By Paul Wesslund
Electric cooperatives across the country are joining forces to raise awareness and take action by recognizing October as National Cybersecurity Awareness Month.
Electric co-ops protect the private information of members and ensure hackers don’t tamper with the reliability of the electric grid, but member-owners have a lot at stake too. Think about losing all the photos on your smartphone or having bank or credit card information stolen from your computer.
Cyber criminals all over the world are on the prowl through the Internet, and they’re getting better at what they do, according to the team of cybersecurity experts at the National Rural Electric Cooperative Association (NRECA).
“The bad guys tend to be a step ahead, and we’re always going to be playing catch-up so you’re never going to be 100 percent secure,” says Barry Lawson, a senior director of regulatory affairs at NRECA. “But it’s not something to be afraid of. There are basic steps people can take to provide good layers of protection.”
Lawson, along with two other NRECA cybersecurity specialists, Cynthia Hsu, cybersecurity program manager, and Bridgette Bourge, senior principal for legislative affairs, recently discussed steps consumers can take to protect themselves and their valuable data. They suggest thinking of cybersecurity as cyber hygiene.
“Just like washing your hands will help keep you from getting bacteria,” says Bourge, “there are simple things you can do to protect yourself online.”
The first step, says Hsu, is to make cyber hygiene a habit. She advises people at work and in their homes to “incorporate basic security steps into their daily mindset.”
Here are their top tips for protecting yourself from Internet dangers at work and home:
1. Create a strong password
If it seems hard to keep up with all the passwords for the different software and applications you use, at least focus on the main passwords that allow primary Internet access, such as the ones that open your computer, phone and wireless router. Make it complicated, with a mix of upper and lower-case letters, numbers and special characters like “%” or “&.” Remember to change the password at least every 6 months.
2. Keep software updated
Updates don’t just add flashy features to your apps; they often add security patches to protect against new security threats. Updates usually come automatically from the software company, whether it’s for your computer, mobile device operating system, one of the many functional apps (like Facebook) or a link to your favorite sports team.
But take a level of caution on updates as well. You can check regularly for updates either from your device or by going to the application’s website. Be suspicious of update notices that arrive by e-mail, especially if they claim to require urgent action. Visit the application’s website to make sure the update is legitimate.
3. Don’t click on a link or attached file unless you know where it will take you
A lot of the computer hacking problems you hear about in the news result from people clicking on links or attached files that infect their computers or mobile devices. An e-mail can even be disguised to look like it’s coming from your best friend, so simple diligence can be extremely beneficial. Take a moment and move your cursor over a link to reveal the full address before clicking it. You’ll see a lot of confusing symbols, but you should also be able to recognize the name of the legitimate source. If you don’t, find another way to verify the link.
4. Install and use virus protection
Buy your anti-virus software from one of the recognized major companies, and make it a subscription-type service that regularly sends automatic updates.
5. Don’t use flash drives
Those little thumb drives or jump drives you insert into your USB port may be handy ways to share lots of photos or other large documents, but as your mother might say, you don’t know where they’ve been.
These portable memory devices have been another common way computers get infected with damaging software. Instead, learn to use Dropbox or other software solutions for transferring large files. And watch out for the high costs of some photo-sharing sites such as Photobucket, which just raised most of its fees to hundreds of dollars a year.
6. Back up your devices
Make sure you have a current copy of everything on your computer or mobile device. Every few weeks, transfer your contents to an external storage system that you then unplug from your computer. You can buy an external hardware drive or online storage designed just for this purpose.
Think of it this way: What if your computer or phone was lost or stolen? Recent computer attacks involve ransomware that locks your computer and threatens to delete or prevent access to everything on it unless you pay a ransom to the hackers. The hackers might not unlock it even after a ransom is paid. If you suffer a ransomware attack you might need to take your computer to a professional to wipe everything off your hard drive and start over. But with a backup you will be able to restore your most valuable documents.
You also should consider an offsite service such as Carbonite that silently works in the background to automatically back up your files.
7. Secure all your Internet-connected devices
Hackers have started invading wireless printers and baby monitors that work through the Internet. These devices tend to have extremely weak, preset passwords that you probably don’t even notice. Read the instructions carefully, set good passwords, keep the devices updated and make sure any wireless routers in your home are secure as well. Any Internet-connected device is vulnerable – smart TVs, cameras, voice-activated speakers, thermostats, video games, fitness bracelets, internet-connected refrigerators and even lightbulbs.
8. Protect the kids
Don’t forget that children also need to be aware and practice good cyber hygiene. They should know not to send out information such as birthdates and other ID numbers, as well as details like how long your family will be away on vacation. Learn to use age-appropriate parental control options on your hardware and software too.
To learn more about National Cybersecurity Awareness Month and to view additional cybersecurity tips, visit www.staysafeonline.org.
Paul Wesslund writes on cooperative issues for the National Rural Electric Cooperative Association, service arm of the nation’s not-for-profit electric cooperatives.