Cyber Security

Tips for communications

Phishing attacks can come in many different forms including:

Tips to keep you safe against phishing

• Take the time to stop and think. Do things feel off? Always take extra time to double check that everything feels legitimate
• Limit sharing personal information online
• If you receive an unexpected email or text, study the senders email address, links and attachments. Make sure to watch out for grammatical, spelling and formatting errors
• Use a unique, random password for each account, making sure passwords are memorable but do not include personal information. Remember, the longer the password the better!
• Consider using Multi Factor Authentication to generate an additional security layer to online accounts.
• Ultimately if you receive any communication that you was not expecting, it is asking you to click on a link, open an attachment, scan a QR code etc - Don’t! Simply report and do not interact!
• Do you recognise the sender? Never be pressured into giving away personal and sensitive information
  when approached!

Tips on using websites and applications safely

• Check the website address. Does it start with HTTPS and is there a padlock symbol? If so, the connection is secure
• Browse websites for spelling, grammatical and formatting errors. Stop and think, does what the website offers seem to good to be true? Are online reviews new and similar?
• When using public WI-FI, consider using a Virtual Private Network (VPN), to create a secure connection
• Does the website list contact information? Legitimate organisations will disclose how to get in contact with them, usually providing a contact number
• Does the website disclose how the organisation handles its customers’ data? Legitimate organisations will inform their customers on how they handle data, referencing GDPR
• Be aware of pixilated images, graphics and branding used. If the website does not contain company logos or branding, this could indicate a fraudulent website
• Pay attention to website content and language choice used, is it vague, missing key pieces of information? This could indicate a fraudulent website
• Once finished, consider logging out of all online accounts and regularly clear browser and cookie history.

How to avoid social media scams

Social media scams use techniques to impersonate legitimate organisations, typically through creating Facebook, Instagram, or X pages, offering competitions to win a prize. This may involve liking, commenting, sharing a post, or clicking a link. These scams are all designed to gather your personal information. 

Always make sure you are interacting with legitimate social media pages.
 

Protecting your physical security

• Be aware of your surroundings by keeping your distance between others and remain vigilant
• Always shield you PIN and don't get distracted. Keep an eye on your card or payment device at all times
• Inspect payment machines and their pin pads. Look for physical abnormalities and what you are asked to do
• QR code phishing tricks you into giving away personal information. Think before you scan. Is the QR code part of the display? Preview the QR codes URL before opening the link and study what it asks you to do.

Online help

These helpful tips can be used when thinking about most online encounters in your everyday life. If you think you have been a victim of fraud contact Action Fraud UK