Social media safety
You can find tips and guidance for enhancing your privacy and security on popular social media platforms via our 'Social Media Safety' pages.
Keeping your accounts safe online is crucial for protecting your personal information from unauthorised access. Once someone has access to your online accounts, they could potentially see personal details such as your contact number, home address, photos, videos, and private conversations. Understanding how to secure your accounts can prevent such breaches.
Featured Resource
Our plain language, quick reference guide on staying safe online covers general safety tips and advises on specific platforms like Twitter, Facebook, Instagram, and YouTube. Following the guide will help ensure you are doing everything you can to secure your accounts and stay safe online.
Last Updated30/07/2024
Securing your online presence doesn't require cumbersome procedures every time you browse the internet.
Simple steps like changing passwords, adjusting privacy settings, and understanding how to react if your information is compromised (such as in the event of a hacked social media account) can significantly enhance your online security.
If you believe your accounts have been compromised you can contact Netsafe seven days a week for free, confidential and non-judgmental advice.
Follow these six easy steps to keep your accounts secure.
Start by ensuring your device is not compromised by malware. Malware is harmful software that can damage, disrupt, and take control of a device or steal your personal information.
Use trusted antivirus software(/online-safety-at-home/anti-virus-software), avoid suspicious links, and only download from reputable sources.
There are many ways that you can improve the security of your devices:
Use a pin, password, complex swipe or other option to restrict access to your device should it be lost or stolen. People may still gain access to your device which is why taking preventative steps helps secure your details including photos and contacts.
Most popular devices come with options to help you locate your device, flash up a message on screen to anyone finding it or to activate a loud noise to aid recovery or deter a thief. This may be part of the operating system or available as a stand alone app or bundled with an anti-virus security suite.
Operating systems are upgraded when security holes are made public. The majority of mobile malware is targeted at Android devices and an anti-virus package is another line in your defence.
We encourage people to actively apply operating system updates when they’re made available. Newer versions of device software tend to be more secure as they patch known security vulnerabilities.
Stick with the official marketplaces to avoid installing malicious software and be cautious about what permissions are requested during the installation process. Does that free game really need to be able to read or send text messages or access your camera?
There may be some benefits to trying out a new operating system for your device but dumping the manufacturer’s system can also expose you to increased risk. Make sure you fully understand what the process involves and any additional security features that may be required to avoid malware threats.
Imagine the downside to losing your device. Try to keep a clean device by routinely removing data that doesn’t need to be kept on your phone just in case you lose it or someone gets access to your collection of risky selfies.
The potential of having your emails, banking transactions or purchases intercepted may seem small, but it does happen which is why we encourage you to stick with trusted data connections or your home Wi-Fi for sensitive activities. Investigate Virtual Private Network (VPN) security apps if you really need to connect to open hotspots.
Spam remains an issue so avoid responding to lottery or competition messages or clicking on links to strange looking websites. Be alert to email phishing messages as they are often more successful at sucking people in due to the small screen size and the sense of urgency they can create. You can forward spam texts to 7726 for the Department of Internal Affairs to investigate.
A loaded device can be a handy babysitting option for children. Remain aware that it doesn’t take much for someone borrowing your phone to accidentally post a rogue tweet or to send an SMS or email so investigate ways to lock down what apps or functions can be used.
Check your bills regularly to see if text messages – especially to premium rate or overseas numbers – are being sent without you noticing. Similarly, high data usage may signify a problem with your phone or an app. If the battery is draining rapidly this could be a sign that other apps or processes are operating in the background so check to see what is running on the device.
If you’re thinking of selling or recycling your device, delete all the data stored on it and all apps before wiping or securely erasing personal information. iPhone owners can use Apple’s factory reset to perform this task, Android and Windows Phone owners can use similar options.
Enhance your online safety with passwords that are both unique and complex, ideally different for each account. A strong password includes a mix of numbers, both upper and lower-case letters, and symbols—making it difficult for others to guess. You can read more about How to Choose a Good Password(/online-safety-at-home/how-to-choose-a-good-password) here.
Ensure that you sign out from all devices after changing your password. Most platforms offer this feature directly in their settings under ‘account’ options.
Add an additional layer of security with 2FA, requiring not just a password but also a code sent to your mobile device during the login process.
What's two-factor authentication (2FA)?
Two-factor authentication, or 2FA, is an extra layer of security for your online accounts. It’s an extra step on top of your password that makes it harder for others to access your accounts. For example, if someone else tries to log in to your account using your password, they’ll also need another piece of information to access it.
Often you’ll have the choice of what this information is. For example, you may be able to have a code sent via text/SMS to your mobile phone. You can also use two-factor authentication on online payments, like online banking, to make sure it’s you making payments.
Why do you need 2FA?
If someone gains access to your accounts, they could have access to your private information – like your emails, phone number, address, photos, videos, payment details, and details of your friends and family.
By using a strong password, it’s more difficult for someone to be able to get into your accounts, but it could happen.
If you’re using a strong password as well as two-factor authentication, it makes it much harder. This is because the person would also need access to something else, like your mobile phone or a code.
How do I get started?
You should set up two-factor authentication on any account you can, including email, social media, online banking and online shopping sites. You can also set it up on your devices, such as smart phone or laptops.
Most online accounts have the option of activating log-in alerts to monitor unauthorized attempts to access your accounts. These alerts prompt you to confirm whether each login attempt is legitimate.
Adjust privacy settings to the highest level and selectively share content based on your audience preferences. We recommend you complete a privacy check up on all your accounts – this can often be found in the ‘managing your privacy’ section of the application or platform, or under ‘settings’ and ‘privacy.’
Stay vigilant and proactive about your online security to ensure a safer digital experience.
Regularly performing privacy check-ups and tightening your security settings can shield your personal information from unwanted access.
We've gathered direct links to update your privacy settings on some of the most popular apps:
Experiencing a security breach, often referred to as “hacked” can feel isolating, but rest assured, you're not alone. Whether it's due to device compromise or a stolen password, breaches can happen. We're here to help.
For concerns about compromised or misused personal information, iDCare(https://www.idcare.org/) offers free support and advice for reducing identity theft harm.
The Department of Internal Affairs offers an Identity Theft Checklist.(https://www.dia.govt.nz/diawebsite.nsf/Files/EOI/%24file/identity_theft_checklist_pdf-a.pdf) to guide you through recovery.
Take control by re-securing your device and accounts today. Regularly reviewing and enhancing your privacy settings can significantly boost your account's security.
An impersonation account is an account that is made to look like you, by using your personal information and photos, but is controlled by another person.
Learn more about impersonation scams(/scams/impersonation-scams) and what to do if someone impersonates your account online.
If you notice an impersonation account mimicking your identity, report it directly on the platform as soon as possible. Use the platform-specific 'report issue' tools which you can typically find by searching for [platform name] ‘hacked’.
You can find tips and guidance for enhancing your privacy and security on popular social media platforms via our 'Social Media Safety' pages.
If you believe your online account or identity has been compromised contact Netsafe, and let your friends and family know.
If you're experiencing online abuse, fallen victim to a scam, or need some advice about another online issue, Netsafe is here to support you.
Our helpline is free, confidential and non-judgmental - providing expert advice and assistance seven days a week.
Scam alert
Netsafe receives reports from people who have had their social media profiles cloned by scammers who are using the new ‘cloned’ profile to impersonate the owner of the original profile. Often they claim the person is now selling access to explicit content through a subscription service like Only Fans.
Read on to find out how this scam works and what you should do if you are targeted by this scam.