網絡安全習慣

In a similar fashion to everyone getting the flu now and again, the risk of catching a cyberattack is a common one. ?Both a sophisticated social engineering attack or grammatically-lacking email phishing scam can cause real damage. No one who communicates over the Internet is immune.

就像每個人都一次又一次地感冒一樣，遭受網絡攻擊的風險是很常見的。 復雜的社交工程攻擊或缺乏語法的電子郵件網絡釣魚詐騙都可能造成真正的損失。 沒有人可以通過互聯網進行交流。

Like proper hand washing and getting a flu shot, good habits can lower your risk of inadvertently allowing cybergerms to spread. Since the new year is an inspiring time for beginning new habits, I offer a few suggestions for ways to help protect yourself and those around you.

像正確洗手和注射流感疫苗一樣，良好的生活習慣可以降低您無意間傳播網絡細菌的風險。 由于新的一年是開始養成新習慣的鼓舞人心的時刻，因此我為保護自己和周圍人的方式提供了一些建議。

1.進行跟進 (1. Get a follow-up)

Recognizing a delivery method for cyberattack is getting more difficult. Messages with malicious links do not always come from strangers. They may appear to be routine communications, or seem to originate from someone you know or work with. Attacks use subtle but deeply-ingrained cognitive biases to override your common sense. Your natural response ensures you click.

識別網絡攻擊的交付方法變得越來越困難。 帶有惡意鏈接的消息并不總是來自陌生人。 它們似乎是例行交流，或者似乎是由您認識或與之合作的人發起的。 攻擊使用微妙但根深蒂固的認知偏見來超越您的常識。 您的自然React可確保您單擊。

Thankfully, there’s a simple low-tech habit you can use to deter these attacks: before you act, follow-up.

值得慶幸的是，您可以使用一種簡單的低技術習慣來阻止這些攻擊：在采取行動之前，請采取后續行動。

You may get an email from a friend that needs help, or from your boss who’s about to get on a plane. It could be as enticing and mysterious as a direct message from an acquaintance who sends a link asking, “Lol. Is this you?” It takes presence of mind to override the panic these attacks prey on, but the deterrent itself is quick and straightforward. Send a text message, pick up the phone and call, or walk down the hall and ask, “Did you send me this?”

您可能會收到需要幫助的朋友的電子郵件，也可能會收到即將上飛機的老板的電子郵件。 就像一個熟人發送一個鏈接詢問“大聲笑。 這是你嗎？” 要想盡辦法消除這些攻擊所引起的恐慌，就需要思想，但是威懾本身是快速而直接的。 發送短信，接電話和打電話，或者走到大廳問：“您發給我這個嗎？”

If the message is genuine, there’s no harm in a few extra minutes to double check. If it’s not, you’ll immediately alert the originating party that they may be compromised, and you may have deterred a cyberattack!

如果消息是真實的，則再過幾分鐘再仔細檢查也不會有任何危害。 如果不是這樣，您將立即向發起方發出警報，告知他們可能遭到入侵，并且您可能阻止了網絡攻擊！

2.使用并鼓勵其他人使用端到端加密消息 (2. Use, and encourage others to use, end-to-end encrypted messaging)

When individuals in a neighborhood get the flu shot, others in that neighborhood are safer for it. Encryption is similarly beneficial. Encourage your friends, coworkers, and Aunt Matilda to switch to an app like Signal. By doing so, you’ll reduce everyone’s exposure to more exploitable messaging systems.

當附近的人感染了流感疫苗后，附近的其他人就更安全了。 加密同樣有好處。 鼓勵您的朋友，同事和Matilda姨媽切換到Signal等應用程序。 這樣，您將減少每個人對更多可利用的消息傳遞系統的了解。

This doesn’t mean that you must stop using other methods of communication entirely. Instead, think of it ?as a hierarchy. Use Signal for important messages that should be trusted, like requests for money or making travel arrangements. Use all other methods of messaging, like SMS or social sites, only for “unimportant” communications. Now, if requests or links that seem ?important come to you through your unimportant methods, you’ll be all the more likely to second-guess them.

這并不意味著您必須完全停止使用其他通信方法。 而是將其視為層次結構。 使用Signal表示應受信任的重要消息，例如要求付款或安排旅行。 僅對“無關緊要”的通信使用所有其他消息傳遞方法，例如SMS或社交網站。 現在，如果通過不重要的方法向您提出了看起來很重要的請求或鏈接，您將更有可能進行第二次猜測。

3.請勿將臟的USB插頭插入*** (3. Don’t put that dirty USB plug into your ***)

You wouldn’t brush your teeth with a toothbrush you found on the sidewalk. Why would you plug in a USB device if you don’t know where it’s been?! While we might ascribe putting a random found USB drive in your computer to a clever exploitation of natural human curiosity, we’re no sooner likely to suspect using a public phone-charging station or a USB cable we bought ourselves. Even seemingly-innocuous USB peripherals or rechargeable devices can be a risk.

您不會用在人行道上發現的牙刷刷牙。 如果不知道它去哪里了，為什么還要插入USB設備？ 雖然我們可能會將隨機找到的USB驅動器歸因于對人類自然好奇的巧妙利用，但我們再也不會懷疑會使用公用電話充電站或我們自己購買的USB電纜 。 甚至看似無害的USB 外設或可充電設備也可能有風險。

Unlike email and some file-sharing services that scan and filter files before they reach your computer, plugging in via USB is as direct and unprotected as connection gets. Once this connection is made, the user doesn’t need to do anything else for a whole host of bad things to happen. Through USB connections, problems like malware and ransomware can easily infect your computer or phone.

與電子郵件和一些文件共享服務在文件到達計算機之前對其進行掃描和過濾的電子郵件和其他文件共享服務不同，通過USB插入與連接一樣直接且不受保護 。 建立此連接后，用戶無需執行任何其他操作即可發生大量不良事件。 通過USB連接，惡意軟件和勒索軟件等問題很容易感染您的計算機或電話。

There’s no need to swear off the convenience of USB connectivity, or to avoid these devices altogether. Instead of engaging in questionable USB behavior, don’t cheap out on USB ?devices and cables. If it’s going to get plugged into your computer, ensure you’re being extra cautious. Buy it from the manufacturer (like the Apple Store) or from a reputable company or reseller with supply chain control. When juicing up USB-rechargeables, don’t plug them into your computer. Use a wall charger with a USB port instead.

無需宣誓USB連接的便利性，也不必完全避免使用這些設備。 不要搞亂USB行為，不要便宜USB設備和電纜。 如果要插入計算機，請確保格外小心。 從制造商(如Apple Store)或有信譽的公司或具有供應鏈控制權的經銷商處購買。 充入USB充電電池時，請勿將其插入計算機。 請使用帶有USB端口的壁式充電器 。

養成健康的網絡安全習慣 (Practice healthy cybersecurity habits)

Keeping ?your devices healthy and happy is a matter of practicing good habits. Like battling the flu, good habits can help protect yourself and those around you. Incorporate some conscientious cybersecurity practices in your new year resolutions - or start them right away.

保持設備健康快樂是練習良好習慣的問題。 就像與流感作斗爭一樣，良好的習慣可以幫助保護自己和周圍的人。 將一些認真的網絡安全實踐納入您的新年決議中-或立即開始實施。

Have a safe and happy holiday!

祝您假期愉快！

翻譯自: https://www.freecodecamp.org/news/healthy-habits-for-good-cybersecurity/

網絡安全習慣