NEED TO KNOW NEWSLETTER        OCTOBER 2025

Secure every click!

“Secure every click!” isn’t just a catchy phrase, it’s your first defense against online threat actors. This month, we’re breaking down how to click smarter, not harder, with practical ways to stay safe online.

Because when Click Happens, it’s better to be safe than sorry.

Two Clicks are better than one.

Multi-Factor Authentication (MFA)

Every time there are two or more authentication steps, it makes it harder for threat actors to breach an account.

MFA typically involves:

1. Something you have (Email or phone)
2. Something you know (a strong passphrase)
3. Something you are (a fingerprint)

Most apps, devices, and services have the option to enable multi-factor authentication, and it’s always smart to use it.

Click undercover.

Virtual Private Network (VPN)

Every time you click a link, open an email, or log into a site, especially on public Wi-Fi, you’re sending data across the internet that could be intercepted. A Virtual Private Network (VPN) acts like a secure tunnel, encrypting your traffic and hiding your IP address from prying eyes. 

1. Always connect work devices to the company VPN when working outside the office.

2. Avoid logging into your work accounts on public networks without it.

Click “Remind Me Later”? That’s Risky.

Software Updates

Software updates may feel annoying, but they fix security flaws that threat actors love to exploit.

Those “Update Now” pop-ups? They’re not just suggestions – they’re shields.

1. Enable auto updates on all devices.

2. Restart your computer weekly to ensure updates are applied.

Don’t get hooked. Phishy clicks cost.

Phishing emails are designed to trick you into clicking on malicious links or attachments.

1. Hover before you click – check the real URL.
2. Beware of urgent language, misspellings, and unfamiliar senders.
3. Report suspicious emails.
4. Educate others by sharing this article with your colleagues.

Stay click-conscious on the web.

Safe Web Browsing

Online browsing isn’t always safe – especially when pop-ups, fake ads, and shady links come into play. One bad click can lead to malware, spyware, or worse.

1. Stick to verified, secure sites – look for https:// in the URL.
2. Don’t click on pop-up ads promising “free downloads” or “speed boosters.”
3. Use your browser’s privacy settings and ad blockers.

Use your bookmarks

Saving your most used websites to your bookmarks is both convenient and safe.

When you use your saved bookmarks to head to a website, you ensure that you are going to a safe page and not stumbling onto a fake one.

For example: You receive an email that says you have been sent a shared file from a coworker using Google Drive or SharePoint. There’s a link. But instead of clicking on the link in the email, you use the bookmarked link to where you store data and log in that way. 

Hackers send links that look real. When you put your username and password into a realistic login page, they can collect your credentials. Using your bookmarked pages can help you avoid the trap!

Final clicks!

1. Enable Multi-Factor Authentication: two clicks are better than one.
2. Hover before you click: check URL legitimacy.
3. Use VPN on public Wi-Fi.
4. Keep software up to date.
5. Report Suspicious clicks: If you clicked on something sketchy, report it immediately.
6. Educate others: share this article with your team.