ARS Technica has an interesting article on online security, here, titled "What amateurs can learn from security pros about staying safe online", which references a paper (here) that compares safety practices of security experts with non-experts (the rest of us).
The top five practices of experts: install SW updates, use unique passwords, use two factor authentication, use strong passwords, use a password manager. The top five practices of the "non-experts" use antivirus SW, use strong passwords, change passwords frequently, only visit websites they know, don't share personal information.
This hits home to me because I intentionally avoid installing SW updates, First, because I want a stable operating platform, and second, because over time updated SW demands more system resource, which leads to the need to upgrade sooner. From the paper, though, I can see the value in staying current, at least in critical SW.
The top five practices of experts: install SW updates, use unique passwords, use two factor authentication, use strong passwords, use a password manager. The top five practices of the "non-experts" use antivirus SW, use strong passwords, change passwords frequently, only visit websites they know, don't share personal information.
This hits home to me because I intentionally avoid installing SW updates, First, because I want a stable operating platform, and second, because over time updated SW demands more system resource, which leads to the need to upgrade sooner. From the paper, though, I can see the value in staying current, at least in critical SW.