NSA Recommends Simple Weekly Task to Keep iPhone and Android Users Safe from Hackers

The US National Security Agency (NSA) is urging all iPhone and Android users to complete one simple task every week to protect against hackers: switch their phone off and on again.

The Recommendation

The NSA has highlighted this trick to safeguard against ‘zero-click’ hackers. Unlike most cyberattacks that require users to click on a malicious link, zero-click attacks don’t need any interaction from the victim. Hackers exploit security vulnerabilities in software, such as apps, to access the device. This is often done via a text or email sent to the phone, which can infect the app with malicious code and delete itself before the user even knows the attack has happened.

The Rebooting Method

A quick switch off and on, known as the rebooting method, will temporarily delete massive stores of information that run in the background, like apps or the internet browser. The NSA stated that if phones are not shut down, they can be at risk from hackers who could manipulate open web addresses to plant harmful files into gadgets. By shutting down your phone, users are momentarily logged out of banking apps and social media apps, which could stop hackers from accessing any sensitive information.

NSA’s Mobile Device Best Practices

In the US government agency’s Mobile Device Best Practices report, it wrote: “Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features available on those devices, but many of the features provide convenience and capability but sacrifice security.”

Additional Security Tips

Other advice shared in the report includes:

• Only use your own charging cords, and avoid public USB charging stations to prevent your devices from being infected with spyware.
• Avoid using public WiFi networks and regularly update your phone software and apps.
• Use a strong lock screen with a minimum six-digit PIN for added protection. Combine this with the feature that prompts the smartphone to wipe itself after 10 incorrect attempts.
• Avoid opening email attachments or links from unknown sources, as these could install malicious software without your knowledge.

How Zero-Click Hacking Works

• Cybercriminals identify a vulnerability in a mail or messaging app.
• They exploit the vulnerability by sending a carefully crafted message to the target.
• The vulnerability allows the hackers to infect the device remotely through emails that consume extensive memory.
• The hacker’s email, message, or call won’t necessarily remain on the device.
• As a result of the attack, cybercriminals can read, edit, leak, or delete messages.

Source: Kaspersky

Importance of Cybersecurity

The agency also emphasizes the importance of cybersecurity. A report from Action Fraud reveals that more than 22,500 people had their social media or email accounts hacked last year, with victims losing a total of £1.3 million.