Back to blog
Cyber Security

10 Basics of Good Cyber Hygiene to Lower Your Risk of a Breach

19 September 2024Zenith Systems4 min read

In our increasingly digital world, the importance of cybersecurity cannot be overstated. From personal data breaches to large-scale corporate cyber-attacks, threats are ever-present.

As an IT support provider, Zenith Systems understands the critical need for individuals and businesses to maintain good cyber hygiene practices. This guide covers the basics of good cyber hygiene to help lower breach risk.

1. Keep your software up to date

One of the foundational principles of good cyber hygiene is ensuring that all software, including operating systems and applications, is regularly updated. These updates often contain crucial security patches that address vulnerabilities.

  • Enable automatic updates. Set devices and software to automatically install updates to minimise missing critical patches.
  • Regularly check for updates. Manually check for updates if automatic updates are not available.
  • Uninstall unused software. Remove any software you no longer need to reduce your attack surface.

2. Strong and unique passwords

Passwords are your first line of defence against unauthorised access. Weak or easily guessable passwords are an open invitation to cybercriminals.

  • Use longer passwords. Create passwords or passphrases with greater length to increase complexity.
  • Avoid common words. Do not use easily guessable words or phrases.
  • Unique passwords for each account. Never reuse passwords across different accounts.
  • Consider a password manager. Using a password manager helps generate and store complex, unique passwords for all accounts.

3. Enforce multi-factor authentication (MFA)

Multi-factor authentication adds an extra layer of security by requiring two or more pieces of evidence before granting access. This typically involves something you know (password) and something you have (a smartphone or security token).

  • Utilise MFA for all accounts. Enable MFA on email, social media, and financial accounts.
  • App-based authentication. Prefer app-based authentication over SMS-based methods for enhanced security.
  • Backup codes. Keep a record of backup codes in case you lose access to your MFA device.

4. Beware of phishing attempts

Phishing is a common tactic used by cybercriminals to trick individuals into revealing sensitive information. Being able to recognise and avoid phishing attempts is essential in maintaining good cyber hygiene.

  • Verify sender identity. Always verify the sender's email address before clicking links or downloading attachments.
  • Don't trust unsolicited emails. Be cautious of unsolicited emails requesting personal or financial information.
  • Inspect URLs. Hover your mouse over links to see where they lead before clicking.
  • Have a business process. When in doubt, use your pre-arranged plan to verify, such as calling a known good telephone number.
  • Educate yourself and others. Stay informed about common phishing techniques and educate colleagues and family.

5. Regularly back up your data

Data loss can be catastrophic, and ransomware attacks are on the rise. Regularly backing up your data can be a lifesaver in case of a breach or data loss.

  • Automate backups. Use backup software to automate the process, ensuring consistent data backup.
  • Store backups securely. Keep backups in a secure, off-site location.
  • Test your backups. Periodically test backups to ensure they can be successfully restored when needed.

6. Keep an eye on your network

Protecting your network is essential, whether you're at home or in a corporate environment. A well-secured network is a significant part of maintaining good cyber hygiene.

  • Firewalls. Enable firewalls on devices and network to filter incoming and outgoing traffic.
  • Use strong encryption. Encrypt your Wi-Fi network with WPA3 or a similarly secure protocol.
  • Regularly update router firmware. Keep your router's firmware up to date to patch security vulnerabilities.

7. Stay informed and educated

Cyber threats are continually evolving, and it's vital to stay informed about the latest cybersecurity trends and best practices.

  • Follow security news. Keep up with cybersecurity news and subscribe to newsletters providing updates on emerging threats.
  • Regular training. Provide cybersecurity training for yourself and employees if you're a business owner.
  • Report suspicious activity. Encourage a culture of reporting any unusual or suspicious activity to your IT support team.

8. Regularly review privacy settings

Many online services and social media platforms offer privacy settings that allow you to control the information you share.

  • Review app permissions. Periodically review the permissions you've granted to apps and revoke unnecessary access.
  • Social media privacy. Adjust privacy settings on social media profiles to limit information visible to the public.
  • Location services. Limit the apps that have access to your location data to protect your privacy.

9. Secure your devices

The devices you use, including smartphones, laptops, and desktop computers, are susceptible to cyber threats.

  • Enable lock screen. Use passcodes, PINs, or biometric authentication to lock devices.
  • Install security software. Install reputable antivirus and anti-malware software to safeguard devices.
  • Remote wipe and tracking. Enable the ability to remotely wipe your device if lost or stolen, and track its location.

10. Develop an incident response plan

Despite all efforts, breaches can still occur. It's essential to be prepared to respond effectively to minimise damage.

  • Identify and isolate. Quickly identify the breach and isolate affected systems to prevent further damage.
  • Notify relevant parties. Inform employees, customers, and authorities as necessary.
  • Forensic analysis. Conduct a forensic analysis to determine the extent of the breach and how it occurred.
  • Recovery and mitigation. Implement recovery measures and mitigate future risks.

Protect yourself today

Good cyber hygiene is an ongoing process that requires vigilance and dedication. By following these basic principles, you can significantly lower your risk of a cyber breach. Whether you're an individual or a business owner, it's essential to take cyber hygiene seriously.