3 Security Mistakes You’re Making Right Now When Browsing By Shristi Som on April 14, 2022 Do you remember the days of safe internet browsing? For decades various security experts have advised web surfers on how to adopt secure browsing habits. All of these experts had a single and noble common goal – to make the Internet a safe place for everyone. It all sounds pretty good to be true, correct? People see web surfing as a source of joy and fun. At the same time, they pay less attention to their online security and the risks they are exposed to. Threats, on the other hand, are very realistic and you definitely have to do something about them. To help you identify these mistakes we give you 3 common browsing habits that may expose you to multiple security threats. Avoid them and enjoy safer and easier internet browsing. Let’s jump right in. Mistake – #1 Clicking on Untrusted Links The world of hyperlinks makes our lives a lot easier. No wonder there are people with bad intent ready to jump on the opportunity. Clicking on suspicious links can cause serious problems and severely compromise your browser’s security. You may be directed to a website full of malware or exposed to ransomware that encrypts all your data. As a rule of thumb, it is recommended that you do not open a link you receive unless specifically requested to do so. This especially applies to links received by email. Hackers often use emails to send phishing links to hack into people’s online accounts. If you see important notifications in your inbox that contain a link, it’s better not to click it, but go directly to the website where you registered the account and see what happens. Attractive, catchy, and sometimes provocative banners can also contain malicious and suspicious links. Remember those banners “You won $1,000,000. Click here to claim your prize!” or “We have spotted malware on your device. “Click here to delete it!” These are some of the oldest tricks in the book, please don’t fall for it. You are probably asking yourself, how do I know whether a link is malicious? Well, there are a few ways how you can test the credibility of a link without clicking on it Verify the Link Length One of the signs that your link might be compromised is that the URL looks too short. While link shortening services like Bitly are popular tools for link shortening, malware distributors and fraudsters use shortcut links to hide the true destination of their links. Just looking at it, you can not tell if a short link is dangerous or not. One way is to use online link-checking software. Some link-checking websites even tell you if the link is on the “bad sites” list. Another option is to load a browser plugin that shows you the short link destination by right-clicking on the short link. Mistake #2 – Using the Same Password for Multiple Websites Did you know that an average digital consumer actually had three accounts back in 2012? Today some research suggests that number has increased to 7. This means that an average internet user has 7 passwords to use and remember. It has become too difficult to remember passwords for dozens of websites that require registration. No wonder the most popular passwords are “123456” and “qwerty”. Nobody says you should remember all your passwords. For this reason, secure password management software was developed. Consider getting rid of your bad password habits and give a password manager a go. You only need to remember one password, sounds convenient right? Mistake #3 – Automatically Accepting Cookies You’ve probably heard of it before, as websites that use cookies are legally required to inform users that they use cookies. But do you know what they are? And why is it regulated by law in many countries? Like most people, they don’t even think about the implications of this acceptance and the potential security risks associated with it. Computer cookies are simple text files that are stored in your web browser while you browse the Internet. When you initially land on a website, your browser pushes a request. The website, in turn, sends a cookie to your browser. When you return to the same website, your browser sends a cookie rather than a request so that the browser knows who you are and that you were there before. We still got your attention? Great! Because the website “remembers” you, it can automatically set your preferences, such as your own language and color settings, and provide suggestions based on your interests. This is how big websites like Facebook and YouTube always seem to know what kind of content they offer. But what happens when the cookie goes “bad”? Several security threats encompass cookies that are listed below: Cookie Capturing – If a server sends a cookie using an unsecured network an attacker could potentially “steal” it and gain access to your account or a website. Cross-Site Request Attack – The main problem with cookies is that websites cannot detect whether requests are from an actual user or someone else. This “cookie neutrality” is something that cybercriminals can use to initiate malicious actions. “Cookie Throws” – Some websites use unprotected cookies without a path or domain name. This means that if there is more than one cookie, the browser randomly selects which one to use. Online attackers find ways to exploit this vulnerability to infiltrate user accounts. If you would prefer an incognito browsing experience where cookies don’t have a big impact, you can try exploring Google Chrome Profiles for more privacy-oriented browsing. To Conclude Hopefully, by reading this article you are familiar with the top 3 mistakes ordinary users make while browsing. If we needed to pick our most common mistake we would go with number #2. Having a compromised password is simply such a high threat that attackers are just waiting to jump on such an opportunity. Following our steps and tips will help you have a more secure browsing experience. Have you at some point been a victim of a browser attack? Let us know in the comments below!