To guard against hacks, iPhone and Android users have been urged to switch off their devices at least once a week, as it helps stop ‘zero-click’ hacks where malware can be installed on phones
An urgent warning has been issued to all iPhone and Android users after a major cyberattack.
iPhone and Android users have been urged to switch off their devices at least once a week to guard against cyber hackers. The move is designed to prevent “zero-click” hacks, where users’ phones can be infiltrated by spyware that can be installed onto their devices without a link being clicked.
It’s been backed by the National Security Agency (NSA) because it temporarily gets rid of information stores, which run in the background or internet browsers. The agency has also warned people about using public WiFi networks, and urged them to update phone software and apps regularly.
If phones aren’t regularly switched off, hackers can manipulate opened web addresses and install malicious files onto devices. A switch off and on logs out of banking and social media accounts, preventing hackers from accessing sensitive information.
It has the same effect on phishing attacks, where a hacker sends a malicious email to gain access to sensitive information such as logins or passwords. Almost half of phone owners say they rarely or never turned their device off, a 2015 Pew Research study found, while 82% said they never or rarely switched their phone on and off.
The NSA also said users should often update software and apps to ensure their device is secure. Updating old software will remove loopholes where data can be accessed. People should also disable Bluetooth when not in use, preventing unauthorised access to devices.
It is, however, not 100% effective, but should provide partial protection from some malicious activity. The NSA warned: “Threats to mobile devices are more prevalent and increasing in scope and complexity, but added the steps “provide convenience and capability but sacrifice security.”
WiFi networks should also be deleted to stop cybercriminals targeting peoples’ phones. It is also important to look out for SSID Confusion Attacks, where you connect to a cyber attacker’s hotspot instead of an official WiFi with a similar network name.
People were also warned about opening email attachments or links from a source that is not known, resulting in the installation of malicious software without their knowledge.
Oliver Page, the CEO of cybersecurity company Cybernut, told Forbes: “Falling for social engineering tactics, like responding to unsolicited emails requesting sensitive information, can result in account compromise and identity theft These phishing attempts often mimic legitimate entities, deceiving individuals into divulging confidential details.
“Trusting phone calls or messages without verification can lead to serious consequences, as scammers manipulate victims into disclosing sensitive information or taking actions that compromise their security.”
