Avoiding viruses, malware, and phishing attacks is easy if you're cautious. Here are a few basic tips to help users consider what are and what are not safe practices on the web.
- Don’t share passwords!
- Don’t make the office email password “office1” and then share it with every employee. Just don’t do it. There are other ways to collaborate in the office without breaching security.
- If you suspect a machine has been compromised, disconnect the computer from the network and call CTI’s helpdesk immediately.
- Be wary when downloading from the internet. Whether it’s software to run your business or a Microsoft wallpaper theme double check (and then triple check) where you are actually downloading it from.
- Don’t instantly click the first link you see on Google when searching for anything. Google doesn’t qualify their content. If a criminal trying to phish your password is the most popular response to a search on, “Butter Cake Recipes”, then Google will put a link to the criminal’s webpage first in the list. They don’t necessarily qualify the link, or check that the downloadable PDF on that site is actually a butter cake recipe. It could be a virus. Always make sure the domain name is what you expect, or type in manually the webpage you want to visit.
- Don’t open zip files, or any other file, from someone who didn’t tell you they were sending it. Many email attacks look like they are from someone on your contact list. Before clicking the attachment, get in touch with them and ask if they sent you something.
- For Medical/Dental Practices losing data to a Ransomware attack is a HIPAA PHL breach, because you can not prove data wasn’t stolen before being encrypted.