Be careful to download apps from Google Play Store and other trusted sources.
A lot of Android users are facing this issue. Some apps on your Android device will send you annoying ads and even spy on your personal information. Spyware can make you lose important data and expose personal information.
It’s easy to protect yourself from spyware; be careful about downloading apps from Google Play Store or other trusted sources. You should check the app permissions, reviews, ratings, and more info before downloading it to your Android phone or tablet.
Keep your Android device updated.
Don’t let your Android device get outdated.
A piece of good news is that Google releases security patches for its Android devices every month. You need to download the latest update when it is available, as it will provide you with the necessary patch to protect your device from a zero-day attack. In addition, if any bug has been discovered on your device, the patch can fix it so that no one can take advantage of your system weakness.
You can set the update option in Settings > Advanced > System Update. Under “Auto-update system,” toggle on “Automatically check for system updates” and update if required & once updated, please click OK.
Do not accept calls from unknown numbers.
- Do not answer calls from unknown numbers. The police or the bank would never contact you for personal information over the phone, and if you’re being scammed by a criminal, it’s very likely that they will pretend to be someone else.
- If your device is lost or stolen and there’s a chance that you’ve already been hacked through it, do not give out any personal information over the phone. The scammer may have already obtained this information from your device and is calling to try to get more.
- Do not click any links in emails (including those claiming to be about banks) or texts. By clicking on these links, you could be exposing yourself to malware.
Use antivirus and VPN apps for protection.
- Use antivirus and VPN apps for protection. An antivirus app provides a layer of security against malicious attacks on your phone, while a VPN encrypts your data to protect you from hackers. A VPN can also keep safe your identity, anonymity, and privacy.
Use strong passwords for all accounts.
It’s easy to let the world have access to your personal data. As a result, there are all kinds of malicious software (malware) that can allow a hacker to gain control of your phone or computer remotely. If a hacker has physical access to your device and is able to obtain it, they can install malware on it without you knowing by placing the device in their pocket and walking away as you’re making dinner.
If you don’t want this to happen, make sure that you use strong passwords for all accounts, including email and social media accounts. Take special care with things like bank accounts and password management programs because these are the primary targets for hackers nowadays. Even if you think that no one can figure out those passwords, hackers can find lots of other ways with which they can steal your information. Don’t take risks just because of laziness or lack of time.
Always use two-factor authentication.
The best way to protect any online account, including the accounts on your Android device, is to enable two-factor authentication (2FA). With 2FA enabled, even if someone gets access to your password and email, they won’t be able to log in to your account.
2FA is like a key that you need along with your password and username (also known as 2-step verification). Almost all major websites support this feature, and you should use it wherever possible.
A common type of 2FA involves sending a code via text or some other method. For example, when you login into an account that has 2FA enabled, you will receive an SMS with a code. You can then enter this code and login into your account. The attacker will not be able to do so because he won’t have physical access to your phone to receive the text message.
Enable the remote lock or wipe feature of the device.
In case your device gets lost or stolen, it is important that the data can be remotely wiped from the device. In Android, this feature is officially called “Factory Reset Protection” and has been part of the Android Security Package for years (since 4.4 KitKat). The Factory Reset Protection ensures that an attacker cannot simply wipe your phone to remove any lock screen you have set up. It will also allows you to remotely lock or wipe your device as soon as possible. There are many ways to do this, but one of the most popular methods is using Google’s Find My Device feature:
- Search for “Find My Device” in Google Play Store on a browser and install the application to your device.
- Tap Activate at the bottom of the screen.
- Tap Agree when prompted.
- To locate a lost device, visit https://www.google.com/android/find.
- Sign in with your Gmail account and scroll down below your list of devices to see two buttons under ‘Security’ – ‘Lock’ and ‘Erase’.
Disable unwanted or non-required permissions for the installed apps.
You might have noticed that an app would ask for permission to access your location, dial numbers on your behalf, and other such device functions. You also want to know why it is asking for such permissions. It is a good practice to disable the unwanted or non-required permissions for the installed apps.
Be aware of any action which can put your android device at risk.
- Downloading apps from untrusted sources: By default, you are allowed to download and install an app only from Google Play Store on an Android device. Since Android is open-source, anyone can make an application and upload it to another market store. If you download an app from such a store, the chances of it containing malicious code are higher. You must read the description of the application and user reviews before downloading it. Also, please do not click on links in emails or suspicious websites, as they might trick you into installing a malicious application without your knowledge.
- Using unsecured network: When connected to public wi-fi, ensure that your traffic is secured by connecting via HTTPS protocol wherever possible; even better if SSL VPN is used for remote access to office network resources. Keep in mind that unencrypted traffic will be visible to anyone else who is connected to the same network as you are.