Maintaining Internet security in 2024 is going to be everything a challenge for businesses and consumers and requires both awareness of the many threats lurking in the digital world, and the adoption of general and specific proactive measures to keep us safe. To start the year off on the right foot, today we are going to remind you of the main points to keep in mind for improve cybersecurity at the end-customer level..
And it is necessary, because the number of devices connected to the global network continued to grow last year and the base of personal computers has been joined by new generations of mobile devices, wearables, digital assistants or everything that has been arriving from home automation and the Internet of Things. In addition, the era of hybrid work, which is here to stay, adds and combines professional and domestic tasks, making it difficult to stay safe in this jungle called the Internet.
The number of threats at the client level has also increased with all kinds of malware; hoax and disinformation campaigns; loss of the right to privacy or unpatched software vulnerabilities that are exploited in Ransomware and Phishing attacks, undoubtedly the most dangerous. At the professional level we are no better off. Breaches and information leaks in large and small companies are constant, as well as attacks on organizations or administrations responsible for vital infrastructure. Not to mention the cyber cold war that experts are talking about, which is still raging.
How to improve Internet security in 2024
Guaranteeing 100% security and privacy is very difficult in a global network, but we can anticipate the arrival of threats with a series of proactive measures that include the strengthening of online accounts, applications, equipment where we use them and due precautions in the use of the Internet and its services. Common sense is another great defense here, as well as being aware of the fact that virtual life must be protected today as much as physical life.. Let’s move on to those sections to be managed, which will undoubtedly enable us to improve security.
Protects web browsers
All browsers include advanced security features whose activation we must review and configure because they are the main applications we use to access the Internet and its services. In addition to checking end-to-end encryption in synchronization or process isolation (sandbox), we should pay attention to warnings about unsafe sites displayed by browsers. Also check installed extensions because some of them are a frequent source of malware introduction.
Another interesting possibility to improve privacy is to use the “Private Mode” (also known as incognito mode), since it avoids tracking through cookies, open user sessions and other systems used for this purpose. Finally, it is worth mentioning the use of “Guest Mode”, which is completely detached from the user’s original profile, including settings or history, thus protecting your data.
Update the operating system and applications
Any type of software is susceptible to vulnerabilities that cybercriminals exploit for computer attacks. Hence the need to always use the latest versions of the software we use, especially operating systems. They all have mechanisms for this and in the case of Windows, the most used and exploited, it has Windows Update to provide automatic updates that facilitate patching and updating to the latest versions. If you are experienced and prefer to do it manually, Microsoft Update Catalog is an official web portal where you can find published security updates for Windows operating systems.
As important as keeping the operating systems up to date is to update the applications that we have installed and that also publish the corresponding security patches. It is important to understand that older versions of software are at greater risk of being attacked, with special emphasis on some widely used versions such as Java, Adobe Flash, Reader or Internet Explorer, which have been a constant source of security problems.
Use security solutions
In an operating system like Windows, the most used and therefore the most attacked, it is likely that even the most cautious user in the use of your computer will have to deal with some kind of infection. And hence the need to use some kind of software to help us in the task. For Windows (also for iOS and Android) Microsoft offers Windows Defender as a native security solution. Although it was originally launched as a basic solution, over the years it has improved greatly in detection and resolution capabilities and today it is sufficient as basic protection for most consumers.
Of course, you can use solutions from specialized vendors that offer a number of security solutions, many of them free of charge. An advanced or professional user should consider using a comprehensive commercial security suite that includes additional tools such as a firewall and other specialized tools against Ransomware, Phishing, adware or spyware attacks.
Manage passwords well
Another of the golden rules to improve Internet security (in addition to using advanced biometric identification techniques if the device you use allows it) is to have a strong and different password for each website. Passwords are certainly an unattractive method for the user, but they are still the preferred authentication method for accessing Internet services or logging into operating systems, applications, games and all kinds of machines.
Strong passwords prevent brute force attacks and using a different password for each account avoids having all of them compromised at once when a data breach occurs. You should follow a series of rules for their creation and value the use of password managers that are able to do the job for us, reducing human errors in their management and automating the process of generation and administration.
Use two-factor authentication
2FA is an access control method known as “two-factor authentication,” “two-factor authentication” or “two-step verification,” which has become one of the most important security mechanisms in the technology industry for authenticating users and protecting identities. Two-factor (or two-step) authentication provides an additional level of account security because it is not enough to simply crack the username and password.
This feature is already available on most major Internet services and should be used whenever possible. Generally, it uses a verification code served via a mobile app or SMS, enforcing the use of passwords, username and password when logging in.
Evaluate the use of encryption
BitLocker drive encryption is a data protection feature available in the Professional and Enterprise editions of Windows 10 and 11. BitLocker allows you to encrypt or “scramble” the data on your computer to keep it protected by addressing threats such as data theft or exposure in the event of loss, theft or improper removal of equipment, and ultimately improving online security. BitLocker can be enabled on the operating system drive, on a fixed data drive or on a removable data drive. There are equal or better third-party solutions that are worth considering.
Use a hardware security key for vital accounts.
For vital accounts, especially in professional and business environments, it pays to go the extra mile to protect them using a hardware security mechanism. This is usually a flash drive that plugs into a USB port and contains a highly secure encryption engine. The entire process is performed within the hardware, greatly increasing the overall security over software solutions.
Avoid free wireless networks
Free hotspots have spread across multiple areas in towns, catering areas, airports, train or subway stations, hotels and in all types of businesses. Darkhotel, the Advanced Persistent Threat (APT) discovered by Kaspersky Lab, confirmed the intrinsic insecurity of public wireless networks. It had been active since 2007 and was reportedly dedicated to obtaining privileged information from executives and high-level employees staying in high-end hotels. Security researchers have shown that such networks are easily hackable so we should only use them for occasional surfing and never reveal our personal data.
Use backups
We have already said that 100% security in a connected world simply does not exist, and not only because of the abundance of malware, since a hardware error can also cause the loss of precious personal and/or professional information. Making backup copies (what we know as Backup) is therefore highly recommended for a user or professional who intends to protect personal and corporate information on a computer, in addition to being a maintenance task that contributes to the health of the hardware. Backup copies should be stored in a storage device external to the computer and/or in a cloud storage service.
Lots and lots of common sense
As always when we talk about Internet security (and cybersecurity in general), prudence is a preferential barrier against malware and therefore, we must be especially careful when downloading and installing applications from unsafe sites; when browsing certain Internet pages; when opening unsolicited e-mails or attachments; when opening e-mails or attachments from social networks or messaging applications or when using operating systems and applications without updating, which contain vulnerabilities exploitable by cybercriminals for malware campaigns.