At the end of a recent cybersecurity roundtable, a spontaneous discussion arose about ways to safely surf the internet. Admittedly, I only head over to the discussion channel if the information will be relevant to the small business market or medical field. With phishing tactics in enterprise environments as the topic, I remained in the roundtable channel talking about the Colonial Ransomware situation for a little while. As that wound down, I left the video and was about to close out when I saw in the chat window that people were shouting on the discussion channel.
Sure, cybersecurity experts get passionate about the field, and raised voices are not all that uncommon – but shouting is not something that happens often. Intrigued, I entered the chat and found myself among a roaring contingent of attendees.
The topic had apparently shifted from phishing tactics to web surfing at work. On one side stood a small group intent on completely locking down internet access – blacklisting everything and allowing only the sites required to do business. The other side supported a more open approach and advocated security training to teach people how to safely surf the internet.
With both sides holding their ground, any hope of progress stopped. So, a group of us returned to the roundtable channel and picked up the discussion of security training.
Rules for Safe Web Surfing
While enterprise environments were the original topic, the best practices we discussed apply to all business and home users. These are things that we can all do to be safer as we maneuver through the internet.
1. Always Be On Guard
This might sound cynical or paranoid, but it’s absolutely true – there are no 100% safe places on the internet. Government websites get hacked. Social media sites get hacked. News outlets get hacked. Cybercriminals are continuously looking for security vulnerabilities to exploit, no website is too big or too small, and the cybercriminals will never stop.
Getting into this mindset is a critical component of security awareness.
2. Do Security Updates
Whether it’s your phone, tablet, computer operating system, or antivirus, this is the most important technical thing you can do to be safe online. While issues caused by updates can happen, they are rare, and those issues are inconsequential compared to the headaches involved with getting hacked.
3. Be Careful Where you Share Personal Information
There is nothing more valuable to marketers and cybercriminals than your personal information. Whether it’s blanketing you with ads for products or trying to steal some aspect of your digital identity, the approach is the same. Facebook quizzes, free guides, contests, any place where you are required to enter information about yourself, whether it’s an email address or answering questions, there is a danger. It might be fun to see what Disney Princess you are, but that’s not the intent of the questions.
The more information you volunteer about yourself, the less safe you are online.
4. Leave Web Pages Filled with Advertisements
It doesn’t matter how pretty the web page might be – one of the simplest hacks is inserting fake ads. Often referred to as clickbait, a telling feature is the lack of a close option. By clicking on links or buttons, these ads can run malicious code on your computer or take you to fake websites.
When you come across a page that opens a new tab automatically or has large pop-up screens, just close the browser. It’s better to get away than accidentally click on the wrong thing.
5. 99.9% of All Offered Gifts Online are a Scam
When surfing the web, if you get to a page that says you’ve won something – CONGRATULATIONS YOU ARE THE 1 BILLIONTH VISITOR – it is a scam. While there is the most remote, infinitesimal possibility that a giveaway might be real, it’s not worth the risk. Cybercriminals know that the best way to get people to click is to tell them that they won something. Stay away from these.
6. Be Wary of Downloads
Most browsers these days allow you to preview the content of text files, but compressed files can hold any number of surprises. When making purchases of software, images, ebooks, and other such items, they will often come in zip files. The vast majority of the time, if you are paying, it’s safe. If it’s free, ask yourself why this is free before downloading.
On the internet, free is never really free. Most offers require you to provide an email address or some other such personal information. If nothing is asked in exchange for a download, it is almost certainly malicious – don’t do it.
7. Logging Into Other Sites with Social Media Accounts
Many websites out there will allow you to sign-up and login using your Facebook, YouTube, or other social media credentials. This single sign-in feature seems horribly convenient. But what it does is give the website administrator access to your login token and personal information, with your consent, but without telling you that you gave consent.
Does this seem shady? It is. If you are interested in signing up for a new website, always register for a new account and don’t feel compelled to provide accurate personal information – always provide as little personal information as possible.
8. Internet Anonymity May Not Be What You Think
Many people think that by using an incognito browser that they are preserving their anonymity online. That is simply not true. While incognito mode doesn’t save a history of websites visited on your device, the information packets still point to all the places you visit. This means that your internet provider and web crawlers will still have logs that show every site you’ve visited.
The highest degree of anonymity requires a VPN or proxy server.
9. Enter Web Addresses Directly into the Browser
Avoid clicking on links whenever possible. Yes, it is far more convenient, but it’s not safe because any words can be made into a link. This is especially true in emails. Even if it comes from a trusted source, hover over it before you click it – this will show you where the link is taking you. If the link doesn’t match, don’t click on it.
10. Check Your Online Accounts Regularly
Especially important for financial accounts and shopping accounts, regularly checking for unknown transactions will help you to discover a problem before it escalates. Spyware and malware allow cybercriminals to steal your credentials, and these are by far the most potentially damaging. Keeping an eye on your online transactions is essential to stopping fraud and identity theft.
Safe Surfing Requires Effort
Unfortunately, no matter how advanced the security tools get, it is ultimately only as secure as the person who is using the device.
I’ve always had a love of working with technology, being fortunate enough to have grown up with a grandfather who taught me how to fix things for myself and not be afraid to jump in and get my hands dirty. Over the last three decades, I’ve worked as a technician, trainer, technical writer, and manager in small business, enterprise organizations, and government. In addition, I’m an author, having published multiple works available online and in print. You can find my creative work at https://WritingDistracted.com