How to protect against malware -10 ways to stay safe online

How to protect against malware – 10 ways to stay safe online

Reading the headlines, you’d think cybercriminals only go after big companies. But for every high-profile breach and hefty fine that hits the news, there are countless attacks on smaller businesses that never make the front pages but can be just as devastating.

The harsh reality? Being small doesn’t make you invisible – it makes you vulnerable. In fact, 60% of small to mid-sized businesses have faced at least one cyberattack, and 63% have faced advanced threats like ransomware. And with 76% of attacks happening after hours or over the weekend, it’s crucial you can defend yourself around the clock.

We highlight 10 essential steps on how to stay safe online.

10 ways to stay safe online and protect against malware

1. Choose strong passwords

Weak or recycled passwords are a glaring security risk that too many businesses still overlook. Secure every account with a unique, complex password that mixes upper and lowercase letters, numbers, and symbols.

To make it easier to remember, turn a meaningful quote, memory or phrase into a secure password. For example, "I love pizza" could become "I#l0v3p1zz4"- easy to recall, but tough to crack.

If keeping track of these sounds like a hassle, invest in a password manager that creates strong passwords and stores them securely.

2. Get antivirus software

Simply installing antivirus software won’t do much good if it’s not kept up-to-date and running regular scans. New, wide-ranging cyber threats are appearing all the time, so your antivirus needs to be adaptable. Don’t settle for a basic option just to tick a box. Choose one that fits your unique needs and offers comprehensive protection – from real-time threat detection to robust malware removal.

3. Train your people

When one careless click can cause a costly breach, training your team to spot phishing attempts, avoid suspicious downloads, and stay alert to cyber threats is essential. Regular training sessions keep everyone sharp, informed and aware of cybercriminals’ latest tactics.

4. Check websites are secure

Before entering any sensitive information, always check for "https" in the URL and a padlock symbol in the address bar.

It might seem obvious, but phishing sites are becoming more convincing every day. Make sure your team knows to look out for these signs. If something feels off, don’t click, spread the word and alert your IT team.

5. Review privacy settings

You’re probably using multiple platforms – social media, cloud storage, email and more. But when was the last time you checked your privacy settings? It’s easy to forget, but ensuring you share the minimum amount of data is crucial. Regularly review and adjust privacy settings across all your platforms, and limit access to sensitive information wherever possible.

6. Regular software updates

Updates aren’t just about adding shiny new features. They’re vital for closing security gaps. Keeping your operating systems, apps, and antivirus software up to date across all company devices is one of the simplest ways to stay protected. Skipping an update, even for a short time, can leave you exposed to malware waiting to exploit outdated software.

7. Use Multi-Factor Authentication (MFA)

Adding an extra layer of security with Multi-Factor Authentication (MFA) is an easy and effective way to keep cybercriminals out. Even if a password is compromised, an additional verification step, like a fingerprint or one-time code, makes it much harder for cybercriminals to get access.

8. Monitor employee access

Not everyone needs access to everything. By limiting access based on job roles, you reduce the number of potential weak spots in your network. Regularly review who has access and why, create clear guidelines, and set up alerts to catch any suspicious activity.

9. Be wary of public Wi-Fi

With more of us working remotely, public Wi-Fi can be a criminal playground. These networks are typically unsecured, making it easy to intercept sensitive information. Whether you’re working from home, cafés, airports, or anywhere with public Wi-Fi, always use a Virtual Private Network (VPN) to encrypt your connection.

Discover how to secure your employees’ phones.

10. Back up regularly

Ransomware can lock you out of your own systems, but regular backups mean you won’t lose everything if the worst happens. Back up everything – from client files to financial records – and store it securely offsite or in the cloud. Set up automatic backups so you’re not relying on memory.

Cybercriminals aren’t picky. Whether you’re running a small business or a large corporation, you’re a target. But you don’t have to be an easy one. From securing your passwords to backing up critical data, follow our 10 tips on staying safe online.

Download our handy checklist below.

Want more advice on protecting your business against malware? Chat to our expert V-Hub advisers for 1-2-1 support.