Your own information security

As an individual, it is difficult to prevent disruptions or attacks from affecting the IT services you use. However, there are things you can consider when it comes to your own information security. Your own behaviour matters.
Published
Foto: Thomas Henrikson/MSB

Phishing and malware

Phishing is today the most common method for fraudsters to access passwords or bank and card details.

A phishing scammer may send out emails or text messages trying to get you to provide passwords, card or account information. By tricking you into clicking on links in the message, the scammer can plant viruses or malware on your computer or mobile phone. This in turn allows the scammer to access your passwords, or accounts.

The messages can take the form of regular emails or text messages with attractive offers to entice you to click on attached links or files. Often with the request that you as the recipient must act quickly.

How to protect yourself from phishing

  • Check the message carefully - does it look right?
  • Check the sender - look up the email address and phone number.
  • Do not give out passwords, card or account numbers.

If you suspect that you are affected:

  • Change your login details.
  • Cancel your bank or credit card.
  • Make a police report

Protect your passwords

Having strong passwords is important to protect your information. Having strong passwords for services such as your email is particularly important.

The longer your password is, the more secure it is, but you should still have different passwords for different services. Using both upper and lower case letters, numbers and characters further reduces the risk of an unauthorised person cracking your password.

Simple passwords, such as names of people or animals, or information that can be linked to you as a person in various ways, should be avoided. These passwords are easier for unauthorised persons to figure out.

How to keep your passwords safe

  • Never give out your passwords.
  • Do not write down your passwords.
  • Use different passwords for different services.
  • Use long passwords.
  • Use a password manager.
  • If possible, enable multi-factor login.

Securing your e-ID

E-ID is used by many people to pay bills or identify themselves online. Your e-ID is similar to a passport or ID card and should be handled and protected in the same way.

Scammers may try to access your e-ID by calling you and claiming to work for your bank, a government agency or a company and asking you to log in with your e-ID. You may also receive emails asking you to click on a link and authenticate yourself with your e-ID.

How to use e-ID safely

  • Never give your e-ID to anyone who contacts you unexpectedly.
  • Never let anyone else log in with your e-ID for you.
  • Hang up the phone if you suspect someone is trying to trick you over the phone - even if they claim to be a relative, a bank, a company or a government agency.
  • Always check what you are signing in the app - cancel if you are unsure.
  • Don't trust a caller just because they have information about you.

If you are affected:

  • Contact your bank.
  • File a police report.
  • Get support from friends or relatives.

Secure your information

If your computer, mobile phone or tablet breaks down, gets a virus or something else happens that prevents you from accessing your information, it is important that you have a backup. This means saving a copy of all your important information on another device, such as a USB stick, an external hard drive or a cloud service.

How to secure your information

  • Create a backup on a hard drive, USB stick or cloud service.
  • Back up often - this will reduce the risk of your backup becoming infected by viruses.
  • Test your backup - so you know what to do if you need to restore your data.
  • Always unplug your backup when you are not using it.

If you are a victim of fraud or cybercrime

Contact the police if you are a victim of fraud or other cybercrime.

The Swedish Police: Protect yourself against scam calls

Sources of this page: the Swedish Defence Research Agency (FOI), the Swedish Post and Telecom Authority (PTS), the Swedish Civil Contingencies Agency (MSB) and Cert-SE.