Pause before tapping "Agree." Only grant permissions essential for the app to work—this small step protects your privacy.

Red Flags

• Requests unrelated to app function
• Multiple unexplained permissions
• Vague data-use statements
• Pressure to agree quickly
• Low-rated or suspicious apps

Safe Signs

• Permissions match app functionality
• Can deny some permissions
• Clear data-use explanations
• Requests made individually
• Trusted developers or official stores

"Your Data, Your Rules"

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Never bypass security steps just to “save time.” Security procedures are designed to protect sensitive information, systems, and people from preventable threats. Even a small shortcut can create weak points that attackers are quick to take advantage of. Following every required step helps maintain strong defenses and reduces the risk of costly incidents. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

If you receive a message asking for urgent money from someone claiming to be a friend, family member, or colleague, pause before taking any action. Scammers often create panic and pressure you to act quickly, so always verify the request by contacting the person through a different method, such as calling their usual phone number or speaking to them directly. Never send money, gift cards, or transfer funds until you are completely certain the request is genuine.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Assume bad actors are always trying to find weaknesses in your systems and accounts. Cybercriminals continuously look for weak passwords, outdated software, and unsuspecting users. Staying alert to unusual activity and potential scams can help you avoid becoming a target. Awareness and proactive habits are your strongest defense against security threats. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Practice a Zero-Trust mindset by never automatically trusting people, emails, phone calls, messages, or links—even if they appear to come from legitimate organizations like your bank or workplace. Always verify requests independently by contacting the person or company through an official website or trusted phone number, rather than responding directly to the original message. By pausing to confirm before clicking, sharing information, or making payments, you significantly reduce your risk of falling victim to phishing, scams, or identity theft.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

Cybersecurity firm ThreatFabric has identified a new Android malware strain called Massiv that enables criminals to take over victims’ phones and steal money from their bank accounts.

The malware spreads through fake IPTV apps distributed via SMS phishing. Posing as an “important update,” it tricks users into granting permissions that give attackers full control of the device. Findings shared with The Hacker News warn that despite limited campaigns so far, the threat to mobile banking users is significant.

Massiv has primarily targeted users in Portugal and Greece. In one campaign, attackers impersonated Portugal’s government services app, gov.pt, stealing phone numbers and PIN codes — in some cases using the data to open bank accounts for fraud or money laundering.

Once installed, Massiv can remotely control the phone, hide activity with a black screen, intercept text messages, capture banking credentials, and install additional malware. Unlike...

Always question anyone who asks for confidential information in public spaces. Sensitive data such as passwords, financial details, or personal identification numbers should never be shared openly. Verify the identity and purpose of the person making the request before providing any information. If you are uncertain, pause the conversation and confirm the request through a trusted and secure communication channel. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Leaving Bluetooth on can expose your device to attacks or tracking. Only enable it for trusted devices.

Dos:
• Turn off when not in use
• Pair with trusted devices only
• Remove old connections
• Keep your device updated
• Use in secure environments

Avoid:
× Leave on all day
× Accept unknown pairing requests
× Use in public carelessly
× Ignore updates or security alerts
× Assume convenience means safety

“Pair Less, Protect More”

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

For better online security, use a password manager like Passbolt to store all your passwords in one encrypted vault. It can generate strong, unique passwords for every account, which protects you from hacking attempts and credential stuffing attacks if one site is breached. You only need to remember one strong master password, making it both safer and easier than reusing simple passwords across multiple websites.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

Cybersecurity starts with awareness, not fear. Stay alert to suspicious emails, unexpected links, and requests for personal information—especially those claiming urgency. Use strong, unique passwords and enable multi-factor authentication whenever possible to add an extra layer of protection. By building smart digital habits and staying informed, you reduce risks and keep your information secure with confidence. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.