How to prevent hacking (an ultimate guide with a list of 35 effective ways)
Privacy and security should be a priority, especially in our digitally inclined world.
Many people think that having strong passwords or using an antivirus is enough to prevent hacking. However, there’s a lot more that you need to do and practice to protect your accounts and devices from hackers today.
The University of Maryland conducted a study in 2007 where it concluded that hackers attack every 39 seconds. That was back in 2007; just imagine how fast hackers’ operations might have gone by now.
If hacking happens that frequently, how can you keep yourself safe online? Luckily, that does not require a fortune.
All you need is to take little steps and ultimately be thoughtful about your internet security. We list 35 effective ways to keep hackers at bay. Let’s dive in.
The quick checklist to minimize the risk of getting hacked
Regularly update your device’s OS and applications. These updates usually ship with fixes to bugs and vulnerabilities. Therefore you must be running the latest firmware and app version.
Don’t reuse the same password across your logins. If a hacker manages to access your password, it can unlock your other accounts. Also, use a password manager and change passwords many times a year. Lastly, make use of a 2-factor authentication system for your logins.
Only download applications from your OS’s official marketplace if possible. Official app vendors scan the apps it allows on its platform, making it safer for users. However, if you need to download app files and side-load them to your device, ensure that the website you’re downloading from is reputable and safe.
Admin accounts protection
Don’t use your admin account if you’re doing usual tasks and installing programs on your computer. The admin account has the highest privilege and control of your computer, therefore making it more sensitive. If you use your computer as an administrator and a hacker has broken in, he can control and exploit more data than when it’s only a regular user account.
Turn-off when not in use
Turn off or close the devices and accounts that you’re not using. For instance, make sure to power off the computer or your WiFi when not in use. You should also log out from your accounts after using them.
Similarly, turn off sensors on your devices such as Bluetooth, NFC, and Hotspots to reduce the probability of being hacked.
Encrypt your devices and internet data
Try to encrypt files in your devices and cloud storage alongside using a VPN to mask your internet traffic. Also, encrypt your emails and conversations using secure messaging apps such as Telegram or Signal. Moreover, use programs that let you secure your computer’s storage devices and set passcode protection for your mobile phones.
35 ways to prevent hacking
Below you go with easy and effective ways to keep hackers at bay:
Start with protecting your devices and data
1. Limit what you put online
You should only upload data or information online that you would feel comfortable about in the long run if other people access it.
It would be best not to put anything online that you want to keep private, even in the future. It is also best not to save important documents or data such as your bank credentials online since these contain sensitive information.
2. Regular data back-up
Whether it’s your phone or computer, essential data on it should be backed up regularly.
You don’t want to lose something important when someone manages to breach your data. Sometimes, files from programs and devices might get corrupted due to software bugs or hardware issues.
While there’s a good chance that you can recover corrupted files through specific programs, most of the time, you cannot. Therefore, it’s advisable to back up your data manually to external storage devices such as thumb drives or safe online cloud storage.
Luckily, a good number of free cloud storage providers exist today. So you more likely won’t have to spend money on backing up your data in the cloud.
You can also use a mobile or computer application that automatically saves your data to cloud storage routinely based on the time you schedule it.
3. Encrypt files on your cloud storage
Even though it can be an inconvenience, it is a good practice to encrypt the files you store on your cloud storage.
While most of these services boast high-level security and encryption, there’s no harm in adding a layer of protection by yourself. That way, even if your cloud storage account gets compromised, an intruder will not benefit from your files.
You can easily encrypt your files by using the built-in tools in your computers, such as your Windows file explorer or 3rd-party software like WinZip. Select the file you want to protect, look for the encryption option, and let it process. After that, you can save it to the cloud without worrying that much.
4. Lock your mobile phone
The easiest way to stop hackers from accessing your phone is to protect it with a password, PIN, or biometric data. A biometric data could be your fingerprint or face. With mobile lock protection, even if your phone gets stolen or lost, no one could unlock it, so your data will be safe.
If your phone has no built-in protection or you just want to secure your Android or add a security layer to any other phone quickly, you may simply turn to the official app store depending on your phone and search for ‘phone lock app.’ Then, pick and install an app with good user ratings from there; you might need to test a couple before you starting liking one the most.
Such apps work the same as the built-in phone security but with extra features.
5. Learn how to wipe your devices
Before anything bad happens, like when your phone gets lost or stolen, you should already know how to wipe your device.
Wiping or resetting your device is the act of deleting all data and apps installed on it. You can perform this manually or by using a program to trigger the task remotely. This act is not a hacking prevention technique but can help keep your data safe from any third party even if they get hold of your device.
Depending on your operating system, you will need to install a data wiping app on your device beforehand. Then, if you lose your phone, use a different one to trigger the app to start wiping your data.
