Updates, devices, and backups
Simple cyber hygiene that reduces most technical risk.
The employee keeps work devices updated and does not bypass security settings.
Threat
CERT.LV reports many compromised devices; ENISA highlights fast exploitation of vulnerabilities.
What to know
- Updates close known vulnerabilities. Delays give attackers time.
- A work device is not a shared family computer and is not a place for pirated software.
- A backup matters only if it can be restored and is not available to the same attacker.
- Public Wi-Fi is not automatically dangerous, but sensitive work should use the company’s approved secure connection.
Actions
- Allow operating system and browser updates. Do not postpone them without a reason.
- Do not turn off antivirus, firewall, or disk encryption just to work faster.
- Do not connect unknown USB storage to a work device.
- Report a lost or stolen device even if it is locked.
Manager note
Employee instruction cannot replace technical inventory, patch management, and backup testing.