The Cybersecurity and Infrastructure Security Agency (CISA) has issued a set of guidelines to protect smartphones. Here are some tips from CISA to keep your smartphone just as safe as a government official.
CISA’s first general advice for communications is to use end-to-end encrypted services. iPhone’s default iMessage pipeline and the RCS protocol championed by Google for its Messages app on Android are both end-to-end encrypted.
Enabling hardware-based or on-device authentication for identity verification is the next line of defense. Go ahead and enable them if carrying a physical FIDO hardware key, like one from Yubico, sounds like too much of a hassle.
Another crucial suggestion by CISA is that you should ditch SMS-based multi-factor authentication, as they are prone to various kinds of attacks. Instead, switch to authenticator apps.
If an authenticator app is not an option for your work or productivity flow, rely on a password management app instead of the inconvenient (and hack-prone) route of remembering a dozen passwords.
Moreover, if you live in a country where carrier accounts form the backbone of your cellular usage, set up a strong password for that SIM account.
Use a VPN for your internet surfing activities.If possible, pay for one instead of going the free VPN route. We have detailed the steps to keep your app permissions in check for both Android and iOS.
If you sense malware activity on your iPhone, enable Lockdown Mode and reach a law enforcement authority.
Google offers a Security Checkup dashboard for all connected devices. I suggest that you spend a few minutes flicking some toggles and clearing the security alerts in there.
Taking the time to follow a few tips can drastically reduce your risks.