Make It Hard for Scammers to Get You! Use These Seven Vital Tips

Scams run rampant in today’s digital landscape. And while netizens fear scammers are out to get them, they do little to actually defend themselves.

According to the Bitdefender 2024 Consumer Cybersecurity Assessment Report, one in four consumers faced a security event in the past year, with most respondents saying the threat came in the form of a text message. And the trend keeps ballooning. Just this year we’ve reported on an abundance of incidentssuch as:

·      Crypto recovery scams

·      Impersonation scams

·      Pay-to-work scams

·      Voice cloning scams

·      Scams targeting the elderly

As we note in the survey report, our behaviours toward cybersecurity don’t always match our stated fears and concerns. Bad actors increasingly exploit complacency around cybersecurity, threatening our security and privacy online.

With scammers exploiting every possible avenue, it’s increasingly important to exercise good cybersecurity hygiene. Here are seven rules-of-thumb that act as the Rosetta Stone of consumer cybersecurity:

1. Strengthen Your Passwords

Weak passwords are among scammers’ easiest routes to your personal information. As our surveyreveals, password management remains a consumer weak point, with 37% of netizens writing down their passwords, 18.7% using the same password for three or more accounts, and 15.8% using the same password for at least two accounts.

Using strong, unique passwords for each of your accounts significantly reduces this risk. There are several ways you can deadbolt your password management:

• Avoid Common Passwords: Stay away from easily guessable passwords like "123456," "password01," or "qwerty."
• Incorporate Complexity: Use a mix of upper and lower case letters, numbers, and special characters (%$#@&... etc).
• Change Passwords Regularly: Update your passwords from time to time, especially for sensitive accounts like banking or email. The companies we do business with get targeted by hackers regularly. Often those breaches end in leaked customer data, including our passwords. The newer your passwords, the less the chance hackers will find them in a data dump on the dark web.
• Use a Trusted Password Manager: A password manager can not only generate and store complex passwords for you, it can also protect you from     potential phishing scams. A good password manager will not autofill your credentials on a fake/spoofed website. Plus, a password manager means you only need to remember a single, master password.

2. Enable Two-Factor Authentication (2FA)

It’s imperative today to enable two-factor authentication (2FA) on every account that offers it. 2FA adds an extra layer of security by requiring not only your password but also a second form of verification, like a code sent to your phone or email.

According to the 2024 Bitdefender Consumer Cybersecurity Assessment Report,people today have on average of between three and five online accounts (35%), though a sizeable proportion (31%) have six or more. However, respondents likely forgot to include accounts they created on a whim – to enjoy a quick service or for a one-off purchase. It’s important for e-citizens to consider this at a time when data breaches have become a daily occurrence – especially if they give in to the convenience of using a single password for multiple accounts. So remember:

• Enable 2FA on All Accounts: Turn on 2FA for all accounts that offer it, especially email, social media, and financial services.
• Use Authenticator Apps: Avoid SMS-based 2FA and use apps like Google Authenticator or Authy instead. Authenticator apps are less prone to hacks and provide time-based codes that change every 30 seconds.
• Backup Your Codes: Opt to download a set of backup codes whenever the vendors offers it. If you lose access to your phone or authenticator apps, you can fall back on those to access your accounts.

3. Be Sceptical of Unsolicited Communications

Scammers notoriously employ socially engineered ruses like phishing emails, fake phone calls, and fraudulent text messages to trick you into giving away personal information or downloading malware. Use these simple tips to stay on the safe side:

• Verify the Source: If you receive an unexpected email or message, verify its legitimacy before responding. Check the sender’s email address carefully for any slight misspellings or unusual domains.
• Don't Click on Suspicious Links: Links in emails aren’t always what they appear to be. Hover over the link with your mouse pointer to see the actual URL behind before clicking. If it looks suspicious or unfamiliar, steer clear.
• Use Official Channels: If you receive a call or message claiming to be from a reputable organization, be sceptical and contact the organization directly using a verified number.

4. Reduce Your Digital Footprint

The more information you share online, the easier it is for scammers to dox you and target you. Reducing your digital footprint makes it much harder for threat actors to gather information about you and identify weak points in your daily digital commute.

• Limit Personal Information Shared Online:     Avoid posting sensitive information like your home address, phone number, or birthdate on public-facing platforms, especially on social media.
• Review Privacy Settings: Regularly check the privacy settings on your social media accounts to control who can see what.
• Delete Unused Accounts: Delete any old accounts you no longer use. As noted earlier, we can sometimes forget about accounts created on a whim, or that we’ve abandoned for one reason or another. But these accounts continue to live on the internet, making for a potential target for hackers and scammers.
• Google Yourself: It doesn’t hurt to search for your name on search engines every once in a while. This way you can stay atop of the information publicly available about you. If you find something concerning, take steps to have it removed.
• Be Mindful of App Permissions: When installing apps, pay attention to the permissions they request. Only grant permissions that are necessary for the app’s functionality.

5. Be Careful with Public Wi-Fi

Public Wi-Fi networks are often not very secure and can be booby-trapped by scammers to intercept your data.

• Avoid Sensitive Transactions: Avoid accessing banking websites, entering passwords, or shopping online over public Wi-Fi.
• Use a VPN: If you have an emergency and simply must connect to an unsecure public Wi-Fi to send and receive important data, consider a trusted Virtual Private Network (VPN) solution.
• Forget the Network: After using a public Wi-Fi network, visit your device settings menu and choose to forget it. This prevents automatic reconnection in the future.

6. Stay Informed About Cybersecurity News

Staying informed about the latest cyber threats and security incidents helps you understand the evolving tactics scammers use and how to protect yourself.

• Follow Trusted Sources: Follow cybersecurity blogs, news sites, and federal organizations that discuss today’s cybersecurity threat landscape.
• Join Online Communities: Take an occasional peek on forums, subreddits, and social media groups focused on cybersecurity. These communities often share real-time information about threats and best practices to defend yourself.

7. Use a Dedicated Security Solution

Scams today are so common and well executed that even a trained eye can fall victim. A dedicated security solution provides comprehensive protection against a wide range of cyber threats, from malware to phishing attacks, especially when you’re distracted.

• Choose a Reputable Solution: Only use security software from trusted companies. Bitdefender offers multiple layers of protection covering every attack scenario, including ways to protect your privacy online.
• Regular Scans: Do regular scans to identify and eliminate potential threats that may have been missed.

Scams being as prevalent as they are, we offer Scamio as a handy sidekick to combat cyberattacks targeting consumers by socially engineered vectors.

If you're suspicious about a certain phone call, email or SMS, Scamio provides a fast and efficient way to find out if you’re being conned. Simply describe the situation to our clever chatbot and let it guide you to safety. You can share with Scamio the exact thing you want to check: a screenshot, PDF, QR code or link. Scamio lets you know in seconds if it’s a scam. Use it anywhere via web browser, Facebook Messenger, or WhatsApp. Scamio is localized for use in the USA, France, Germany, Spain, Italy, Romania, Australia and the UK.

By following these seven easy tricks, you can significantly reduce your risk of falling victim to scams. While each individual step adds an important layer of protection, we recommend that you exercise these practices together in parallel, making it much harder for scammers to get you.