Don't become a target!

How to protect yourself and your policies from phishing and smishing attacks

Here are a few tips to help protect yourself online:

1. Be wary of messages and emails sent to your devices.

Never share your private information outside of secure channels, especially when it involves providing account numbers, credit card details, personal data, personal identification numbers, or answers to common verification questions like your mother's maiden name.  Cybercriminals may attempt to contact you via phone calls, SMS, or emails, so exercise caution.

If you are unsure about the legitimacy or security of the source, do not respond and avoid further communication.

2. Do not access or download suspicious content.

One common tactic used by cybercriminals is to direct you to malicious websites via links or encourage you to download suspicious files that can make your devices vulnerable to hacking. To protect yourself, always verify the source and avoid downloading content from untrusted senders or opening suspicious attachments especially those with “.exe” at the end of the file name.

3. Never share your One-Time Password (OTP).

An OTP is used as an authentication tool for logging into your online accounts or making an online transaction, so you’re service providers know it’s really you who’s trying to access or transact with your account. The number one rule for OTPs is to never share it with anyone as divulging it to others may give them access to your private information and secure accounts, which could lead to fraud and scam incidents.

4. Use strong, unique passwords.

Avoid using the same password for all your accounts to prevent a breach in one account from compromising others. Also, steer clear of easily guessable information like birthdays and common words as passwords. Instead, create unique, complex passwords for your online accounts by combining upper- and lower-case letters, numbers, and special characters. And, same with OTPs, never share your account passwords with anyone.

5. Protect your personal information.

While we share various details on social media, from vacation photos to recent purchases, be cautious about the personal information you post online, particularly your address, phone numbers, and financial data. Avoid sharing sensitive personal information details.

6. Invest in security software.

To safeguard your private and financial information when you go online, invest in anti-malware and antivirus software. These tools will automatically block suspicious websites and provide an additional layer of security. Alongside this, ensure that your software is regularly updated to prevent breaches and security vulnerabilities.

Remember that Manulife will never ask you to verify or divulge your personal information, such as your policy number, birthday, contact information, etc., via email links or text messages. If you receive an email or text message from an unofficial or unverified source requesting confidential information, DO NOT ENGAGE. Immediately change your Manulife Online password and report the incident to phdataprivacy@manulife.com.