Cybersecurity tips and tricks

More and more of our time is spent online, and much of that is spent managing essential services like banking, bills, superannuation, and salary packaging.

While these services all have strong security measures in place – they’re required to by law! – that doesn’t stop people being caught out by scams and hackers. Aussies lost almost $5 billion to scams over the past two years alone, according to the National Anti-Scam Centre.

The most common reasons people get caught out? Reusing the same password across sites or easily guessable passwords like your name or birthdate; logging in from shared or public devices or while on public WiFi; and clicking on suspicious links in phishing emails or texts.

But it’s easy to step up your security online. These simple cybersecurity tips will help you keep your online accounts safe from cyber threats.

1. Use complex, unique passwords

Firstly, use complex passwords that are difficult to guess. A strong password contains 14 or more characters, including symbols, capital letters, or numbers, and shouldn’t include any identifying information like names, birthdays, or addresses.

“Passphrases” are a good way to create strong, complex passwords that are easier for you to remember, but difficult for others, like hackers, to guess. Passphrases contain four or more random words, like “CoffeeBeansGrow!UnderBrightSun”.

Your passwords also need to be unique. With so many accounts, we know it’s tempting to use the same password over and over again. But the thing is, if one account is compromised, every account with the same password is too.

Learn more about creating strong passwords at cyber.gov.au.

2. Save your passwords the safe way

There’s no point in creating a strong password, only to write it down on a Post-it note and stick it on your computer screen. In fact, you shouldn’t write down your password anywhere – that includes saving passwords in your notes app or draft emails.

But, let’s face it – remembering every one of your passwords is basically impossible. A good option is to save your passwords using a password manager, along with utilising multi-factor authentication (coming up next).

3. Use multi-factor authentication

Multi-factor authentication (MFA) is strongly recommended, particularly for email accounts. MFA requires you to provide two or more forms of identification to log into your accounts.

These might be a combination of:

● Something you know (e.g. a PIN, password or passphrase);
● Something you have (e.g. a smartcard, physical token, authenticator app or SMS); and
● Something you are (e.g. a fingerprint, facial recognition or iris scan).

(Source: cyber.gov.au)

For example, you might be required to enter both a password and a verification code sent to another device before you can log into your account.

If you have the choice, you should always enable authentication. According to cyber.gov.au, enabling MFA defends against the majority of password-related cyberattacks.

4. Stick to trusted devices

Another simple way to protect yourself against hackers? Only log into important accounts using devices you own and trust. If you must use a public or shared computer, ensure you have MFA enabled, never tick ‘remember’ me, and don’t forget to log out when you’re done.

Using public WiFi can also put your security at risk. That’s because public WiFI networks can be accessed by anyone, and are usually free and unsecured – which can make them a target for cybercriminals. Only use trusted networks to access your accounts.

5. Look out for scams

Scams can be hard to spot, but there are some telltale signs that something’s not right. Scamwatch recommends you look out for the following in your emails and texts:

● Amazing opportunities to make or save money
● Someone you haven't met needs your help – and money
● The message contains links or attachments
● You feel pressured to act quickly
● They ask you to pay in an unusual or specific way
● They ask you to set up new accounts or PayIDs

If something feels off, trust your instincts, and think twice.

If you suspect that your salary packaging account has been compromised, or if you have received suspicious emails or SMS messages pretending to be from Smart, please contact our customer service team immediately.

A little effort goes a long way when it comes to staying safe online

Cybersecurity doesn’t have to be complicated – a few smart habits can go a long way in protecting your personal information.. By staying alert to scams, using strong passwords, and enabling multi-factor authentication, you’re already ahead of the game.

Smart takes security seriously. Our systems are designed to keep your personal information and funds protected – but good cyber hygiene on your end is part of the puzzle too.