More and more banking and financial transactions are conducted online, which means that cyberattacks pose a significant threat to the wealth of many Americans. How can you mitigate this risk? Consider these eight tips.

  1. Use Strong, Unique Passwords
    This may seem obvious, but according to a recent survey, the most common password is "123456." "Password" is also in the top ten. Creating strong passwords for your online accounts — particularly banking, brokerage and email accounts — should be your first line of defense against hacking and other cybersecurity risks. It is also important to use different passwords for each account or website and to change passwords regularly. Consider using a password manager, such as 1Password or Dashlane, to make the process easier.
  2. Employ Dual-Factor Authentication
    Many banking and other sites that contain sensitive information offer dual-factor (or "two-factor") authentication. This process requires you to enter a one-time verification code, typically sent via text message, in addition to your username and password. It is one of the most powerful protections available because a hacker would not only need to obtain your login credentials but also access to your mobile phone.
  3. Beware of Phishing
    Phishing involves emails designed to appear as though they are from a legitimate financial institution, but are, in fact, sent by criminals. Phishing emails attempt to steal your account numbers, login credentials, Social Security number or other sensitive information, or to take over your computer. Never click on links or open attachments in emails unless you are confident the messages are authentic. And keep in mind that banks, legitimate businesses and the IRS never ask for financial or personal information via email.
  4. Be Careful with Wire Transfers
    It is common for sophisticated hackers to intercept legitimate wire transfer instructions and replace them with fraudulent directions to wire funds to an account they control. Always call the financial institution involved in a transfer — at a number you trust, not one listed in the email — and verify instructions over the phone.
  5. Use a Dedicated Device for Financial Accounts
    You might want to use a separate computer, tablet or other device solely for logging into financial accounts and conducting financial transactions. By refraining from using this device for other purposes, such as email, social media, web surfing and shopping, you will minimize the risk that it will be compromised by malware or other hacking tools.
  6. Avoid Unsecure Wi-Fi Networks
    If you log into accounts or send or receive email on unsecure networks — for example, at a coffee shop or airport — there is a risk that your login credentials or other information will be intercepted by hackers. If you have no other choice, use virtual private network (VPN) software to establish an encrypted network connection. Make sure your home Wi-Fi network is protected by firewalls and up-to-date security software, and install antivirus and antimalware software on your computers.
  7. Freeze or Lock Your Credit
    Placing a freeze or lock on your credit helps prevent hackers from opening new credit card accounts, applying for a loan or conducting other fraudulent transactions in your name. The three major credit reporting bureaus make it relatively easy to freeze or lock your credit information on their websites or via a mobile app. The bureaus also enable you to temporarily unfreeze or unlock credit for legitimate transactions.
  8. Set Up Alerts for Your Financial Activities
    Set up text or email alerts with your credit and debit cards, bank accounts and other financial accounts. These alerts notify you of transactions above a specified threshold or if your balance falls below a certain level, enabling you to identify and address potentially fraudulent activity quickly.

In today's digital world, it is difficult, if not impossible, to avoid conducting financial transactions online. However, by taking precautions, you can minimize cyber risks.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.