Hello! Mark here, ECNO's new PISO. I'm not that new, but if this is our first time chatting, nice to meet you! Great haircut.
I'm loving the work we're doing around Cyber Hygiene, with emphasis on password hygiene. We're promoting some Cyber Awareness Month staples:
Never reuse a password. Online services can get hacked and customer logins can get on the dark web for criminals to use. By generating and using random and unique passwords, a user can limit the exposure. Criminals will try to use compromised credentials on various internet resources
Do not use company login to sign up for personal business, use your personal email address.
Use dedicated password managers to store passwords and other secrets. One can actually call them “secrets managers” as you can store a variety of personal secrets: passwords, secret questions, PINs, combinations, etc. Some will even let you configure emergency access for the next of kin in case of an emergency. There are good options for free and paid solutions. Some of them can be easily integrated with browsers and offer clients for major Operating Systems.
With the holidays coming up, I want to stress the importance of vigilance around phishing emails. Cybercriminals are very active during festive season. Scrutinize all emails that land in your inbox. Look for obvious clues: unsolicited email, notification of unexpected delivery, password reset hyperlink and any hyperlink for that matter. Hover your mouse over the link or a button disguised as a link to reveal the actual URL where the link is pointing to. Another red flag is an acute sense of urgency one can detect in the email message. Most importantly - don't send anyone you don't know money of any kind. It might be the season of giving, but for criminals, it's always the season of taking!
Wishing you all the best for the upcoming holiday season - I look forward to meeting some of you at the upcoming Annual General Meeting!