Cyber Security

 

What is cyber security?

Cyber security is the practice of ensuring the confidentiality, integrity and availability (CIA) of information.

Cyber security refers to the body of technologies, processes, and practices designed to protect networks, devices, programs, and data from attack, damage, or unauthorized access.​

This include preventing:​

  • Attacks on Confidentiality – stealing, or rather copying personal information.
  • Attacks on Integrity – seeks to corrupt, damage or destroy information or systems and the people who rely on them.
  • Attacks on Availability – denial of services, seen in the form of ransomware.

 

 

What are the threats?

Cybercriminals are generally working for financial gain. Most commonly, for the purposes of fraud: either selling illegally gained information to a third party. Key methods used include:

  • Malware – malicious software that includes viruses, Trojans, worms or any code or content that could have an adverse impact on organisations or individuals
  • Ransomware – a kind of malware that locks victims out of their data or systems and only allows access once money is paid
  • Phishing – emails purporting to come from a public agency to extract sensitive information or to trick individuals into transferring funds or to link to malware.
  • Hacktivism - Hacktivists will generally take over public websites or social media accounts to raise the profile of a particular cause. Attacks denial of service (DoS) – when a system, service or network is burdened to such an extent by an electronic attack that it becomes unavailable).​
 

 

Make yourself a harder target

Personal information about you that is easily viewed on your work and private websites, including social media accounts (and those of your family), can be used by criminals to make their phishing emails appear more convincing.

Review your privacy settings and think about what information you post and publish online.

Be aware what your friends, family and colleagues say about you online, as this can also reveal information that can be used to target you.​

Use a screen lock

This can be a PIN, password, biometric (fingerprint or facial recognition) or pattern. Pick any one of these that you can stick with. Some are better than others security-wise, but any is better than none!

Be aware of your surroundings

Be aware of others around you who might be overlooking your screen or listening in to your conversations. Consider using privacy screens, particularly if you're regularly using devices on the move.

 

Protect your email by using a strong and separate password

Cyber criminals can use your email to access many of your personal accounts, leaving you vulnerable to identity theft.

Install the latest software and app updates

Software and app updates contain vital security updates to help protect your devices from cyber criminals.

Turn on 2-step verification (2SV)

2-step verification is recommended to help protect your online accounts.

Password managers:

Using a password manager can help you create and remember passwords.

 

 

Backing up your data

Safeguard your most important data, such as your photos and key documents, by backing them up to an external hard drive or a cloud-based storage system.

Three random words

Use three random words to create a password that's difficult to crack. 

Keep passwords strong and secure

Create strong passwords to make it hard for hackers to guess, and add layers of security to make it even harder to access an account.

Using three random words is a great way to create a strong, unique password.

Enable two-factor authentication (2FA) in your security to double check that you are who you say you are when you log in.

Install system updates

The apps and software you use will have flaws in their systems. Hackers can exploit some of these flaws, leading to security problems. When these flaws are found, the manufacturers will normally fix them and send the fix out as a patch or as part of an update. Hackers rely on you to ignore those update notifications so they can get in before the update is made – so don't give them the chance.

 

 

What is phishing?

'Phishing' is when criminals use scam emails, text messages or phone calls to trick their victims. The aim is often to make you visit a website, which may download a virus onto your computer, or steal bank details or other personal information

 

How to spot scam messages or calls

Scammers try to quickly gain your trust. They aim to pressure you into acting without thinking.

If a message or call makes you suspicious, stop, break the contact, and consider the language it uses. Scams often feature one or more of these tell-tale signs.

  • Authority - Is the message claiming to be from someone official? For example, your bank, doctor, a solicitor, or a government department. Criminals often pretend to be important people or organisations to trick you into doing what they want. 
  • Urgency - Are you told you have a limited time to respond (such as 'within 24 hours' or 'immediately')? Criminals often threaten you with fines or other negative consequences.
  • Emotion - Does the message make you panic, fearful, hopeful or curious? Criminals often use threatening language, make false claims of support, or tease you into wanting to find out more.
  • Scarcity - Is the message offering something in short supply, like concert tickets, money or a cure for medical conditions? Fear of missing out on a good deal or opportunity can make you respond quickly.
  • Current events - Are you expecting to see a message like this? Criminals often exploit current news stories, big events or specific times of year (like tax reporting) to make their scam seem more relevant to you.

 

 

How to check if a message is genuine

If you have any doubts about a message, contact the organisation directly. Don’t use the numbers or address in the message – use the details from their official website.

Remember, your bank (or any other official source) will never ask you to supply personal information via email, or call and ask you to confirm your bank account details. If you suspect someone is not who they claim to be, hang up and contact the organisation directly. If you have paper statements or a credit card from the organisation, official contact details are often written on them.

 

 

Reporting incidents

  • Act quickly: the sooner you report an incident, the quicker it can be resolved and the less damage it will cause.
  • Don't be afraid: even if you think you caused an incident, always report it. Cyber incidents can be difficult to spot and mistakes do happen – letting someone know will help to limit the damage.
  • If you think you might have been a victim of cyber crime, please visit the Action Fraud website or contact them on 0300 123 2040.

 

Click on the logo below to go to the websites

 

Downloadable Documents

Further guidance

For further advice on online fraud support, visit the Citizen's Advice website, call their dedicated helpline on telephone 0808 250 5050 or talk to someone online. 

 

Click on the logos below to be re-directed to the agencies website for further advice & support

 
 
 
      

 

 

                  

 

 

       

    

For help and advice with scams

Flood Warnings

Road Network Alerts

Weather Warnings