Skip to main content
Best Practices

Best Practices

Staying safe online doesn’t need to be complicated. There are many simple ways you can stay safe in the digital environment to keep yourself and your information safe when using phones, laptops, and smart devices. These best practices can be employed to keep you secure while keeping malicious actors away. Learn about them below.

Recognize and report phishing.

  • Phishing occurs when a cybercriminal tries to get you to open a harmful link, email, or attachment that could steal personal information or infect the device.
  • Phishing can occur as an email, text message, direct message on social media, or phone call.
  • Phishing messages are designed to look like they come from a trustworthy source, like a friend or bank.
  • Common signs include urgent or emotionally appealing language, requests to send personal and financial information, untrusted shortened URLs, and incorrect email addresses or links.

Use strong passwords.

  • Use strong, unique passwords that are a combination of uppercase and lowercase letters, numbers, and special characters.
  • Consider using a passphrase to create a strong password (link to passphrase article).

Turn on multi factor authentication (MFA).

  • Enable MFA on all accounts that offer it. This added layer of security provides another step to the log in process to make sure you are the one accessing the account.
  • The factor can be something you know, like a pin number; something you have, like a phone; or something you are, like a fingerprint. 

Update software.

  • Run patches and enable automatic updates in device or application settings to get the latest security features.
  • Software updates can also fix bugs, improve performance, and install the latest features.  

Remove end-of-life (EOL) software.

  • EOL software can have vulnerabilities cybercriminals exploit. Remove EOL software to avoid exploitation and resolve compatibility issues.

Secure Internet of Things (IoT) devices.

  • IoT devices refers to any object or device that sends and receives data through the internet, including appliances, lighting, and home security systems.
  • Connect carefully and connect only to devices you know.
  • Change the nickname on home assistants to a name that only you and your family know.
  • Avoid connecting to smart gadgets or Bluetooth devices that store personal information.

Review your accounts.

  • Review your digital records and delete unused accounts to protect against potential attacks. 
  • Limit the personal information you post, like addresses or information about your schedule.
  • Evaluate your privacy settings.

Use an antivirus.

  • Use an antivirus software to conduct automatic and manual scans of files on your device to detect the presence of malicious software. 
  • Keep malware and virus definitions up to date so that the latest versions of attacks can be detected.

Secure your home network.

  • Install a network firewall.
  • Change your router’s default username and password.
  • Adjust default settings on software and hardware.
  • Use the strongest encryption protocol available. 
  • Upgrade firmware by visiting your router manufacture’s website to ensure you are running the latest version.
  • Monitor for unknown device connections through your router manufacture’s website.

Secure your mobile device.

  • Only download through your device’s official app store.
  • Review app permissions and limit location tracking.
  • Delete apps you don’t use to avoid unnecessary data collection.
  • Download Michigan Secure, a free mobile protection app for Michigan residents, to be protected against phishing, unsecure Wi-Fi, unsafe apps, and more.