We should also be aware of attempts to change the passwords of any internet-accessed dashboard we may use. For example, you may receive an email stating that your account has been compromised and a new password is required. Be wary of messages like this and be sure to check the URL on any link provided. Attacks such as this are known as phishing attacks. The URL may contain code that records what you type. So, for instance, if you were to click on a link with cross-site code, you would be taken to a legitimate website; however, your keystrokes will be recorded.

The following diagram explains this concept graphically:

Be wary of emails that provide links to update your account settings. If you are the owner of the website in question, you may take steps to strip away any cross-site scripting code. At the same time, sending a warning to users to not click on links from emails would be a good idea.

Updates to our devices, especially internet routers, are required from time to time. Be sure to schedule a time for doing this and stay away from using default passwords.