BlackBerry, iPhone, and Windows Mobile have remote wipe features out of the most widely used smartphones. Unfortunately, Android does not come with such capabilities as a default feature. But some highly regarded and free third-party apps exist that you can use. Mobile Defense app is the leading example here.
6. Cover your webcams
People keep becoming webcam hacking victims, where hackers intrude on their webcams to view what they’re doing.
One such example from the past is of Jared James Abrahams, who broke into almost 150 online accounts over a period of two-year to commit the crimes. Abrahams successfully hijacked the computer webcams of more than two dozen women in the Irelands, US, and other nations.
It’s creepy that a stranger might be watching you. Therefore, you need to cover your gadget’s webcam when not in use.
If you don’t want to put a sticker on your webcam, you can use a dedicated webcam cover that you can find on Amazon and other similar sites today. It has a lid that you can easily open and close like a sliding door to access your webcam.
7. Use a device finder application
In the past, if your phone would be lost, you couldn’t do anything about it. Today, with the use of GPS, you can locate where your device is. For that, all you need to do is activate the function in ‘Settings’ as all smartphones out there have such a feature.
If you’re using an Android, you can enable the ‘Find My Device’ on your phone settings. If you own an iOS device, there is a pre-installed ‘Find My’ application. Both of these are excellent tools to track your lost phone. Besides, you can also download a 3rd-party app that does the same function.
8. Only open your accounts on your devices
Your accounts are as sensitive as your data, so protecting them is a no-brainer. With this in mind, you should only open your accounts on your own devices.
You might forget to log out after using other people’s devices, letting them use those gadgets. Also, there’s a chance that a device might have a keylogger installed. A keylogger is a program that captures the words or characters typed on the device. Cybercriminals use this to have access to a person’s login details effortlessly.
9. Install an antivirus
If you ever wonder how to prevent hacking and protect your computer from hackers and viruses, you should install an antivirus. It will scan your files, apps, devices, and network for issues, malware, and vulnerabilities. The program will fix the problems upon discovering any or notify you to take the necessary actions.
Besides, some antivirus software includes a firewall addon that monitors your network traffic and regulates data transfer based on specific security protocols.
Many antiviruses are available on the market today with varying prices and specialties, which can make it tough, especially for beginners, to choose what’s best for their needs and budget. However, if you need quality recommendations, you can check out our list of best antivirus software.
10. Use a Virtual Private Network
Using a VPN is another effective way to ensure protection from hackers. A VPN masks your real IP address when connecting to the internet. It protects your data by making it anonymous.
Like any other product or service, many quality VPNs are available out there in the market today, both free and premium. But ExpressVPN is our number one recommendation as it’s a high-speed and reliable provider that can protect you from cyber vulnerabilities alongside allowing you to enjoy the internet at full.
Be knowledgeable with the websites and apps you use
11. Be careful about what websites or services you use
As we all know, countless websites and services exist on the web today. And not all among them get the attention of the masses. Therefore, it is essential to distinguish what website to trust with your data.
To confirm if a website that you are visiting is safe to use, you should read reviews from trusted portals and look for real user experiences about a particular site. Once your data gets uploaded, there’s a high chance it stays there forever, even if you delete it.
Meaning you should only share your sensitive data with trusted websites not to end up getting hacked.
12. Be mindful of website and app permissions
Whenever you register for a website or download an application, there is specific permission that you need to allow.
For instance, Twitter personalizes your timeline based on your location, and the mobile Gmail app requires having access to your contacts. Many services need particular permissions to function well, but you must be picky about what permissions you give to the apps or websites.
If you end up permitting a malicious website or app access to your data, it can do many things without you knowing.
13. Don’t click pop-ups
If you visit an unknown website, some pop-ups might have information or deals that are too good to be true. You can usually quickly identify malicious pop-ups by seeing if it’s strange or contains exaggerated phrases or flashy animations.
Yes, not all pop-ups are evil. But if you click on any malicious pop-up, it will redirect you to a harmful website, which mostly opens many other tabs or installs malicious software on your device.
The best ways to prevent being victims of pop-up scams are visiting reputable sites, totally ignoring pop-ups, and using antivirus software with ad-blocking capabilities.
14. Only visit and use secure and trusted websites
Thanks to the SSL certificate introduction, identifying a secure website is easier than ever. You only need to look at a ‘padlock’ icon in the address bar. In addition, the website address you are visiting needs to have ‘HTTPS’ instead of just ‘HTTP.’ The extra S means the website is secure, and there is less chance for your data to be at risk.
Take precautions for your emails
15. Make your work email hard to guess
If you want to know how to prevent hacking in business, start by not using your full name as your email address. Your real name might be already public, so using it is like making your password the only protection of your account.
