Stay safe online resources

Keep your devices and data secure

Online safety isn’t just about spotting scams — it’s also about protecting your digital “front door”. A few simple habits can make it much harder for cybercriminals to access your personal information, money, or identity.

Use strong, unique passwords

  • Avoid common passwords like password123 or qwerty — these are easily guessed
  • Use a different password for every account, especially for banking, email, and social media
  • Longer passwords (at least 12 characters) are better — use a mix of letters, numbers, and symbols
  • Consider using passphrases (e.g. M0nkeys-Love-Ja77!) - find out more about using three random words.
  • Use a password manager that will store and create secure passwords for you - so you only need to remember one.

Turn on two-factor authentication (2FA)

2FA adds a second layer of protection — even if your password is stolen, criminals can’t access your account without the second step (like a code sent to your phone or an app). Turn on 2FA for:

  • Email accounts (especially Gmail, Outlook, Yahoo).
  • Banking and finance apps.
  • Shopping sites like Amazon, eBay, and PayPal.
  • Social media (Facebook, Instagram, X, TikTok).

Find out how to set up two-factor authentication.

Keep devices and apps up to date

  • Updates often include patches for known security flaws - delaying updates leaves you open to threats that hackers already know about.
  • Turn on automatic updates for your phone, laptop, and apps.
  • Regularly restart your device to install updates properly.
  • Only download apps from trusted sources (Apple App Store, Google Play).
  • Avoid sideloading apps or using cracked software - they often contain malware.
  • Sideloading means installing an app from outside of the official app stores, like Google Play (Android) or the Apple App Store (iOS). For example, downloading an app file (like an APK on Android) from a website and installing it manually.
  • Cracked software refers to pirated versions of paid apps, games, or software that have been illegally modified to remove payment or security features.

Use antivirus or device protection

Many modern devices come with built-in security:

  • Windows: Microsoft Defender (free and effective).
  • macOS: Built-in protection + Gatekeeper.
  • Android/iOS: Regular security updates + app store screening.

If you install additional antivirus, choose a reputable brand avoid unknown “cleaner” apps, especially on Android - find out more on Get Safe Online.

Be careful with public Wi-Fi

  • Free Wi-Fi in cafés, airports or hotels is convenient, but not always secure.
  • Avoid logging in to sensitive accounts (like banking or HMRC) on public Wi-Fi.
  • If you must, use a VPN (Virtual Private Network) to encrypt your connection.
  • Turn off auto-connect settings so your device doesn’t join unknown networks.

Think before you share

  • Even innocent posts can reveal a lot about you - especially to criminals collecting data for fraud or identity theft.
  • Don’t overshare personal details like your birthday, address, school, or holiday plans on social media.
  • Be cautious of quizzes or games that ask for things like your first pet’s name or mother’s maiden name - these are often used to tease out things you might have used as a security question online.
  • Set your social media profiles to private and review who can see your posts.
  • Find out more on the National Cyber Security website

Think you've been scammed? Act now

Online account

Win great prizes

Enter our stay safe online competition to win great prizes including online training, anti-virus software, spa vouchers, mindfulness workshops, cafe vouchers, mental health journals and more!

Enter now!