Cyber Smart Week: Simple steps to stay secure online
It only takes a few minutes to upgrade and update your devices and passwords to stay safe online.
Do you reuse the same password for multiple websites? Have you got a curious friend request from someone on social media you’re already friends with? It’s time to strengthen your cybersecurity and here’s how.
If you’re thinking you should really get around to tightening up your cybersecurity but just haven’t got around to it, you’re far from alone.
In 2020, a joint survey by Cert NZ and the Ministry of Business, Innovation and Employment found 60% of respondents were concerned about the security of their online personal and payment information.
However, the survey also found many consumers weren’t doing enough to stay safe – such as using two-factor authentication, proactively changing passwords and using a password manager.
Two years later, a further ministry survey found 64% of people were still concerned about the security of their information online.
If you’re one of these concerned people, what steps can you take to improve your online security?
Luckily, this week is Cyber Smart Week. Even better, it only takes a few minutes to update your details and devices and get protected.
Read on to find out how.
Stay alert for scams
Scams are scary. It’s hard to spot one or know what to do if you’re caught in one.
If you do get scammed, you shouldn’t feel ashamed. In Consumer NZ’s latest sentiment tracker survey, half of the respondents said they had been targeted by a scammer, and 1 in 10 said they, or someone in their household, had financially fallen victim to a scam in the past 12 months.
Types of scams
Dating and romance
Scammers use online dating sites to form relationships with people looking for love. Once they’ve built up enough trust, the scammers begin asking for money. You can read more about spotting and avoiding romance scams on our Looking for love? Beware of romance scams article.
Investment
This type of scam often uses cold calling or social media to encourage you to “invest” in their scheme. Then they steal your money instead of investing it.
You can read more about investment scams in our articles: Investment scams: how two women lost over $100k on social media and Swindled: finance scam horror stories and how to protect yourself.
Also, be extra careful when investing in crypto currencies and other digital assets. See: NFTs: why are there so many scams? and Bitcons: cryptocurrency investment scams on the rise.
Computer “service” call
No Microsoft or Apple technician will call you out of the blue.
Charity
A more recent addition to the scam family in Aotearoa was highlighted by Cyclone Gabrielle. After the cyclone, the Citizens Advice Bureau warned consumers to be suspicious of people cold calling or going door to door collecting for charity, particularly if they weren’t wearing clothing or other items to identify who they are. You can read more about this in: Watch out for scams following Cyclone Gabrielle.
Banking
New Zealanders lose around $200 million each year to banking scams. There are many variations of banking scams including a cold caller asking you to update your banking details, a scammer hacking an email and replacing the bank’s credentials with their own, or a text using similar tactics to a phone call, preying on fear and urgency. You can read more about these in our article: Beware phone and text scammers impersonating banks.
Banks are meant to monitor transactions and help if it seems you’re getting scammed. However, the New Zealand system has been lagging behind other countries. Read more about it in: Scams: Should your bank be liable for losses?
Recently, the New Zealand Banking Association has announced its intention to implement one of the anti-scam solutions adopted overseas – a name and account matching service called confirmation of payee (also referred to as CoP). You can read more about this in our article: The simple banking process that could stamp out scams article.
Use strong, long, unique passwords
Bigger is better when it comes to passwords.
Make them long, complex and hard to guess. A strong password contains upper- and lower-case letters, numbers and punctuation. Don’t be tempted to choose a short password for convenience or reuse the same one on multiple websites.
If you have trouble remembering passwords, try making them a catchy phrase of four or more random words, with a mix of numbers, letters and symbols (for example, “AutumnStr0ngPasswordP1zza!”).
A password manager is an easy way to store and generate complex passwords. See our test of password managers to find the best for you.
Turn on two-factor authentication
Two-factor authentication (also known as 2FA or two-step verification) is when an additional code is needed to log in to a service, but it’s not one you create.
The 2FA code will be sent to you via text message or email, or will be generated by an authenticator app (you need to set this up first). You then need to enter the code when prompted if you want to get into the service. Using a 2FA code means someone else can’t login, even if they have your username and password. You’ll be sent a new code every time you log in.
Many services – from bank accounts to email and even social media – offer and encourage two-factor authentication. You should upgrade your logins and use this extra protection whenever possible.
For more on two-factor authentication, see our password managers buying guide.
Update apps and devices
Updating your devices and apps is the easiest way to fix security bugs and keep out viruses. If there’s an update available for your device or an app you use, it could mean there’s been a vulnerability detected, which is or could be exploited by attackers. Update as soon as possible.
For example, last month Apple encouraged users to update their iPhones, iPads, Macs and smartwatches to patch a security vulnerability that was being actively exploited.
Don’t forget to keep your security software updated as well. See our computer security software reviews to find the best program.
Set your social media to private
The best thing you can do to protect your privacy online is don’t over share. Take control of your online privacy by turning off any settings that share your details.
On social media this means checking that your sharing settings – such as whether your date of birth is displayed and your friends list is visible – are set to private or “Friends only”. This can stop your accounts being cloned or mined for data.
Also avoid sharing posts that ask for personal information in disguise. These posts often ask for information commonly used in security questions – such as your hometown or grandmother’s maiden name. This information can then be used to hack your accounts.
Think before you click
If you don’t know the sender (email, text message or social media post), and you aren’t expecting anything, then don’t click. Even if you think the message is genuine, it’s better to navigate to the website on your own. If an offer sounds too good to be true, it probably is!
Other tips to keep cyber safe
- Use a virtual private network (VPN) when connecting to unsecured or public WiFi.
- Don’t reply to unsolicited emails.
- Don’t open attachments or click links on emails from people you don’t know.
- Don’t open links from unsolicited text messages.
- When paying online, make sure the website is secure by checking that the URL (web address) starts with “https” and there’s a padlock in the URL bar on your browser.
- Check out our article about scams and how to avoid them.
Report scams and cyber attacks
It can be devastating to realise you’ve been hacked or scammed, but by reporting them you can help prevent others from falling victim.
If you’ve been scammed, act immediately
- Contact your bank and the police.
- If you’ve downloaded anything, don’t use your machine.
- Contact NetSafe for advice on how to ensure your computer is safe to use.
- You can forward any suspicious texts you receive to 7726. This is a free service run by Te Tari Taiwhenua, to record and monitor text message scams in New Zealand.
- Report any other cybersecurity issues, such as hacks, to Cert NZ.
We've tested 17 wifi routers, mesh networks & range extenders.
Find the right one for you.
Member comments
Get access to comment