Use unique, strong passwords for every account. Consider using a password manager to keep track of them. Change passwords every 90 days and enable multi-factor authentication wherever possible.

Phishing emails often appear urgent and ask for personal info or login credentials. Check the sender’s address, don’t click suspicious links, and report anything unusual to your IT department.

Keep devices updated with the latest security patches. Install antivirus software and avoid downloading software from unknown sources. Lock your device when unattended.

Use secure Wi-Fi networks whenever possible. Avoid public Wi-Fi for sensitive transactions unless you're using a trusted VPN. Always change the default router password at home.