Prevention is your best defense against cybercrime. By adopting these simple yet crucial habits, you can significantly reduce your risk of becoming a victim.
1. Strong Passwords & Multi-Factor Authentication (MFA)
Your password is often the first line of defense. Make it strong and use additional layers of security.
- Tips for creating strong passwords:
- Length is Key: Aim for at least 12-16 characters. Longer is generally better.
- Mix it Up: Use a combination of uppercase letters (A, B, C), lowercase letters (a, b, c), numbers (1, 2, 3), and symbols (!, @, #, $).
- Avoid Obvious Information: Don’t use your name, birthdate, common words, or simple sequences like “123456” or “password.”
- Think Passphrases: Instead of a single word, use a memorable phrase or sentence where you might substitute letters for numbers/symbols (e.g., “IL0vePNGcoffeE!2025” instead of “ILovePNGcoffee2025”).
- Unique Passwords for Each Account: Never reuse passwords across different online services. If one account is compromised, the others remain safe.
- Importance of Multi-Factor Authentication (MFA):
- MFA (also known as two-factor authentication or 2FA) adds an extra layer of security beyond just a password. After entering your password, you’ll be asked for a second piece of verification, such as a code sent to your phone, a fingerprint scan, or a facial recognition scan.
- Why it’s crucial: Even if a cybercriminal steals your password, they can’t access your account without this second verification step, making it much harder for them to break in. Always enable MFA wherever it’s available (email, banking, social media, cloud services).
- Password Managers:
- Consider using a reputable password manager. These tools securely store all your unique, complex passwords in an encrypted vault, so you only need to remember one master password. They can also generate strong passwords for you.
2. Software Updates
Keeping your software up-to-date is like getting regular vaccinations for your digital devices.
- Regularly update operating systems, applications, and antivirus software: Enable automatic updates whenever possible for your computer (Windows, macOS), phone (Android, iOS), web browser (Chrome, Firefox), and all installed applications. Also ensure your antivirus software is always updated.
- Why it’s crucial for security patches: Software developers constantly find and fix “vulnerabilities” (weaknesses) that cybercriminals could exploit. These fixes are released as “patches” in updates. If you don’t update, you leave those vulnerabilities open, making your device an easy target for malware and other attacks.
3. Be Skeptical of Links & Attachments
Think twice before you click or open anything unexpected.
- Hover before clicking, verify sender: Before clicking a link in an email or message, hover your mouse cursor over it (on a computer) or long-press it (on a phone) to reveal the actual destination URL. Look carefully for misspellings or domains that don’t match the supposed sender.
- Verify the Sender: Even if an email looks legitimate, check the sender’s actual email address. Criminals often use addresses that look similar but have subtle differences (e.g.,
support@yourbank.com
vs.support@yourrrbank.com
). - Never open suspicious attachments: If an email seems unusual, unexpected, or too good to be true, do not open any attachments. These are common ways for malware to spread. When in doubt, contact the sender directly through a known, trusted method (not by replying to the suspicious email) to verify if they sent it.
4. Secure Wi-Fi Usage
Public Wi-Fi can be convenient, but it comes with risks.
- Avoid public Wi-Fi for sensitive transactions: Public Wi-Fi networks (e.g., at cafes, airports, hotels) are often unsecured, meaning criminals can easily intercept your data. Never access your bank accounts, conduct online shopping, or enter sensitive personal information when connected to public Wi-Fi.
- Consider using VPNs (Virtual Private Networks): A VPN encrypts your internet connection, creating a secure tunnel for your data. This is especially useful if you must use public Wi-Fi, as it makes it much harder for criminals to spy on your activities.
- Secure home Wi-Fi with strong encryption: Ensure your home Wi-Fi network is password-protected and uses strong encryption (WPA2 or WPA3). Change the default router password. A secure home network prevents unauthorized access by outsiders.
5. Back Up Your Data
Don’t let a cyberattack wipe out your valuable memories and important documents.
- Regularly back up important files: Make copies of your photos, videos, documents, and other crucial data. Store these backups on an external hard drive, a USB stick, or a reputable cloud storage service (like Google Drive, Dropbox, iCloud).
- Importance for ransomware recovery: If your computer is ever hit by ransomware and your files are encrypted, having a recent backup means you won’t have to pay a ransom to get your data back. You can simply wipe your system clean and restore from your backup.
6. Privacy Settings
Control who sees your personal information online.
- Review and adjust privacy settings on social media and other online accounts: Take time to go through the privacy settings on all your social media profiles (Facebook, Instagram, TikTok, etc.), email accounts, and other online services. Understand what information is public, what is shared with friends, and what is truly private.
- Limit information sharing: Be mindful of what you post online. Avoid sharing personal details that could be used for identity theft, such as your full birthdate, home address, or travel plans. Think before you post.
7. Monitor Your Accounts
Vigilance can help you catch cybercrime early.
- Regularly check bank statements, credit reports, and online accounts for suspicious activity: Set up alerts for transactions on your bank accounts and credit cards. Review your statements frequently for any unfamiliar charges or withdrawals.
- Check your credit report: Periodically request a copy of your credit report (where available in PNG) to ensure no fraudulent accounts have been opened in your name.
- Review online account activity: Many email providers and social media platforms offer a way to view recent login activity. If you see a login from an unfamiliar location or device, change your password immediately.
8. Education & Awareness
The cyber threat landscape is constantly evolving. Staying informed is essential.
- Continuously learn about new threats: Follow reputable cybersecurity news sources, official RPNGC alerts, and awareness campaigns. The more you know about current scams and tactics, the better prepared you’ll be to spot them.
- Share knowledge with others: Help your friends, family, and colleagues in Papua New Guinea stay safe by sharing the information you learn. Protecting each other strengthens our entire digital community.