Has my mobile security advice changed?

Terence Eden reflects on his mobile security advice from a decade ago, assessing its relevance in today's context. Key points include the importance of skepticism towards messages from trusted contacts, as scams often spread through familiar channels. He emphasizes that simply changing passwords after a breach is insufficient; users should also revoke access to third-party applications. Two-factor authentication (2FA) remains crucial, with a shift from SMS to authenticator apps recommended for enhanced security. Eden advises against downloading apps from unofficial sources, despite some risks associated with official app stores. He notes that while virus checkers were once essential, improved permission models in modern operating systems have reduced their necessity. Password managers are strongly endorsed to combat the use of weak and repeated passwords. Physical security measures, such as using wrist straps to prevent theft, are highlighted as vital, given the high rate of phone theft. Eden also discusses the diminishing need for VPNs due to the rise of HTTPS, suggesting that they can sometimes introduce more risks than benefits. He concludes with additional recommendations, including regular data backups, activating emergency features, and using ad-blockers to enhance security.

- Staying skeptical of messages from trusted contacts is crucial to avoid scams.

- Two-factor authentication is essential, with a preference for authenticator apps over SMS.

- Password managers are recommended to manage complex passwords securely.

- Physical security measures, like wrist straps, can help prevent phone theft.

- Regular data backups and emergency feature activation are important for data protection.