practices to help avoid accidental compromise. A little diligence can go a long way toward reducing vulnerability.
Do Not Follow Links
Instead visit the site through a known route:
Almost any legitimate communication you receive will be with someone or something you already possess contact information for. Take the time to follow up using those pre-established channels. Verify the information using the web address, login page, email address, phone number, or portal, that you usually use, rather than what was presented in the unprompted communication.
Ask Questions
If you get a communication asking to do something, follow up through a second channel to confirm the request.
Trust Your Gut
Sometimes interactions set off little red flags that our body warns us about in subtle ways. If a communication seems off, do yourself a favor and take a step back to figure out what it is that is making you uncomfortable.
Tools to Boost Your Information Security
Social-Engineer, LLC, offers a wide variety of resources and information to help boost your information security know-how. For more tips and tricks for securing your information and online presence check out our blog from Cybersecurity Awareness Month – Secure YOUR World. Even more information can be found on our Podcasts like Ep. 268 – The SE ETC Series – Phishing, Impersonation and Bad Actors – Oh My!!
Congratulations on your resolution to give yourself a more secure online experience with these new security goals in 2025!
Written by:
Faith Kent
Human Risk Analyst
Social-Engineer, LLC
news
via Security Through Education https://ift.tt/ca19y3O
January 22, 2025 at 05:29AM
January 22, 2025 at 05:31AM
via Comments on: Set Security Goals for 2025 https://ift.tt/i7PzahQ