Cybersecurity awareness month: the 4 biggest security mistakes to avoid

Cybersecurity Awareness Month has been celebrated in October since 2002. It's a time for everyone, from everyday internet dwellers to private companies, to come together and work to raise awareness about the importance of cybersecurity in the world we live in.

Today I'll take a look at the four biggest security mistakes that, even now, people still make, and explain why they're so risky.

Mistake #1: reusing passwords across accounts

In a world where security breaches are a common occurrence, reusing passwords is one of the most dangerous digital habits to have.

Using the same password across multiple accounts means that a cybercriminal only needs that one password to access your entire digital life.

It's hard to remember all of your login credentials, sure, especially if you have dozens of them – and when many sites force you to create a 14-digit combination of numbers, special characters, and capital letters.

Luckily, this is where password managers come into their own, and I consider them a vital addition to your online security toolkit.

Mistake #2: not updating software

This might seem like a relatively innocuous sin in the grand scheme of things. So you haven't updated your copy of Windows since you installed it, or that copy of Acrobat Reader that sits quietly in the background until you need to view a PDF. What harm could that possibly do?

The answer is far more serious than you might think. As well as bug fixes, updates often contain security patches that block newly discovered vulnerabilities.

In fact, many hackers rely on people not updating their software, because that leaves them with an easy way to access your system and steal your data or install something malicious.

Getting through these updates can be a pain – especially if you're unable to use your device for a little while – but keeping up with them is a no-brainer if you value your digital privacy.

Mistake #3: clicking suspicious links

Fake emails and phishing attacks are growing ever more sophisticated. Many of us are bombarded by emails claiming to be from delivery companies, banks, and even family and friends, all of them encouraging us to click on a link to verify delivery, check our bank statements, or send money to help with a broken down car.

At the risk of repeating what has been said many times in the past, please don't click on links in emails if it's one you're not expecting, or it comes from an address you don’t recognize.

These links will send you to fake sites that exist solely to harvest your personal data and login details and, if you’re still making the mistake of using shared passwords, you might have just compromised all of your accounts.

Mistake #4: not using a VPN on public Wi-Fi

Wi-Fi is everywhere, in every shop, pub, bus, train, and office, inviting you to connect and browse the internet. But how do you know that the open Wi-Fi hotspot you're connecting to is what it claims to be?

Sure, some of them have a confirmation page that reassures you you're connecting to the real thing, but it's shockingly easy to make a fake webpage. There's also the simple truth that if a Wi-Fi point is completely open then you have no idea who might be connected to it, who might be trying to peek at your browsing habits or your messages to see what information you're sharing.

If you do use public Wi-Fi, then protect yourself with one of today's best VPNs. If you'd rather not pay for an additional subscription, then even choosing one of our best free VPNs is better than using open Wi-Fi without any protection at all.