As telecommunications professionals, we’ve seen firsthand how even the most tech-savvy among us can fall prey to cyber threats if we’re not diligent.
No one is immune from the threat and damage that comes with a cyber attack. This year’s theme for Cyber Security Month – cyber security is everyone’s business – reminds us that protecting ourselves online is a shared responsibility.
Fortunately, boosting your cyber security doesn’t have to be difficult. Simple steps can make a big difference. But it helps to know what those steps are, especially if you’ve walked the security path as many times as we have.
Never underestimate the power of a strong, unique passphrase
If you are using a simple password (e.g. ‘password123’ – big no no) or you haven’t updated your password in a while, consider this your reminder to review them immediately.
It’s worth taking an extra diligent step by not using the same passphrase for your banking and your shopping. Differentiate them to make it more difficult for hackers to take more of your valuable data in one fell swoop. Some people go even further with their data protection and only use a specific credit card for their online shopping.
Having a multitude of passwords for different portals may be daunting to remember. If you need help remembering them, it’s worth investing in a password manager that features all the appropriate protections. Options such as Lastpass, Dashlane or 1Password all have similar features that help you update and manage your passwords securely.
Even if you are diligent about updating your password on a regular basis, your username or passphrase still might have been compromised. Curious to see if you’ve fallen victim to information hacking? Visit https://haveibeenpwned.com/ to check if you’ve been pwned. I entered an old email I hadn’t used in four years only to discover I’d been pwned 21 times…

Avoid well-placed phishing scams
According to the Office of the Australian Information Commissioner (OIAC), data breaches are on the rise, this includes sophisticated phishing scams designed to con unsuspecting victims to hand over their personal data and credentials.
Phishing can take many forms, from emails and text messages through to phone calls. Most recently, I’ve had numerous phone calls from scammers wanting to discuss my Internet connection and speed out of the blue.
Considering I’ve worked in this area for decades, I’ve found this tactic of discussing my slow service to dredge my personal information particularly amusing. Even if you aren’t an expert, this one doesn’t pass the smell test. For one, when have you ever encountered that level of personalised service from a big telecommunications provider in this country?
There are too many phishing examples to list them all, but if you have an inkling something is not quite right, the general advice is to stop, think and protect your data quickly if you think there has been a breach. It’s always worth visiting ScamWatch to check what scams are floating around, or to report a recent scam you encountered. And remember, if it sounds too good to be true, it’s probably bad news.
We’ve taken a deep dive into phishing scams – and how to avoid becoming a victim of one – in a recent blog.
Enable multi-factor authentication (MFA)
The two-step process of multi-factor authentication (MFA) adds an extra layer of protection to your most important accounts. It’s like locking the front door to your digital world.
It’s important to lock all these doors, or suffer the consequences.
One day I received a wonderful emoji from a good friend of mine on WhatsApp. We speak regularly on the app, so I wasn’t on the lookout for a scam, even when he asked me to send his passwords.
Unfortunately, I was to become a scam victim. I handed over the information the scammer was hunting for and lost my access to WhatsApp for a whole week. Even as a cyber security professional, I too was caught by the scammers’ clever net of lies and deception. Several of my friends in the industry also fell victim to the same scam, even after I had advised them of my experience!
The lesson here is a straightforward one: set up multi-factor authentication on all your devices and apps where available. The two-factor password prompt capability is a simple update that could save you a huge headache. Here are some other WhatsApp scams to look out for.
Keep software up to date
Another crucial habit is keeping your software updated. These updates do a lot of the heavy lifting to fix vulnerabilities and keep your systems secure.
Unfortunately, working out what is a real security prompt to update or not can still be a challenge. Scammers are savvy and will prey on your desire to keep your data safe. They’ll use this urge to instead compromise your security with a prompt to maliciously update your software or passphrase.
Has your bank recently called to advise that your account might have been compromised? It could be a trick to hand over your credentials. Instead of handing over your information, insist on hanging up and calling them back on a publicly listed phone number. If the prompt is a real one, the caller should be able to facilitate this request without rebuke. You can also ask them to identify themselves, or request they send you a code on the CommBank app directly to confirm their level of security access.
Security is a 24-hour job. Scammers are working round the clock to access your information and exploit it for their own gain.
If you’d prefer to have an expert handle your security 24/7, then our team of experts are up for the task. We have the expertise and equipment to keep your protection updated to avoid an attack. Contact us today to learn more about our security services and supporting devices.