Four Best Bets to Stay Cyber Safe

October is National Cybersecurity Awareness Month. Protecting yourself online doesn’t have to be complicated or expensive. These four essential behaviors can dramatically reduce your risk of falling victim to cybercrime. While you can never be “hackproof,” you can become resilient in the online world.

Use long, unique, and complex passwords and manage them securely. Your passwords are the first line of defense between a cybercriminal and your sensitive information. Today, every password should be at least 16 characters long to effectively resist modern password-cracking tools. Use a random mix of uppercase and lowercase letters, numbers, and special characters, and ensure each password is unique for every account.

To simplify this process and enhance security, use a password manager. It can generate strong passwords, store them securely, and automatically fill them in when needed – eliminating the need to remember each one. Most importantly, never reuse passwords across different accounts.

Enable multifactor authentication (MFA).  Multifactor authentication (sometimes called two-factorauthentication or 2FA) adds an extra security layer by requiring something more than just your password to access your accounts. Think of it as using two locks on your digital door instead of only one. This could be a one-time code sent to your phone, a biometric scan, such as a fingerprint scan or FaceID, a physical security key, a digital passkey - safer and unique to each site, eliminating the need for a password, or an authenticator app that generates time-based codes.

In response to the growing threat of phishing attacks targeting members, People’s Energy Cooperative is taking proactive steps to enhance the security of its SmartHub account management system with two-factor authentication. If you have not already done so, we strongly encourage all members to activate two-factor authentication in SmartHub’s security settings to further protect your account from unauthorized access.

Keep software updated.  Software updates aren’t just about new features – they are essential for fixing security flaws that criminals exploit. So, don’t click ‘Remind Me Later’ – it only takes a few minutes, and the security is worth it. Remember your phones, smartwatches, and tablets are computers, so keep these devices updated as well!

Stay alert for phishing and scams.  Phishing remains the most common online threat.  Criminals send fake emails, texts, and social media messages to trick you into revealing sensitive information or clicking malicious links. These scams often play with your emotions – whether it’s excitement (“You’ve won!”) or fear (“Your account’s been compromised!”) – to get you to act before thinking.  Scammers will even call you! Here’s how to look out for phishing and scams:

• Be highly skeptical of unexpected messages, especially those urging immediate action or asking for personal details.
• Phishing emails can light up positive emotions (“You’ve won our sweepstakes!”) or negative ones (“You’ve been hacked!”).
• Don’t click suspicious links or download unexpected attachments.
• Report phishing attempts to your email provider, social media platform, or IT department.
• If you’re unsure if a message is legit, ask a friend, coworker, or family member. A second set of eyes can be invaluable in spotting scams.