We’re online, but we’re not being safe about it. The results of new study reveal people don’t understand key elements of cybersecurity. Worse, even those that are aware of the risks are doing things they know they shouldn’t—upping the odds they’ll get scammed.
The AARP interviewed 800 people age 18 and older over the phone to ask about their online access, activity, public WiFi use, knowledge of WiFi security, and also identity theft. The results paint a pretty alarming picture.
Here are the risky things you might be doing:
Doing personal banking or shopping over public WiFi. More than a quarter of those questioned say they do banking over public WiFi, and the same number also bought things with a credit card over a public Internet connection.
Not changing your passwords. Ten percent of those who do online banking say they’ve never changed their password. One in ten say they haven’t in more than two years, and half say they haven’t changed their passwords in the last three months.
Not running anti-virus or anti-spyware software. Almost a quarter of respondents said they didn’t or weren’t sure if they were running these types of key cybersecurity protections.
The good news? You can change your old habits. Changing passwords is easy to do, and setting a reminder for yourself will insure you keep them up date. The tricky part is resisting temptation to do something quick, but risky, over free WiFi.
Remember: if you’re on an unsecured WiFi network, hackers CAN—with very little effort—see every piece of unencrypted communication that happens on your device.
Email, credit card information, user names, passwords, and more, are all there for a hacker to grab and use to steal your identity.
The Federal Trade Commission offers these tips for staying safe on public WiFi:
• Stay on encrypted websites. When using a hotspot, log in or send personal information only to websites you know are fully encrypted.
• Don’t stay permanently signed in to accounts. When you’ve finished using an account, log out.
• Pay attention to any web browser warnings about fraudulent websites. Also, keep your browser and security software up-to-date. Reminder: TDS’ own Internet Security is always on and always up to date.
• Don’t auto connect. Change the settings on your mobile device so it doesn’t automatically connect to nearby Wi-Fi. That way, you have more control over when and how your device uses public Wi-Fi.
• Look for strong Wi-Fi encryption. WEP and WPA are common, but WPA2 is the strongest.
• Install browser add-ons or plug-ins. For example, Force-TLS and HTTPS-Everywhere are free Firefox add-ons that force the browser to use encryption on popular websites that usually aren’t encrypted. They don’t protect you on all websites — look for https in the URL to know a site is secure.
It’s worth noting there are things you may be doing in the physical word that also affects your security online. Specifically, the research shows that people are:
Using smart phones without passcodes. Twenty-six percent of smart phone users who access the Internet on that device do not have a passcode. And, thirty-one percent of those older than 50 don’t have a passcode set.
Leaving their mail in an unlocked mailbox. Credit card statements, utility bills, etc. all contain financial information that could be stolen—but that information is sitting out in unlocked mailboxes 58 percent of the time.
Leaving valuables in the car. Sixty-one percent report leaving mail, a purse/wallet, cell phone, GPS, or laptop in their car during the past three months.
Not shredding paper documents or credit cards. One in six say they never shred documents containing personal identification, and the same number say they do it only once a year.
Making some simple changes—and always assuming that public WiFi isn’t safe—you can dramatically reduce the odds of having your identity stolen!
Original image by: Podere Casanova. Modified for use by TDS.