IIP Learning Hub
Chapter 10 - Cyber Security

Lesson 3: Practical Ways To Protect Yourself

Complete & Continue Next Lesson Learn More

Learn the basics

It’s easy to improve your cybersecurity! Take these simple steps today to protect yourself.

Practical ways to protect yourself online

Take control of your cyber security and reduce the impact of a cyber attack:

  • Update your device

  • Set up and perform regular backups

  • Turn on multi-factor authentication

  • Set secure pass phrases

  • Recognise and report scams

  • Watch out for threats

Update Your Device

Updates are one of the strongest defences in your security toolkit

Updating your device and applications can fix issues and address new security concerns. Updates can also add new features to your app or device.

Updates are new, improved, or fixed versions of software

Regular updates are critical in maintaining a secure system. It's important to check for any updates and make sure that automatic updates are switched on. 

Cyber criminals hack devices by using known weaknesses in systems or apps. Updates have security upgrades to fix these weaknesses. You can turn on automatic updates so that this happens without your input.

Set Up and Perform Regular Backups

A backup is a digital copy of your most important information

Copies of your files (e.g. photos, documents, videos, etc.) are saved to an external storage device or to an online server like the cloud.

Backing up and having backups mean you can restore your files if something goes wrong. It is a precautionary measure so that your data is accessible in case something happens to your computer. We recommend backing up your files regularly.

You can set up automatic backups in your system or application settings for peace of mind

Turn on multi-factor authentication

Multi-factor authentication means having extra checks to prove your identity

For example, you may need an authentication code from a text message in addition to your password to log into your account.

Having multi-factor authentication (MFA) gives you an extra layer of security

The many layers of authentication increases confidence that the person logging in is actually who they claim to be. MFA typically requires a combination of something a user knows (like a PIN or password), something a user has (like a smartcard or physical token) and something a user is (like a fingerprint or other biometric) to access a device, application or online service.

Having two or more authentication factors increases your cybersecurity. It makes it harder for someone to access your account.

Set secure pass phrases

Passphrases are the more secure version of passwords 

Changing your passwords to a passphrase is a great way to improve your cybersecurity.

A passphrase is made up of 4 or more random words, making it longer than a standard password. This makes them easy to remember but hard for someone to guess.

Before you try out passphrases, have you set up MFA?

Multi-factor authentication (a combination of something you know, something you have or something you are) is an effective way to protect your accounts against unauthorised access. However, where multi-factor authentication is not available, a strong passphrase is your best defence. 

Recognise and report scams

Scams are a common way that cybercriminals compromise accounts

Being alert to scam messages is a great way to protect yourself online. These 'scammers' may try to compromise your business, workplace or university accounts.  

Scammers often use email, text messages, phone calls and social media. Their goal is to scam people into paying money or giving away their personal information. They will often pretend to be a person or organisation you trust.    

Don’t fall for scams in two steps

First, check if it is a scam

  • Know what to look for. View common types of scams such as dating scams, investment scams, phishing emails and text, or invoice fraud.

  • Go direct to a source you can trust. Visit the official website, log in to your account, or call their phone number. Don't use the links or contact details in the message or given to you on the phone.

  • Check what the official source says about what details they might request from you. Often companies or government agencies will say what they will and will not ask you online or over the phone. For example, the bank may tell you that they will never ask for your password. If someone claiming to be from the bank then asks you for your password, you know it is likely a scam.

Then, if you still think it’s a scam

  • Don’t click on links, open any attachments or reply to requests. Scam messages may try and trick you into giving out your personal information. A scammer might ask for your bank account details, passwords or credit card numbers. They may also ask you to download files, software, or allow remote access to your computer. 

  • Contact your bank. Contact your financial institution if you think your credit cards or bank account may be at risk. They may be able to close your account or stop a transaction. 

  • Report a cybercrime via ReportCyber if you have fallen victim to a scam.

  • Help keep Australia secure by reporting the scam to the National Anti-Scam Centre - Scamwatch.

Watch out for threats

The best way to beat cyberthreats is to practice good cybersecurity and know what to look for

Cybersecurity attacks are devastating for victims.

Get to know some of the common threats reported to us, so you will know what to do if it happens to you.