Cyber Security
Sappi
Keep Your Phone Smart

Have fun and test your knowledge
with our quiz below

Our smartphones are working harder and smarter these days. For lots of people, their mobile devices effectively organise their whole lives. And that means a mountain of sensitive information is floating around in a small rectangle of plastic.

For example, your phone can contain:

  • A back office crammed with business secrets
  • A wallet stuffed with money
  • A dinner party full of gossip

And while all the phone and (legitimate) app manufacturers do their best to keep all that stuff safe for you, some very hardworking crooks are also doing their best to steal them from you.

Email Notification Icon

How do phones get outsmarted?

Some criminals want to steal your bank and password details during the mobile shopping process — by installing spyware or malware that would then allow them access to your credit cards and accounts.

They might do this with a phishing attack, or via a compromised public Wi-Fi network that you log into when shopping.

Others want to take over your phone by abusing the SIM swap process — so they can pretend to be you.
They may also want to use your phone’s personal communication apps — email, chat apps and others — to sneak into your employer’s IT system.

Then there are those who want to physically steal your phone to access all your apps and data.

So how can you beat them?
Your biggest tool is keeping your phone’s security up to speed.

Here are the keys to keep your phone smart

Shop on verified websites or official apps only

Check for HTTPS website security

Install an antivirus app on your phone

Use two-factor authentication (e.g. password + face recognition)

Use strong passwords and change them regularly

Use a Virtual Private Network (VPN) service that hides your identity and location when browsing the internet

Use multi-factor authentication for locking your phone or important app logins
(e.g. password + PIN + face or fingerprint recognition)

Always keep your phone locked and physically secure.

Regularly back up your phone

Regularly update your phone’s software

On Android, consider these settings:

Screen lock type:

Swipe, pattern, PIN, password, and biometric checks using fingerprints or your face.

Smart lock:

Keep your phone locked when it is with you, and you can decide what situations are considered safe. 

Auto factory resets:

Automatically wipes your phone after 15 incorrect attempts to unlock.

Notifications:

Select what notifications show up and what content is displayed, even when your phone is locked.

Find My Device:

Many phone manufacturers allow you to remotely find, lock, or erase your phone from another linked device.

 

On iOS, consider these settings:

Passcode:

Set a passcode to unlock your device.

Face ID or Touch ID:

Biometrics can be used to unlock your device, use apps, and make payments.

Find My Device:

Your phone manufacturer might allow you to remotely find, lock, or erase your iPhone or iPad from another linked device.

Lockdown Mode:

Dubbed ‘extreme’ protection for a small pool of users considered most at risk of targeted attacks, this feature provides additional security for malicious links, content, and connections. You can enable Lockdown Mode in iOS 16 or later operating systems.

How should you lock your smartphone?

Locking your phone isn’t merely a way to keep family members from snooping. It’s also to protect your money, photos, messages and login data in the event your phone is lost or hacked.

Because our mobile devices are often synced with our computers at home, a lot of vital information could also be stolen from the computer.

These are the locking options; you should use at least two of them.

  • Facial recognition app at login
  • Authenticator apps that add protection by generating One Time Passwords (OTPs) to access the phone
  • A password manager app to maintain strong and unique passwords
  • Two Factor Authentication (e.g. OTP + face/touch recognition)
  • Multi Factor Authentication (e.g. OTP + face/touch recognition + password)

And how exactly do hackers target your phone?

Phishing, smishing, and vishing

They use inviting emails, text messages and video attachments to harvest your data.

Physically stealing your phone

Old-school theft is still very much a thing. So don’t leave your phone or bag unattended in public, and keep it out of sight when socialising at street cafes or walking around.

SIM hijacking

SIM hijacking, also known as SIM swapping or SIM porting, is the abuse of a legitimate service offered by telecom firms when customers need to switch their SIM and telephone numbers between operators or handsets.

Nuisanceware

These are apps that drain your phone’s data, airtime or processing power, such as premium service diallers and cryptocurrency miners.

Open Wi-Fi

Cybercrooks can infect your phone via a compromised public or private Wi-Fi network.

Surveillance, spying, and stalkerware

Deceptive apps or viruses that harvest data.

Trojans and financial malware

Viruses that raid your financial data to defraud or blackmail you.

Strictly business: don’t use your personal email for work

It’s a bad idea to use your personal email account for business purposes, because it provides an entry point for hackers to access workplace data, bypassing Sappi’s IT system protections. Even just forwarding personal emails to your work account is risky.

If you’re away from your computer or on leave, then use a web version of your work inbox instead. And if you are on leave, then don’t work unless it’s a crisis!

What are the signs of malware infection?

  • Your phone may not be working very well.
  • Your battery might drain quickly.
  • You may see apps or browsers you didn’t install.
  • You may notice debits off your bank account that you don’t recognise.
  • You may suddenly be unable to make calls: a red flag that a SIM hijacking has taken place.

Shop but don’t drop!

Many of us have mobile wallets or credit cards stored on our phones — this is very convenient, but it does require proper security and precautions.

You should:

  • Shop only on verified websites or official apps
  • Check that a shopping site has HTTPS website security
  • Install an antivirus app
  • Use Two Factor Authentication

That was a lot. But it’s really worth getting on top of this stuff — knowing it will save you a lot of trouble.

So, to help you master the art of smartphone safety, we’ve compiled two quizzes on the subject.

First up: the entry-level quiz. We call it “The Silver Shield”.

OK! That was easy. Ready for a tougher challenge?

Thanks for taking part in our quiz —

hope you’ve outsmarted yourself!

Cyber Security is a team sport
Sappi