本着传统的精神, we asked our cybersecurity team to share the top resolutions end users and organizations can make to improve their security posture in the new year.
1. 使用密码管理器
Password managers offer a convenient and secure method to access your accounts by allowing you to create, 集中存储和使用强密码. They also allow you to keep track of a variety of passwords for individual accounts, as you should never use the same password for more than one account in case of a breach.
2. 尽可能实现多因素身份验证(MFA)
强密码是一个很好的开始,但实现MFA更好. MFA是抵御网络钓鱼攻击的关键防御手段, creating an additional step to the account login process to protect your accounts. Just be sure that you made the initial request if you receive an MFA prompt – as threat actors are using MFA疲劳 to take advantage of our learned behavior to automatically approve these requests.
3. 卸载未使用的应用
One of the simplest ways to keep your information secure is to uninstall unused apps from your smart devices. 即使应用程序是合法的, many of them have default privacy settings that access your data and could potentially put you at risk if the app’s company is part of a breach. Be sure to take advantage of your smart device’s settings that may allow you to set up automatic app cleanup.
The rise of remote work continues to put a strain on organizational security simply because personal home networks are often integrated with work networks. 如果你或你家里的任何人在工作中使用家庭网络, creating separate networks for professional and personal use is an important defense mechanism. If you are unsure how to do this, simply reach out to your IT department.
7. 不要相信不请自来的电话
Fraudulent phone calls, known as vishing, are still a popular phishing method of threat actors. If you receive an unsolicited phone call asking for private or financial information, simply hang up. If you think the call is legitimate you should hang up and call back a verified number. 虽然这些攻击仍然会发生, the good news is many smartphones have technology dedicated to outing potential scams before your phone rings at all.
8. 停止盲目扫码
One of the odd trends of the pandemic was the resurgence of QR codes as conveniently contactless methods of viewing information 如 restaurant menus. 不幸的是,网络钓鱼攻击通过QR码(称为 quishing) are on the rise, to the tune of 587% between August and September of 2023. QR codes are useful but be cautious and verify the domain associated with a QR code before you scan it. Remember, anybody can make a QR code, especially those with malicious intent.
9. 尽可能避开公共Wi-Fi
这个网络安全最佳实践是不言自明的, but still one of the leading security concerns for individuals and organizations. 即使Wi-Fi网络是合法的, it doesn’t mean it’s safe – and you don’t know who is on the network with you. 如果你必须使用公共Wi-Fi, 避免访问任何带有个人信息或凭据的网站, 并使用VPN来增加安全性.
10. 定期检查您的信息是否属于违规行为
近年来,你的信息很有可能被泄露. 如果是这样的话, you may have received an email or letter with a vague explanation of the breach and an offer for free credit monitoring, 但是我们建议通过使用经过验证的资源来采取主动, 如 http://haveibeenpwned.com,以了解您的信息是否被泄露. 如果你的数据在外面, 一定要检查你的信用报告, change passwords and check the breached party’s website for additional resources.
这些是我们新年的网络安全决心,你的呢?
If you have any questions about our list or how to achieve your cybersecurity goals for 2024 contact our team at (电子邮件保护).
关于施耐德唐斯网络安全
The Schneider Downs cybersecurity practice consists of experts offering a comprehensive set of information technology security services, 包括渗透测试, 入侵防御/检测审查, ransomware安全, vulnerability assessments and a robust digital forensics and incident response team. 此外,我们的 数字取证和事件响应 teams are available 24x7x365 at 1-800-993-8937 if you suspect or are experiencing a network incident of any kind.
The Schneider Downs 我们对 blog exists to create a dialogue on issues that are important to organizations and individuals. 虽然我们喜欢分享我们的想法和见解, 我们对你要说的特别感兴趣. If you have a question or a comment about this article – or any article from the 我们对 blog – we hope you’ll share it with us. After all, a dialogue is an exchange of ideas, and we’d like to hear from you. 电邮至 (电子邮件保护).
所讨论的材料仅供参考, 而且这不能被理解为投资, 税, 或法律建议. 请注意,个别情况可能有所不同. 因此, this information should be relied upon when coordinated with individual professional advice.
This site uses cookies to ensure that we give you the best user experience. Cookies assist in navigation, analyzing traffic and in our marketing efforts as described in our 隐私政策.