Instead, use other terms or phrases that still make sense to you for your email.
16. Use multiple email accounts
It is good to use a different email for each of your accounts or at least a particular group of accounts. For instance, you can use a dedicated email for your bank or financial account and another for your communication or social media accounts.
By doing so, you’re narrowing down an attack towards only one of your accounts.
Also, having multiple emails help you spot spam or phishing emails easily. For example, let’s say that you received an email from your bank. However, you might notice that you received it on an email you use for social media accounts. With this, you can say that the mail is untrue and that it’s a phishing attempt.
17. Use an email alias
Some email services, such as Microsoft 365 and Gmail, allow you to get Email addresses to use an email alias. An alias is a disguise for your real email address.
The primary email will receive all emails sent to the alias. Also, you can use as many aliases for just one primary email.
18. Use temporary emails
Using a temporary email is one of the best ways to prevent hacking. However, there are times that you only wanted to try out a website and don’t have a choice but to use your primary email.
Some websites bombard your email with spam, so doing this is not a good practice. Instead, use a temporary email service to register, especially on lesser-known sites.
A free popular option is Temp Mail. It functions like a regular email except that you don’t need to register and fill up your information. A temporary mail is already available once you open it making it even faster to sign up for a website.
19. Be quick to identify harmful emails
You can receive an email or even a direct message in a social network asking for sensitive information such as your login credentials. Usually, these messages contain fake adverts for websites or pretend to be from the customer support team of known services.
This technique is called phishing, where cybercriminals send you an identical link at first glance for a different website to capture your login details.
Carefully check the complete URL of the platform; a single character or phrase will give you an idea if it’s the real website or not. For instance, check if the link starts with ‘HTTPS’ instead of just ‘HTTP,’ or see if the spelling of the company is correct or not. With these precautions taken, you’ll be able to judge whether a link is safe to continue opening or using it.
20. Check your email login locations
Email providers such as Gmail display the devices and places that accessed your email. For example, Google alerts users by email or push notifications on phones, so you’ll be notified when your account is accessed elsewhere.
What you need to do is examine the devices and locations in your account login history regularly. If you notice an unfamiliar device, you should remove it. Once you remove the device, your account will automatically log out from that. In such cases, you must also change your passwords immediately to prevent that same device or intruder from opening your account again.
Secure your social media accounts
21. Activate account login alerts
If you want to fight hackers efficiently, you should protect your social media accounts. Like Gmail, most social media like Facebook has an option for alerts either by email, SMS, or push notifications on your phone whenever your account is signed in. You can activate this from your social account settings easily.
With that feature turned on, you can quickly take actions such as changing your password whenever you notice an unusual login. An alert contains complete information about a specific login. It includes the time, device, and location of the login. That all means you can distinguish alerts derived from logins on your own devices and from those that intruders used.
22. Only accept friend requests from people you’re familiar with
If you want to prevent hacking on social media, then only accept requests from people you know personally. However, there are cases where cybercriminals pretend to be someone else, let’s say your friend. To verify if an account is real, check its friends’ list and see any mutual friends you have.
After you accept, you can ask some questions that the account owner is supposed to know. An example would be to ask about your friendship callsign or other information you both know.
23. Monitor your public profile
If you want to keep your identity safe from hackers, you should be careful about how you build your public profile up.
Some posts might affect your privacy and online security, so be careful what you share on social media. Cybercriminals today are smart enough to manipulate your public information to steal your identity or hack you online.
For instance, be mindful of how much personal information you are publicizing on your Facebook profile. View your profile from another account and decide if your public data isn’t so sensitive. If it is, you need to trim some of that information where you still look sociable but aren’t that much vulnerable.
Strengthen your logins
24. Use strong passwords
One of the most apparent cybersecurity techniques to prevent hacking is to use a strong password. Based on several reports, people used apparent combinations such as ‘123456’ or ‘qwerty’ as their passwords. It is a bad practice since these passwords are among the most hacked passwords for a valid reason. That’s pretty much anyone can guess these combinations and unlock someone else’s account easily.
An easy way to create strong passwords is using easy to recall phrases with replaced characters. For instance, you can swap out some letters of the word ‘character’ into ‘ch4r4ct3rs’ to add more complexity. Also, adding special characters such as ‘@’ and ‘#’ as well as some numbers will improve your password’s strength.
25. Use a password manager
We cannot stress enough the need to use unique passwords for all your accounts online. But, memorizing a lot of usernames and passwords do not look practical, too.
If a user has multiple accounts, reusing passwords across different logins is the easiest way to memorize login details. However, this practice has been discouraged by many security experts since hackers only need to crack a single password to unlock all other accounts.
