Santa using a laptop and holding a credit card.

Even Santa wants you to be cyber safe this Christmas, otherwise you might be on the naughty list.

Stay safe in the silly season of shopping this Christmas

Dec 01, 2024

With the holiday season upon us, it’s more important than ever to be alert and secure online. Cybercriminals are more active during this period and it’s up to all of us to play a role in keeping our systems and data safe.  

Stay vigilant and follow these important tips to protect yourself online this festive season.

Beware of phishing emails, SMS or calls

  • Don’t click on links, open attachments or respond to suspicious messages.
  • Only contact the organisation using their publicly listed contact details.
  • If it’s been sent to your work email, report it immediately using the ‘Report Message’ button in Outlook.

Create strong passwords

  • Use unique passwords that are at least 14 characters long.  
  • Use a ‘passphrase’ – for example 4 or more random words together like ‘RedHouseSkyTrain!42’.
  • Don’t use anything that can be linked to you, like your pet or family member’s names.
  • Apply multi-factor authentication (MFA) where possible. This requires an additional action to verify your identity, such as entering a one-time code that is sent to your mobile phone.
  • Test the strength of your password with the Password Strength Tester.

Turn your VPN on if working remotely

  • Using VPN means you’re protected by the NSW Health network and our security systems. It also ensures you get the latest software updates to keep your device safe.

Keep work and personal accounts separate  

  • Never forward work information to your personal email or use your NSW Health email address for anything personal.  
  • Always use different passwords for your work and personal accounts.

Don’t use public wi-fi, charging stations or cables

  • These can be easily tampered with and used by cyber criminals to monitor your device or spread malware.  

How to report suspicious activity at work

  • Report any suspicious emails received to your NSW Health email address by clicking on the ‘Report Message’ button in the Outlook menu.
  • You should also report any suspicious account activity to the State Wide Service Desk through SARA or by calling 1300 28 55 33.  

Mandatory training and more information

Top of page