Don't rely on your browser to protect you from malicious websites. Browsers only warn you about sites but cannot stop you from going there. Even if you have high security settings and anti-virus software, visiting a risky website can still result to your device getting infected with viruses or spyware.
Keep your browser software up-to-date. New patches are often released to fix existing exposures in browser software, so having the most up-to-date version is critical.
Run anti-virus software and scan files before downloading. Anti-virus programs provide protection by scanning for, and removing malicious files on your computer. Get into the habit of scanning files before downloading, especially if they do not seem legitimate. Or better yet, avoid downloading anything unless you are confident that it is secure.
Only trust HTTPS websites. The “s” in “https” stands for secure, which means the website employs Secure Sockets Layer (SSL) encryption, keeping data passed between web server and browsers private. Check for “https:” or a padlock icon in your browser’s URL bar to confirm that a site is secure before entering any personal information.
Don’t re-use passwords. Using the same password for multiple sites only makes it easier for attackers to compromise your sensitive information. Instead, keep track of your different passwords with a handwritten list that you keep in a safe place or come up with your own algorithm for creating unique passwords that only you would know. It is also recommended that you change your passwords every 90 days.
Disable auto-complete for forms or remember your passwords features. Nearly all browsers and many websites in general offer to remember your passwords for future use and websites can use hidden fields to steal the data from forms. Enabling these features makes it easier for an attacker to discover if your system gets compromised. Also, criminals can hijack your browsing session and steal your information if you stay logged-in to a site. If you have these features enabled, disable them and clear your stored passwords.
Read privacy policies. Websites’ privacy policies and user agreements should provide details as to how your information is being collected and protected as well as how that site tracks your online activity. Websites that do not provide this information in their policies should generally be avoided.
Avoid public or free Wi-Fi. Attackers often use wireless sniffers to steal users’ information as it is sent over unprotected networks. The best way to protect yourself from this is to avoid using these networks altogether.
Turn on your browser’s pop-up blocker. Pop-up blocking is now a standard browser feature and should be enabled any time you are surfing the web. If it must be disabled for a specific program, turn it back on as soon as that activity is complete.
Report to IT Support. If you notice anything suspicious when accessing a website, please report to IT Support (helpdesk@odfjell.com) immediately.
