How to Keep Your Data Safe

Cyber threats are more prevalent and dangerous than ever before, and I have seen first-hand how insidious, persistent, and sophisticated these bad actors can be.

That’s why cybersecurity is the number one job for everyone at Visa and it is always on my mind.

At Visa we spend hundreds of millions of dollars to protect our clients data and our infrastructure and each transaction that flows through our network. We have invented several technologies in house in addition to the best cyber hardware and software that we deploy across the length and breadth of our network.

On the average day, we collect over 14 billion events from our instrumentation and use the most sophisticated deep learning AI models to catch and stop every attempt to breach our system, but what can each of us do individually to protect our data, our assets, and ourselves on a personal level?

During Cybersecurity Awareness Month, I want to stress the importance of robust security controls and the individual role we can play to stay ahead of the bad actors just like we do at Visa.

The following security practices are the virtual locks and alarms that I advise my own family and friends to practice and will protect your digital home from intruders:?

1. Multi-factor Authentication is key. Every account you have should enable MFA. Use it on all your online accounts all the time and use an authenticator for a second factor where possible. And if an authenticator is not enabled, don’t use the same email address for the second factor.
2. Use a password manager to create strong, unique passwords that are harder to break and be sure to change your passwords frequently. Choose the strongest passwords that each account allows. Use Passkeys when available. Passkeys are a new type of login credential that allows you to log in to sites and services without having to enter a password. Never share your password or account details over the phone or email. Scammers often impersonate legitimate organizations to trick you into revealing your personal information. You can monitor if your password has leaked or compromised through several services so you can and should proactively monitor this. It is also important to not use the same password on multiple sites.
3. Ensure your mobile device has biometrics enabled and you have a SIM PIN and an account PIN enabled with your carrier. This will prevent SIM swap which is a common technique used by many bad actors.
4. Always patch your OS and keep your browsers up to date on your phone and other devices like PCs. Security patches should be a priority and be applied as soon as possible. I always enable automatic security updates for my OS and browser on all devices.
5. Use the best/latest malware & antivirus protection on your devices and enable all the rules to keep them up to date. This is a key layer of defense for our devices and acts like a security guard that is screening who is entering and leaving the device while preventing unauthorized access. As threats, malware and viruses evolve daily, keeping the software constantly updated with the latest threat mitigation is very important.
6. Enable alerts on all your accounts (bank accounts, investment accounts, email accounts, e-commerce accounts, etc.) to get real-time alerts on any login activity, change, or transaction.
7. Never… ever… click on links from emails. Always go to the site and access information directly whether it is a UPS delivery or a bank account. Always check for HTTPS on the website URL. The S stands for secure transmission and is an important protection.
8. Always check the sender’s email by clicking on their name to ensure you are not falling prey to a phishing scam. Phishing is becoming very sophisticated, and it is on each of us to be aware and skeptical of unsolicited communications These are the proverbial trojan horse appearing harmless but carrying malicious intent. Be wary of requests that come from nowhere, appear to be urgent, ask for personal information, or promise something that is too good to be true. It is.
9. Use a VPN, especially when using a public Wi-Fi network. A VPN protects your data and privacy and makes it difficult for eavesdroppers to intercept it.
10. Regularly back up your data. This is like an insurance policy for your digital life. Use encrypted cloud storage or an external device to safeguard your information. When using cloud storage, ensure it is protected with MFA.
11. Enable firewall protection on your device. These are like the walls and gates of a medieval castle and control incoming and outgoing traffic based on predetermined security rules you can set.
12. Regularly review and update your privacy settings on all your online accounts. Make sure you're only sharing information with people you trust.

Security is an important responsibility and each of us should be aware of the threats and proactively protect ourselves. Cyber criminals are always coming up with new tactics. Stay informed about the latest scams to know what to watch out for, and be sure to share this information with your friends and family to help them stay safe as well.