Online Safety

With so much of our lives spent online, it is increasingly becoming a scammers' playground.

We store and share some of our most valuable personal information via the internet. Sadly, some people try to exploit this trend, which makes it crucial for us to be careful when sharing information digitally. 

Here are our top tips for keeping yourself safe online.

Using strong passwords and 2FA

Having a strong password is essential to prevent being hacked. The longer a password is, the harder it is to crack, so choose a long password. To make it memorable, use a phrase rather than a single word. A password like:

myfavouritefoodisHawaiianpizza

is more memorable yet harder to crack than a short one with lots of numbers and symbols, like:

jk51lol$!

So choose something long and memorable. Song lyrics are great for password. Just avoid any word combination that is too obvious (nobody's favourite food is Hawaiian pizza).

It's important to use a different password for each platform you log into. This prevents someone who gains access to your password on one account from hacking into anything else.

Still, passwords are not infallible. So, along with a password, use 2-factor authentification (2FA) whenever possible. This requires you to enter a one-time passcode as well as your password by using something like Google Authenticator. Do this, and you will be 99% safe from almost any hacking attempt.

2FA might feel like an inconvenience, but it's far less inconvenient than being hacked.

Limit how much personal info you share

Be careful how much personal information you share online. For example, avoid disclosing your address or date of birth. This info can be used to scam you, impersonate you, or access your private accounts. It's best to err on the side of caution, so fi you're in doubt, don't share your information.

Institutions that hold sensitive personal data, such as your bank, will tell you which information they will never ask for. If someone claiming to be that institution asks you for this information, you can be sure it's a scam. To avoid falling prey to this type of phising, familiarise yourself with what information companies you hold accounts with will and will not ask you for.

Only buy things from legitimate websites

There are a lot of convincing-looking fake or scammy websites out there. A good way to check the safety of a website is to check for the closed padlock icon in the URL bar. This shows that the connection is secure. 

Check the URL begins with HTTPS rather than just HTTP (the 'S' stands for secure). Also, check the website URL is spelt correctly and isn't just a word that looks close enough that many people wouldn't spot it's fake, e.g. amozan.com

Keep your software up-to-date

Set your operating system and apps to auto-update. This ensures any security holes are plugged as soon as possible. Dedicated anitvirus software isn't essential as most in-built OS antivirus apps do a good enough job. But if you use one, keep this up-to-date too.

Be aware of scams

There are many active scams to be aware of, with new ones regularly coming into circulation. Always act with caution and trust your instinct. This article explains some of the most common scams.

A particularly common one is the fake delivery text scam. You receive a text saying something like, "We tried to deliver your parcel today, but you weren't in. Please follow this link to rearrange your delivery". This is phase one of the swindle. 

If you follow the link and the subsequent instructions (usually asking you to pay a small fee to cover delivery costs), you will receive a very convincing, professional sounding phone call a day or two later. This is part two of the scam, where you will be asked for some personal details to complete the transactions. If you fall for this second phase, the scammers will have everything they need to take control of—and empty—your bank account.

Due to its sophistication, many people fall victim to this scam and have their money stolen. To avoid it, be aware that when a delivery service texts you, they will appear as a named contact, rather than a number (e.g. "DPD" or "Royal Mail" rather than "034 582").

To check if something is a scam, Google the number or the phrase of the message you have received before you follow any instructions or take action. Common scams will show up in the search results. You can find more advice on scams here.

Be careful what you post online

Assume that anything you post online, even in a private chat, can be screenshot, shared, and saved forever. Even if you delete a comment or image, you can't remove any copies people may have made. The best rule to go by is don't post something online that you wouldn't want everyone to see.

Be careful who you meet up with

When speaking to people you meet online, be careful with the information you share. Sadly, it's all too common for people to use fake profiles to take advantage of others. If you decide to meet up with someone you have met online, make sure you do so in a public place and tell a friend where you're going. If they don't appear to be who they presented themselves as online, make a swift exit.

Using public wifi

Public wifi is not the most secure, but here are some ways to stay safe whilst using it: 

  1. Install a VPN app and turn it on when using public networks. 
  2. Confirm the security of a site by checking for the padlock icon and a URL beginning with 'HTTPS'.
  3. Avoid accessing your personal or financial info, such as logging into your online banking.

Using your mobile data while out and about is safer and preferable to connecting to public wifi networks.

Want further support?

If you're concerned about information you've shared online, have been a scam victim, or have experienced cyber-bullying, you can access support through our Information and Advice Service