A password manager will let you generate and use unique passwords with excellent entropy across your accounts. Furthermore, it will save these passwords across your devices, so you only have to remember a single master password. Also, your passwords will be highly encrypted and locked with serious security account measures.
26. Update your passwords
You might think that when you’re already using a strong password, your account will be safe forever. However, that is not entirely true.
What you should do is to change your password a few times a year. Also, don’t reuse the other passwords that you already used before.
In the past, many websites suffered from data breaches that exposed account information from their databases. While some will announce this, others could even keep it a secret or couldn’t even detect the breach ever. So to be safe and sure, update your passwords a few times a year.
27. Never answer security questions with real information
Some websites require a user to choose and answer a security question upon registering for an account. The question you set will appear as a verification method during suspicious logins or when making significant account changes.
A security question might be something like, “where are you born?” In this case, use a different answer that’s still familiar to you instead of using your real birthplace. But, again, there’s a chance that someone could use this information to exploit your identity or data.
28. Activate 2-factor authentication
Using a 2-factor authentication system will add another layer of security to your accounts. Even if someone gains access to your login details, your account will stay locked since an additional security code would be required to log into it. With 2FA on, the website or app sends a code to your mobile number or email to verify your identity at every login attempt.
There are also other forms of 2-factor authentication, which include the usage of an authenticator app that pre-generates offline codes in your mobile phone. Using physical security keys such as thumb drives is also a modern 2FA technique that many turn to.
Be careful with WiFi networks
29. Protect your WiFi network at home
It would help to protect your WiFi with a password so that no one outside your home can connect. Aside from the reason that it might consume more of your internet plan, you should worry about hackers intercepting sensitive data.
Once a hacker gains access to your WiFi, it can capture your network’s traffic, containing your login information and web history.
Also, the default password for the admin account on your router and WiFi is usually pretty weak. Most of the time, both the username and password are just ‘admin.’ Therefore, you need to change it to a stronger one, too.
30. Be wary of public WiFi hotspots
Many shops and cafes offer free WiFi to customers. While this may sound good, there are dangers that you can face when connected to public WiFi. Hackers connected to the same network can intercept your data and web activity.
If you must connect to a public WiFi, avoid accessing personal data and typing your passwords. You should use a VPN and disable network sharing on your computer if you must need to enter passwords as you’d need to log into any of your accounts.
31. Disable network sharing
There is an option on your computer that allows sharing files and information to devices connected to the same network. With it, almost anyone can access the data on your device if you’re not careful. Make sure to turn it off before connecting to a public hotspot.
32. Only connect to a WiFi you know about
As covered above, connecting to WiFis is a dangerous affair. Therefore, if you need to use WiFi as a must, you prioritize connecting only to well-known WiFi networks.
For example, it needs to be the official WiFi of the cafe you’re in and not some unknown open network. Ask an official of the store you’re in because hackers might try to disguise their malicious WiFi as the real one.
There is every possibility that hackers will set up an open WiFi network by themselves out in public to lurk people. Then, if someone connects to it, they could use advanced techniques they are good at to have access to all the user’s data.
Secure online financial accounts
33. Use credit cards for online purchases
Whenever you can, use a credit card to purchase online. If you use your bank account, you’re risking your entire balance. So you should use something such as a credit or prepaid card instead.
By doing so, even if a hacker succeeds in hijacking your browser sessions, he will only have access to the amount you loaded on that card.
34. Never store credit card information on websites
Some websites might ask you to keep your credit card information to make it easier for you to use it the next time. Unfortunately, while it will save you some time from typing your card details again, it’s a bad security practice. That’s because websites keep suffering from attacks and data breaches exposing account data from their databases.
35. Be cautious about online auction and market sites
A product listing deal that looks too good to be true or if you found an auction site suspicious, exit the website or don’t purchase that product. Also, make changing your passwords and checking financial accounts a habit. It is also best to use a dedicated credit card for online purchases so that your bank account never comes at a risk.
Can I secure your accounts and data from hackers 100%
There’s no way to 100% protect yourself from hackers. However, by following all the 35 ways we listed above, you can do everything possible to stay safe in this digital world.
To wrap it up, you should:
- Protect your devices and data
- Be knowledgeable with the websites and apps you use
- Take precautions for your emails
- Secure your social media accounts
- Strengthen your logins
- Be careful with WiFi networks
- Secure online financial accounts
By practicing all these measures, your accounts, devices, and data are safe enough from cybercriminals. At least, you are doing the best you can to prevent hacking.
About the author
Sam Walker is a tech-focused writer who has traveled the world but currently lives in Australia. He has a keen interest in digital privacy and security. Sam loves testing new technology and researching the latest security trends to keep others informed (and ultimately safe) online.