Your personal information defines your identity. When you move through life online tax, banking, forms, and email, you need strong defences. These steps help you stay safe online and reduce the risk of fraud and cyber crime.
Use a robust digital identity
Use myID (or equivalent secure login method) whenever you can. It’s the safest way to access services. Make sure you set your profile to “Strong.”
Turn on multi-factor authentication (MFA)
MFA requires two or more ways to prove it’s really you logging in, for example; a password plus a code or fingerprint. Add this layer to make it much harder for attackers to break in.
Use strong passphrases instead of weak passwords
Passphrases using a few random words, numbers or symbols offer stronger protection than typical passwords. For example “crystal onion clay pretzel.” Use a password manager and avoid reusing credentials. Change them periodically.
Keep your devices secure: backup and updates
Backup your data regularly to external drives or cloud storage. If your device is lost, stolen or infected with ransomware, backups give you a lifeline. Make sure backup devices are not always connected. Install security updates and run antivirus software. Updates often patch vulnerabilities hackers exploit. Turn on automatic updates wherever possible.
Be careful with links, downloads and attachments
Avoid opening attachments or clicking links in emails or messages unless you are certain they are safe. Especially avoid messages directing you to log in via embedded links. Instead, go directly to the correct website (e.g. via browser or official app).
Use a spam filter on your email account
Spam filters help reduce malicious emails. Do not respond to unsolicited messages. Do not open attachments or click links unless you trust the sender.
Monitor your accounts for suspicious activity
Check your accounts regularly. Log into services directly never via emailed links and watch for unexpected changes or alerts. If something unusual appears, contact the organisation immediately.
Be cautious with personal information and social media
Think before you share. Avoid posting or giving out information like Tax File Numbers, bank details, or login credentials. Even if social accounts are “private,” data can leak. Scammers may combine personal details to impersonate you or commit fraud.
Keep your devices physically secure
When you are not using your phone, laptop or storage drive, lock them, and store them securely. Do not leave them unattended. Do not share access or lend them to people you do not fully trust.
Secure your office (or workplace) when you’re away especially over holidays
If you close your office or go on holiday:
-
Lock up or securely dispose of all physical files before leaving, and store necessary documents in locked storage units.
-
Keep laptops, tablets, phones or other devices out of sight and securely stored.
-
Sign out of all accounts and switch off or secure devices so no one can access them while you’re away.
What this means for you or your business
-
Use strong login methods and never rely on simple passwords alone.
-
Treat all unexpected emails or messages with caution, don’t click links or open attachments unless you know the source.
-
Keep software up to date and back up data routinely.
-
Keep personal info private. Think before you share.
-
Monitor your account activity, and verify suspicious requests directly with the service provider.
If you follow these practices you significantly reduce your chance of identity theft, fraud or data loss – no matter if you are using services as an individual, or running a business.
Reference: Australian Taxation Office
