With the news this month from UK Finance that £1.2 billion was stolen through financial fraud last year and three quarters of online fraud starts on social media, experts are warning people to take care.
Experts at TestLodge alongside Rebecca Chapman, CEO and police superintendent at The Business Resilience Centre for the North East (NEBRC), have outlined seven ways people can improve their online security to protect their personal data - and warn that even taking online social media quizzes can compromise access to your data.
According to UK Finance, online fraud accounted for 78% of overall fraud cases in 2022, with social media platforms having the greatest number of fraud cases.
Scott Sherwood, founder of TestLodge, said: “Without realising it, almost all web users are vulnerable to daily security attacks. We store a plethora of personal information online and directly on our devices, so we must be responsible in taking safety measures when it comes to managing our online security in order to avoid potentially disastrous consequences.
"Along with using biometric methods to access devices and two-step authentication to retrieve personal online accounts, making sure our devices are up to date with the latest software technology and utilising a cloud management tool will help to protect accounts further against malicious online practices.”
Rebecca Chapman, CEO at The Business Resilience Centre for the North East (NEBRC) warned that people could be compromising their online security by taking online quizzes on social media.
She said: “Social engineering is also increasingly popular, putting people at risk without realising their data has been compromised. Quizzes taken on social media which reveal birthdays, birthstones, star signs, dogs names, mums' maiden names, kids' names etc can be used to collect data on individuals. All of which psychology says we are likely to use as passwords.”
Subscribe here for the latest news where you live
With knowledge of the ways your systems can become vulnerable if you fail to upgrade them regularly, TestLodge and NEBRC have also recommended seven ways to protect your online security - including using a VPN every time you connect to public Wi-fi, or even avoiding it completely.
Secure devices by using biometric login methods, such as facial recognition
The downfall of using traditional passwords is that they are usually able to be used without authorisation and can fall into the wrong hands.
Rebecca Chapman said: "Biometrics are a brilliant way to make data more secure. Both biometrics and multi-factor authentication are currently contributing to safer storage and access to online data and we’d highly recommend individuals and businesses to implement such practices where possible.
"From fingerprints to eye/facial recognition and even voice recognition, there are some exciting developments in this space which make interactions more accurate, faster and user friendly. Should a breach occur, the data held makes tracking who has accessed the information more reliable and individuals more accountable.”
A key advantage of using a biometrics system as a verified user login method to ensure swift, reliable access to devices is that it is extremely difficult to falsify. Facial features and fingerprints are unique and will therefore provide a superior level of authentication for security purposes.
Invest in cloud security management to avoid data breaches
Over the past year, there has been a 98% increase in searches for ‘cloud security management’, which is the protection and security of online data and assets that are stored in the cloud. There are many benefits of utilising cloud software, including the overall management of server upgrades, data security, advanced threat detection and security posture management.
Cloud data breaches due to human error, misconfiguration of cloud settings and ransomware are becoming more common in professional organisations, and even personal cloud accounts which are also vulnerable to cloud security breaches that may result in costly consequences.
Use a Virtual Private Network (VPN) whenever you connect to public Wi-fi
Connecting to unsecure public Wi-fi used on mobile phones and laptops can make users vulnerable to online predators who make money from stealing personal and financial information from unprotected accounts.
Rebecca advises a safer way to connect to public wi-fi when out and about: “Using a Virtual Private Network (VPN) when connecting to public wifi is something we would absolutely recommend. A small device can easily clone public wifi and harvest any data passing through it, so by all means use it for directions but not for sending money via online banking.”
A VPN will encrypt your data, making it less vulnerable to being intercepted by predatory practices.
Install the latest software and app updates to plug security holes
Another way to step up your online security is to set your devices to update automatically with the latest software updates. This will ensure that the systems and apps you use will have critical bug fixes and security patches sorted quickly, which is an effective way to plug any security holes and ensure smooth running of your system. You should also install an effective and official anti-virus software to laptops and PCs to fend off malware and ransomware, and renew it every year to keep it up to date.
Clear your cache regularly to clear stored searches and personal data
There’s a lot of personal information lurking in your browser’s cache, and failing to clear it regularly could be compromising your online data security. Web history, cookies and saved searches can highlight plenty of personal data, including passwords, financial information and even the personal information of family and friends. Search the menu in your chosen browser to find the option to clear your cache, and do this every few days for extra peace of mind.
Select multi-factor authentication for email and social media accounts
By verifying your identity using a two-factor authentication, you’ll be adding an extra layer of security to your email and social media accounts. After filling in your username and password, you’ll receive a code via text message or email, or you may be asked to answer a security question. It may seem like it adds extra time to the login process, but it’s a good idea to opt in to multi-factor authentication in your account settings to ensure that it is less likely anyone else can login to your accounts but you.
Pay for items with your smartphone payment system, such as Apple Pay
To avoid having your debit card details stolen when purchasing items online, set up a payment system via Apple Pay/Android equivalent, or use a payment app such as Revolut or Monzo. Paying with a smartphone app eliminates the risk of possible data theft, both in bricks and mortar retail stores and online.
You can even go one step further and get protection from a third-party app, such as IronVest, which can mask from the merchant your credit card number and other personal information on all purchases, or provide a single-use virtual card.