1. Use multi-factor authentication (MFA) on your accounts whenever available. Sometimes referred to as two-factor authentication (2FA), this added layer of protection will confirm you are who you say you are. See the MFA Fact Sheet attached below for more information.  
  2. Think before you click links and attachments in email and text messages. Assess links you don’t recognize and attachments you are not expecting.  
  3. Create long, complex, and unique passwords. Use a password strength checker to see how much time it might take a cybercriminal to crack a password. (Enter passwords similar to ones you use, not the actual passwords.) 
  4. Keep your software up-to-date. If possible, enable automatic updates on your personal devices. 
  5. Use a virtual private network (VPN). Boost Wi-Fi security with a VPN at home and when traveling; it provides a secure connection to the internet. 
  6. Be cautious when sharing information on social media. Oversharing can increase your vulnerability to phishing scams and identify theft.  
  7. Trust your instinct. If something seems suspicious, it probably is.  

Visit the OIS webpage, Top 10 Actions to Reduce Risk, for more information.