October is Cyber Security Month

SOME SIMPLE STEPS FOR ONLINE SAFETY  The first steps to cyber security are the most basic ones, and some of the most important ones. First and foremost, CHANGE YOUR PASSWORDS! I know we have been harping on this for years, but frequently changed, unique, STRONG passwords are your best first line of defense. Longer is stronger: passwords with at least sixteen characters are hardest to crack. Hard to guess: Use a random string of mixed-case letters, numbers, and symbols. If you need to memorize a password, create a memorable “passphrase” of 5-7 unrelated words. Get creative with spelling and/or add numbers and symbols. One of a kind: Use a unique password for each account. We all know that remembering long, unique passwords for every account is impossible, so consider using a Password Manager that suggests strong passwords and keeps track of them for you. ENABLE MULTI-FACTOR AUTHENTICATION (MFA) on your accounts. MFA reduces the risk of account takeovers and provides additional security. Multi-factor authentication requires you to provide at least two credentials, such as a password or PIN AND verification via a code texted to a mobile phone, key fob or other device OR a biometric identifier such as a fingerprint or eye / facial scan. Since more than 80% of cyber breaches happen due to weak or stolen passwords, MFA provides a much stronger layer of security. UPDATE YOUR SOFTWARE. Making sure your software is up to date is the best way to employ the latest patches to recently known vulnerabilities in your applications. In addition to protecting your computers, it may also help your equipment run better or give you some new program upgrades. RECOGNIZE AND REPORT PHISHING. When it comes to cybersecurity, realize that it is always phishing season. Keep in mind that 95 percent of cyber breaches are attributable to human error, so staff training and vigilance are vital! Hackers have come a long way with their messaging and some of the latest attempts are downright difficult to discern whether they are legit. Be suspicious with un-solicited emails and texts. If you are not expecting it, or if it appears to be from someone you know, but does not completely make sense, be careful before clicking any links or opening any attachments. If in doubt, DELETE. If it is important, a legitimate message will be followed up. And, in the event you are tricked by a phishing scheme, having multi-factor authentication enabled makes it much harder for scammers to get into your account if they do get your username and password. ​