Make sure that you have multpal backups of all your data. These backups need to be done regularly and automatically with at least one copy of your data stored off-site. You should also be able to recover older versions that go back at least several weeks if not months.
It's important that you and everyone that you work with understands what phishing is and how it works. This is your biggest risk and the place where most companies are vulnerable. Phishing attacks will normally try to either steal your credentials or trick you into downloading malware.
- You can often spot a phishing email because it has unusual language, poor grammar or spelling mistakes.
- Websites sometimes have malicious popups asking you to login or install updates.
- Look at the URL of any links and check that the domain is correct.
- Use a password manager to store your passwords so that you don't need to type them.
Keep your devices and your apps up-to-date
Ensure that your computer is automatically installing secutiry updates of the operating system and any browsers you have.
Choose unique passwords
Use complex unique passwords that can't be guessed. These should have a mixture of upper, lower case letters, numbers and symbols. This can be hard to remember and that's why it's a good idea to use a password manager.
Turn on two-factor authentication
Two factor authentication makes it much harder for someone to gain access to your accounts. Even if they are somehow able to get your password they will still need access to your phone. It's a good idea to have 2FA enabled for any important accounts such as your bank account, Google, Microsoft, Xero and any other accounts that hold valuables.
Use good quality anti-virus software and it that is updated regularly. Many of the free options offer little value and are a privacy risk as they collect your data. Windows defender that is part of Windows 10 offers good basic protection.
Secure your network
Ensure that you have control on which devices are able to access your network and have control over them.