Fraudsters are now using artificial intelligence to create deceptively real messages, calls, and even videos. They use this to trick their victims into transferring money or revealing personal information. Voices are faked, video calls appear believable, and the messages sound like they're from real friends or relatives. Falling into such a trap can have serious consequences. It's possible that loans will be taken out in your name or your accounts will be looted. The good news is: you can protect yourself. The more you know about the fraudsters' methods and the better you protect your accounts, the lower your risk of becoming a victim.
Online security doesn't just affect you after something has happened. Identity theft, phishing, account fraud – these are all real threats that can affect you every day. Criminals' tools are improving, but so are your options for protecting yourself. In this article, you'll learn the nine things you should do to significantly reduce your risk.
Use a password manager
Strong, unique passwords are the first step toward greater security. But no one can remember dozens of them. That's why a password manager is essential. It creates secure passwords and saves them automatically. On Apple devices, you can use the built-in Passwords app, but other managers also serve the purpose. Each time you log in, the password manager creates a strong password and saves it encrypted. You only have to remember the master password—everything else is done for you.
Replace old passwords
If you've been online for a while, you're probably still using passwords that are too weak or have been reused. This is a security risk. Attackers can hack a poorly secured website, steal your login details, and then automatically try them on other sites. This way, they gain access to additional accounts—especially if you've used the same password multiple times. You should therefore review all old passwords and replace them with new ones—especially for sensitive accounts like online banking, Apple, Amazon, or Google accounts. It's best to use a password manager for this right away. To identify hacked accounts, you can enter your email address at haveibeenpwned.com . There you'll find out if your data has already been exposed in a data breach.
Use passkeys if possible
Passkeys are the modern alternative to passwords. You no longer have to enter a password when logging in. Instead, your identity is verified via your device, for example, with Face ID or Touch ID.
- The advantage: The system doesn't transmit a password to the website, so there's nothing that can be hacked. If a service supports passkeys, you should use them. Logging in is faster, easier, and significantly more secure than traditional passwords.
Enable two-factor authentication (2FA)
With two-factor authentication, you need an additional code in addition to your password to log in. This makes an account significantly more difficult to attack. Many services now offer this option.
- Important: Avoid 2FA via SMS. This method is insecure because it's vulnerable to SIM swapping—a trick that allows attackers to steal your mobile number. Instead, use an authenticator app like Google Authenticator or the feature built into Apple's Passwords app. There, you'll receive a temporary six-digit code every time you log in, which is only visible on your device.
Check your last login details regularly
Many banking and online services show you when you last successfully logged in. This isn't just a nice touch; it's a genuine security feature. If you see logins there that you don't recognize, it's a clear warning sign. Make it a habit to quickly check this information every time you log in. If in doubt, you can react immediately, change your password, and contact support.
Use a VPN in public Wi-Fi
Public Wi-Fi hotspots, such as those found in cafes or train stations, are convenient, but also risky. You may unknowingly connect to a compromised network. The provider can then intercept your traffic—especially if the connection isn't encrypted. Most websites today use HTTPS, which reduces the risk. However, it's still safer to use a VPN. It encrypts your entire connection, regardless of the network. Make sure you choose a reputable VPN provider that doesn't store connection logs and is regularly audited by third parties.
Do not share personal information with AI chatbots
Many AI chatbots learn from what users write to them. The data is stored and may be reused later for training purposes. What you write in a chat could therefore indirectly reappear. Therefore, don't share any personal information—no names, no addresses, no account details. If you're unsure whether something is safe, it's best to leave it out.
Delete your data from data brokers
There are many so-called data brokers that collect, store, sell, and share your personal information. This includes, among other things, your email address, telephone number, home address, or even your purchasing and search habits. The result: You receive spam, are harassed by advertising calls, or become the target of fraudsters. You have the right to have your data deleted from these providers. In most cases, this can be done directly via their website, but it is often time-consuming and confusing. Alternatively, you can use automated processes or tools that reduce this effort for you. The general rule is: the less personal data in circulation, the better your protection against fraud.
Check every money request carefully
If someone asks you for money—whether by email, messenger, or phone—always be skeptical. Even if the message appears to be from a friend, family member, or colleague, it could be a scam. Be especially cautious if the sender claims to be in distress. Always contact the person using another method you know. If you get an email, call. If you get a phone call, write a message. Some families even agree on code words to use in real emergencies. This can help distinguish genuine help from fraud.
- Also, look out for typical warning signs: a supposedly changed bank account, a request for gift cards, or a request to send money via Western Union or similar. These are all common scams.
Digital security is your ongoing task
Online fraud is no longer an exception; it's a daily occurrence. But there's a lot you can do to protect yourself. Password managers, passkeys, 2FA, VPNs, data minimization, and a vigilant eye for requests for money make a big difference. Online security isn't a one-time project; it's something you should regularly review and adjust. With the measures described here, you're on the right path to effectively protecting yourself, your data, and your money. Looking for accessories? Our Amazon Storefront is your destination for high-quality products, including HomeKit! (Image: Shutterstock / A9 STUDIO)
- Forgotten your Apple account password? Here's how to get access
- Why an iPhone? These advantages are convincing in the long term
- Secure your iPhone properly: 5 important functions at a glance
- Encrypt iCloud backups: How to do it step by step
- Protect your Apple account: Set up a recovery contact
- Change Apple ID email address: Simple instructions
- Share passwords securely: iCloud Groups on the iPhone
- Apple Passwords: Easily import your login data
