Security Resolutions for the New Year

Friday, December 28, 2012

Allan Pratt, MBA


As the New Year approaches, have you thought about your New Year’s resolutions? As a member of the information security industry, I would like to share five resolutions that you should definitely add to your list.


If you have one key password or several, change them every couple of months or at least quarterly. Use Microsoft’s Password Strength Checker to determine the strength of your password, and don’t forget to use lower case letters, capital letters, and symbols. Don’t use any information that other people could figure out about you, such as, pet names or street names. And if you have so many passwords that you cannot remember them all, consider using a cloud-based password manager such as Lastpass (, or use a local (computer-based) program. Check out reviews online before downloading or purchasing. Here’s the link for Microsoft’s Password Strength Checker:


Abbreviated links are synonymous with social media. Be careful and don’t click on them without checking. Use a website to see the entire link before you click. There are several but here are two options: and Do your due diligence. I have a client who clicked on a link she thought was sent by a reputable person, but the abbreviated link led her straight to a contaminated site, and before she knew it, her computer had been compromised, and her hard drive had to be reformatted.


Do you have important spreadsheets on your computer? Do you have wills or book manuscripts? No matter what important files you may have, consider password-protecting them. This will add a layer of protection to the information in the event that a breach happens.


ALWAYS use virus protection. Although it seems that the Norton vs. McAfee war continues every year, it doesn’t really matter if Norton is the top choice or McAfee is. Use one or the other. And always allow auto-updates. For an additional layer of security, consider Malwarebytes Anti-Malware. ( It’s always good to have a second opinion of a file.


Friends and family know that I say this all the time, but I know people who swore they had no need to back up their system. But with electrical surges, storms, tsunamis, earthquakes, etc., who wouldn’t agree that it’s better to be prepared than to have to re-create all your documents? And what about photos? Today, most of us keep photos on our computers, laptops, tablets, and smartphones – rather than in traditional printed albums. If your system got corrupted, how would you recreate those photo memories? So, once a week, or more often, back up your entire system. In order to remember, add the back up to your smartphone calendar. Use an auto back up program like Microsoft Backup for Windows and back up your data to an external drive – this can be done automatically on a daily or weekly basis without your involvement. Anyone who knows which product is best for iOS, please speak up.

If you follow these practices on a regular basis, and not just at New Year’s, you’ll be one step ahead of the cyber criminals who want access to your data or to turn your system into a tool for cybercrime.

What would you add to the list? Please chime in, and Happy New Year.


Allan Pratt, an infosec strategist, represents the alignment of technology, marketing, and management. With an MBA Degree and four CompTIA certs in hardware, software, networking, and security, Allan translates tech issues into everyday language that is easily understandable by all business units. Expertise includes installation and maintenance of all aspects of the PC and peripheral lifecycle and the planning and integration of end-to-end security solutions. Allan has taught the CompTIA A+ cert course, and in February 2013, will teach the CompTIA Security+ cert course. Follow Allan on Twitter ( and on Facebook (

Cross-Posted from Tips4Tech (

Possibly Related Articles:
Security Awareness
Information Security
Security Awareness Infosec online safety
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.