What is online security?¶
Online security is something most of us use on a daily basis – sometimes we don’t even know we are using it! It is commonly used by websites to keep your personal information as safe as possible. Some websites and services apply their security by asking for your email address and other contact details which are unique to you.
Most websites will have a specific page/s explaining exactly how your information will be handled (e.g privacy policy and terms of use). That policy should be reviewed carefully to ensure you are fully aware how your personal data is being stored and used.
Although most websites and platforms do take security measures to prevent your information from leaking out of their servers and from unauthorized access, no system is 100% secure.
What can you do to enhance your security online?
First, Common sense - without that we’re lost.¶
Warning Signs
If something isn't looking right or feels fishy, do not click on it.
Maybe the url or site name isn't spelled correctly or the link is weird (usually a shortened url looks kinda suspicious). maybe you don't know the sender or you know that person and he would never send you that offer or link.
Second, the connection.¶
Notice the Connection
Ensure you have a secure and protected connection (Http**s**), and you're browsing from a safe spot.
Example for not so recommended option: logging into your bank account while using the local cafe free Wifi. Since free Public wifi isn't secure enough and an easy place for hackers to gather your information.
Also, make sure your system, internet browser and apps are up to date, security updates are usually sent periodically.
Third, Account safety.¶
To ensure u have better security, you can use 3rd services and take some additional practices such as:
Unique security questions¶
Usually services will ask you questions in the form of:
- What is the name of a relative/place/pet?
- Some important date for you.
- In what city you were born?
You should never share your answers with anybody, and to take that one step further, use information that cant be found in your social media or a quick search of your name in a search engine (e.g Facebook, Google).
Complex password¶
As technology advances, many hackers and hacking services can hack “regular” passwords within seconds or minutes and we need to keep up with the changes.
So you need to use a complex password - a combination of symbols and signs, a mix of low and capital letters, the longer the better.
If you're afraid that you may forget the password I’d suggest you use a password manager that can generate and store the password safely and encrypted for you.
Two highly recommended password managers:
- Bitwarden (Free and Open-Source)
- 1Password (Paid service)
Additionally you can check your password strength using one of these testing tools: - Pwned Passwords - Bitwarden Password Strength Test - Kaspersky Password Check
Two-factor authentication (2FA, for short)
¶
2FA is usually considered as a second layer of defense, that means after you’ve logged on your account the service will ask you to provide a second yet unique password.
That second password is usually sent over SMS/Email/Authentication app.
The code will expire after a certain time, in that time u need to enter that code otherwise you’ll be locked outside the. Most of the time the service will inform you when someone is trying to access your account without your permission.
You should check if your service supports 2FA and if so, enable that.
Two highly recommended 2FA app:
- Aegis (Android).
- Ravio OTP (iOS).
1password & Bitwarden (with paid subscription) can be used as a 2FA app too.
Alternatively you can use physical 2FA key - Security token
Questions about this post
What did you take from the article and assimilate into your online life?
Please let me know, any feedback is appreciated!
Disclaimer, none of the links is affiliated. It's just my personal preference.