Safer Internet Day: Sophos Shares Practical Steps to Protect Your Login Details
February 10 marks Safer Internet Day, a global initiative focused on promoting safer and more responsible digital use. To mark the occasion, Sophos, a global leader in cybersecurity solutions, is urging internet users to take proactive steps to safeguard their login credentials as cyberattacks increasingly target personal identities.
According to the forthcoming Sophos Active Adversary Report, compromised credentials were the leading cause of cyber incidents in 2025, accounting for 42.06% of attacks. This trend highlights how cybercriminals are increasingly relying on sophisticated tools and automation to breach accounts and access sensitive information.
John Shier, Field CISO for Threat Intelligence at Sophos, warns that the threat landscape is evolving rapidly:
“The way attackers are using automation and generative AI to massively increase the speed and volume of their attacks suggests that attacks will become faster and more sophisticated. The best approach to protecting our identities and digital data is to take a proactive stance on defense.”
He adds that attackers are shifting their focus from devices to people, using AI-powered phishing tactics to craft convincing emails, SMS messages, and WhatsApp scams designed to trick users into revealing passwords or financial information.
Three Key Steps to Strengthen Your Online Security
1. Keep All Devices Updated
Regular updates remain one of the most effective ways to prevent attacks. Cybercriminals often scan for devices running outdated software or missing security patches.
This applies to:
-
Computers and laptops
-
Smartphones and tablets
-
Home internet and Wi-Fi routers
In most cases, simply selecting “Check for Updates” or “Update Now” ensures the latest protections are installed.
2. Use a Password Manager
Password management tools, whether built into your device or offered by trusted third parties, help create and store strong, unique passwords for each account. This reduces the risk that a single compromised password could expose multiple services.
3. Enable Phishing-Resistant Multi-Factor Authentication (MFA)
Adding another layer of security beyond passwords significantly reduces the chances of account compromise. Authentication apps that generate time-limited codes are widely available and effective.
Where supported, passkeys offer even stronger protection by using biometric verification such as fingerprints or facial recognition, eliminating the need for traditional passwords.
Shier concludes:
“Criminals will never stop trying to steal from us, so we must remain vigilant. They are constantly improving their techniques, which means we must continue strengthening our defenses to stay safe.”
As cyber threats continue to evolve, adopting these simple but effective practices can dramatically reduce the risk of compromised accounts and help individuals maintain control of their digital identities.
Follow us on Twitter and Facebook for more updates.
