Pashupati Kumar Ray: The basics of cyber security

Much like how we wash our hands to stay healthy, practicing good cyber hygiene helps protect against online threats. As we use digital technology for various aspects of our lives, from communication to financial transactions, practicing good cyber hygiene is important. It lets users navigate their digital experience while mitigating potential risks.

SP Pashupati Kumar Ray, 48, has been working in the Nepali Police Cyber Bureau for 27 years. He looks after cybersecurity-related issues and is involved in cybercrime investigations. Babita Shrestha from ApEx talked to Ray about how to deal with and respond to problems in cyber security.

What should we do to secure our devices from cybersecurity threats?

First make sure you regularly update the operating system, antivirus software, and application as it will fix vulnerabilities that could be exploited by hackers. But at the same time, you should be very mindful of the software you use. Be careful about using pirated software because it often lacks proper security features, making it easier for hackers to find a way in. Some free apps we download might also try to take our information, so it’s good to check and control what data they can access. Also when you set a password, make it strong and unique by mixing letters, numbers, and symbols. I would recommend you turn on two-factor authentication to give extra protection which asks you for a second verification besides the password. Be cautious about clicking on links or downloading things, especially if they come from unknown sources in emails or messages, as they might be harmful.

Are public Wi-Fi networks secure?

While using public networks, it’s best not to do important things like accessing or transmitting highly confidential data, such as online banking or sensitive work information. Don’t use public Wi-Fi when you have to put in your username, password, or OTP. It’s risky because someone could easily steal that information. So I would say it’s better not to use public Wi-Fi for anything related to security, privacy, or transactions with sensitive information. Public Wi-Fi networks are okay for simple internet browsing but it’s still good to check if it’s secure.

How can we avoid phishing attempts or any social engineering attacks?

If you’re receiving phishing attempts, then you should look for signs in email like unfamiliar senders, misspellings, or suspicious URLs. Phishing is all about trickery and stealing information, so it is better when you verify details by making a call if something seems off. Nowadays, AI spots emails that might be scams and pre-inform you about them. It’s always a good idea to double-check if someone asks for personal or financial details unexpectedly.

How can we recognize and avoid fake websites and phishing URLs when browsing the internet?

Fake website links can be tricky. Check if the website’s address has misspellings or extra characters. Make sure the website starts with “https://” and has a padlock icon in the address bar. Use browser security features and antivirus software to stay protected. Make it a habit to double-check. It can help you avoid scams and keep your personal information safe when browsing the internet. Sometimes you also need to trust your instincts about making friends online. Don’t talk to people you don’t know, stay away from suspicious links, and be careful about sharing too much. ‘Stop, Think, and Connect’ before clicking or sharing anything online.

Is there a way to prevent unauthorized access?

To keep your online accounts safe, use strong and different passwords for each one of them. If you can, turn on two-factor authentication. Change passwords regularly and avoid using easy-to-guess details like birthdays. Make sure to adjust privacy settings on social media and other accounts. Also, be cautious about what you install on your devices and check what it’s allowed to do before saying ‘yes’. I suggest you get your application from trusted places to avoid downloading malicious software.

What are your thoughts on virtual private networks (VPNs)?

Virtual Private Networks (VPNs) are good for keeping your online stuff safe. But, again, you need to be careful where you get them. For example, when TikTok was banned in Nepal some people downloaded VPNs for free to use it. The VPN itself isn’t bad, but if you download it from the wrong place, like for free, it might bring harmful stuff like spyware or malware software along with it. This can harm your computer and even let hackers in. So, it’s better to be safe and get your VPN from a trusted source, especially if you’re using it to keep your data safe.

 

What resources are available for reporting online harassment or cyberbullying in Nepal?

If someone is bothering or bullying you online, I suggest you save messages or take screenshots to prove what’s going on. Report the problem to the Nepal Police by filing a complaint. You have to explain the situation and show any evidence you have. The police will look into it and take action against the person causing problems. But you should act within 35 days of the incident. Otherwise, the case might get dismissed as per the Electronic Transaction Act. The Nepal Police are here to help so don’t hesitate to contact them if you’re dealing with online harassment.