Long,
complex and
unique passwords for every service are a must. Generate them with a
password manager and never store them in plain text.
2. Turn on 2FA
With 2FA, you need a code or app approval in addition to your password. That blocks many account takeovers.
3. Don’t browse with admin rights
For daily use, stick to a standard account instead of administrator. Mistakes or malware cause far less damage. Enable User Account Control and grant admin rights only when needed and briefly.
4. Install and keep a firewall active
A personal firewall controls inbound/outbound traffic and blocks suspicious connections. Turn on the system firewall and, if needed, add a security suite with network monitoring.
5. Use antivirus with real-time protection
An up-to-date antivirus detects malware, ransomware and phishing sites. Keep signatures and engine current and schedule regular full scans.
6. Keep your OS and apps relentlessly updated
Updates close security holes. Enable automatic updates for the OS, browser, office suite and plugins, and retire outdated software.
7. Harden your browser
Enable tracking protection, a pop-up blocker and Do Not Track; block third-party cookies; remove unnecessary extensions; allow only essential site permissions (camera, location). Keep the browser fully updated.
8. Secure email and Office
Disable macros by default, scrutinize attachments, turn off automatic loading of external images, and use secure protocols plus strong passwords + 2FA. For Office files: preview first, then open only from trusted sources.
9. Manage cookies and block third parties
Regularly delete cookies, disable third-party cookies, and use privacy add-ons if needed. This reduces profiling and cross-site tracking.
10. Prefer websites using HTTPS
Look for https:// and the lock icon. That encrypts data between you and the site—critical on unfamiliar networks.
11. Use a VPN wisely
A VPN encrypts your traffic and helps especially on public Wi-Fi. It doesn’t replace browser safeguards, but it reduces eavesdropping risk.
12. Lock down your Wi-Fi
Set a strong admin password on your router, use WPA3 (or at least WPA2), disable WPS and keep the firmware updated. Separate a guest Wi-Fi from your main network and turn off auto-join to open networks on your phone.
13. Actively protect your data
Make regular backups locally and in the cloud, encrypt drives and backups, and share sensitive files only via secure channels. Review cloud folder sharing and set expiry dates on links.
14. Secure your smartphone
Use a PIN or biometrics, enable screen lock and remote wipe, install apps only from official stores, review permissions, keep iOS/Android up to date, and protect your mobile email with 2FA.
Public Wi-Fi - risks and how to protect yourself
Free Wi-Fi in cafés, stations or airports is convenient but often weakly secured. Attackers can intercept data or spin up fake hotspots.
Reduce the risks:
- Avoid e-banking and checkout on open Wi-Fi.
- Turn on your VPN and use only HTTPS sites.
- Disable automatic connections to open networks.
- Turn off file sharing and set AirDrop/Bluetooth to visible contacts only.
- When in doubt, use mobile data.
The most common online threats today
- Phishing and smishing go after logins and payments. Spot them by odd senders, false urgency, spelling errors, strange domains.
- Malware and ransomware encrypt data or spy on you. Protection: updates, antivirus, backups, and no browsing with admin rights.
- Account takeovers often stem from password reuse. Fix: unique passwords + 2FA.
How to protect your data when shopping online
Check the legitimacy of the shop, full contact details, return policy, and transparent prices in CHF. Use buyer-protected payment methods, enter card data only over HTTPS, and keep order records. If something’s off: contact the merchant first, save evidence, then inform your payment provider and, if needed, the authorities.
Protecting kids online — here’s how
Set clear rules, use parental controls, explain privacy in age-appropriate terms, and discuss apps, games and social media together. Guidance and open conversations work better than technology alone.
More tools for safer browsing
Password managers for strong, unique logins. Authenticator apps instead of SMS where possible. Privacy-focused search engines like DuckDuckGo or Startpage, email providers such as Proton Mail or Mailbox.org, and messaging apps like Signal or Threema. Always check transparency, company location and encryption.
What to do after a data leak or attack?
- Change passwords immediately, prioritizing critical accounts.
- Enable 2FA if not already on.
- Scan your device and install updates.
- Notify your bank/payment provider and block cards.
- Keep evidence and report the incident; if fraud is suspected, also contact the police.
Checklist: safe browsing on the internet
Accounts & Logins
- Use a password manager and create unique passwords for every service.
- Enable 2FA everywhere (ideally with an authenticator app).
- Don’t browse with admin rights; use a standard account.
Browser & Software
- Enable automatic updates for OS, browser, apps and plugins.
- Block third-party cookies and enable tracking protection.
- Keep only necessary extensions.
- Check for HTTPS and take certificate warnings seriously.
- Disable Office macros by default, open files only from trusted sources.
Email & Communication
- Verify the sender’s address and domain.
- Hover over links before clicking; treat attachments with skepticism.
- Don’t auto-load external content in emails.
- Report and delete suspicious messages.
Network & Wi-Fi
- At home: use WPA3/WPA2, set a strong router admin password, keep WPS off, and separate guest Wi-Fi.
- On the go: disable auto-join to open networks and turn off sharing.
- On public Wi-Fi: use a VPN; avoid sensitive logins and payments.
Data & Backups
- Follow the 3-2-1 rule (3 copies, 2 media, 1 off-site).
- Encrypt devices and backups.
- In the cloud, share with passwords and expiry dates.
- Factory-reset old devices and securely wipe storage.
Smartphone
- Use PIN/biometrics, enable short auto-lock, and keep remote wipe active.
- Install apps only from official stores and review permissions regularly.
- Keep the OS and apps up to date.
Kids & Family
- Enable parental controls and select age-appropriate content.
- Set surfing rules and shared screen-time.
- Explain privacy and caution with strangers.
In an emergency
- Change passwords and enable 2FA.
- Scan and update the device.
- Alert your bank/payment provider and block cards.
- Report the incident and save evidence; if fraud is likely, contact the police.