Technology
Avoid iPhone privacy disasters with these 10 smart tips
One of the most popular reasons people choose an iPhone over an Android phone is because of how secure the iOS operating system is. While it is true that Apple does a fantastic job of rolling out constant security updates and iOS is harder to crack than Android, you still need to do some work to make the most out of your iPhone’s security features.
GET SECURITY ALERTS, EXPERT TIPS – SIGN UP FOR KURT’S NEWSLETTER – THE CYBERGUY REPORT HERE
A person holding an iPhone (Kurt “CyberGuy” Knutsson)
10 essential security tips to fortify your iPhone against digital threats
We’ve got 10 smart tips to help you get the most out of your iPhone; let’s dive right in.
Tip #1 – Make sure your iPhone is up to date
When considering keeping any device, especially your iPhone, safe, you should first ensure its software is updated. iOS’s new software updates are routinely rolled out, and they help your phone perform better, fix bugs and make it more secure.
It is important to install the new iOS updates as soon as possible. Hackers are always looking for new ways to exploit iOS, and Apple’s programmers are readily battling them with new updates. Here’s a simple way to install iOS updates:
- Open the Settings app
- Scroll down and tap General
- Tap on Software Update
- If there’s a new update available, tap Update Now
Steps to update your iPhone (Kurt “CyberGuy” Knutsson)
- While in these settings, it’s a great idea to go to the Automatic Updates section and ensure you have iOS Updates and Security Responses & System Files toggled on.
Ways to automatically install iPhone updates (Kurt “CyberGuy” Knutsson)
HOW TO PROTECT YOUR IPHONE & IPAD FROM MALWARE
Tip #2 – Set up 2FA (two-factor authentication)
Two-factor authentication (2FA) is an easy way to ensure that only you can access your iPhone. When you have 2FA active, even if someone manages to get your Apple ID and password, you’ll be notified that they are trying to log in. Here’s how to set up 2FA with your Apple ID:
- Open the Settings app
- Tap on your Apple ID at the top of the screen
- Go to Sign-In & Security
- Tap on Turn On Two-Factor Authentication
- Select Continue
- Follow the instructions presented to set 2FA on your iPhone.
Steps to set up 2FA on your iPhone (Kurt “CyberGuy” Knutsson)
Once 2FA is set up, the next time you try to log in to your Apple ID from another device or on the web, a notification will pop up on your iPhone asking you to give yourself access and providing a six-digit code you’ll need to finish logging in.
HOW TO AVOID PHISHING SCAMS AND PROTECT YOUR IPHONE
Tip #3 – Turn off web access to your iCloud data
iCloud data can be accessed from any web browser and any device. This means that even if you have a Windows laptop, you can still log into your Apple ID and access all of your stored iCloud data. While this may be helpful for some users, overall, it’s pretty dangerous to have your iCloud accessible. Thankfully, it’s easy to turn off. Here’s how:
- Go to the Settings app
- Open your Apple ID at the top of the screen
- Select iCloud
- Scroll down to disable Access iCloud Data on the Web by toggling it off (it will turn from green to gray)
- Then scroll down and tap Don’t Access
Steps to turn off your iCloud data on your iPhone (Kurt “CyberGuy” Knutsson)
If you ever need to access your iCloud data on the web, you can repeat these steps to turn iCloud Data back on.
BEST ACCESSORIES FOR YOUR PHONE
Tip #4 – Lock your private Safari Tabs behind Face ID
Another simple way to secure your personal data is by locking your private browsing behind your iPhone’s Face ID (Touch ID on older iPhone models). This way, only you can access your private browsing activity. To turn this on, you will need iOS 17 or later. Here’s how to turn it on:
- Open the Settings app
- Scroll down and go to Safari (or your browser of choice)
- Scroll down to Privacy & Security, enable Require Face ID to Unlock Private Browsing
Steps to lock your private Safari tabs (Kurt “CyberGuy” Knutsson)
SUBSCRIBE TO KURT’S YOUTUBE CHANNEL FOR QUICK VIDEO TIPS ON HOW TO WORK ALL OF YOUR TECH DEVICES
Tip #5 – Control what you can access from the lock screen
Your iPhone’s Lock Screen has access to several features to make your experience more streamlined. However, this also means anyone could grab your iPhone and look at your Today View to check all of your personal information within your widgets.
To avoid this from happening, your iPhone makes it easy to manage what sort of things you can see directly from the Lock Screen. Here’s how to change what is viewable from the lock screen:
- Open the Settings app
- Scroll down and tap on Face ID & Passcode
- Enter your passcode
- Scroll down until Allow Access When Locked
- From here, disable anything you want to not be viewable from the lock screen
Steps to control what you access from your lock screen on iPhone (Kurt “CyberGuy” Knutsson)
TOP IPHONE CASES OF 2024
Tip #6 – Choose what you can use Face ID for
Apple also makes it easy to change the things Face ID can do for you to keep your data private. By default, you’re able to use Face ID to make purchases with Apple Pay, download apps and autofill passwords. However, this also means that if someone has cracked the Face ID feature, they might be able to do all of this without you even knowing about it. To change this:
- Open the Settings app
- Scroll down and go to Face ID & Passcode
- Enter your passcode
- Under Use Face ID For, at the top, disable all the things you don’t want Face ID used for.
Steps to choose what you can use Face ID for (Kurt “CyberGuy” Knutsson)
Tip #7 – Create a stronger passcode
Many people have transitioned to using Face ID or Touch ID to unlock their iPhones, so it’s understandable if you haven’t given much thought to a passcode you rarely use.
However, the weaker your passcode is, the easier it is to get into your iPhone. The good news is that you can create an even stronger password than just a simple six-digit code. Here’s how to do it:
- Open the Settings app
- Scroll down and go to Face ID & Passcode
- Enter your passcode
- Scroll down and tap on Change Passcode
- Enter your current passcode
- Before entering a new passcode, tap on Passcode Options at the bottom.
- Select how hard you want your passcode to be
- Now, enter your new passcode
This will make your passcode harder to crack, but in case you forget which passcode you used, you’ll have up to 72 hours to use your previous passcode to reset the new one if you forget it.
MORE: I’M A TECH EXPERT STILL IN SHOCK AT THESE WAYS HACKERS STEAL YOUR PASSWORD
Tip #8 – Keep AirDrop turned off
AirDrop is a useful feature that helps you transfer files with people near you in a flash. It’s an especially great feature to swap photos with your friends and family members on vacations. However, if you leave it on all the time, you might get files or photos from people you don’t want.
AirDrop also leaves your iPhone open to hackers who may be able to use it to glean more information about your iPhone. Granted, this is very difficult to do, but you should still keep AirDrop off when you aren’t using it.
Here’s how to disable AirDrop:
- Open your Control Center
- Press and hold the Wi-Fi button in the top left corner.
Screen showing Wi-Fi button (Kurt “CyberGuy” Knutsson)
- Tap on AirDrop
- Select Receiving Off
Screen showing Receiving Off on iPhone (Kurt “CyberGuy” Knutsson)
Tip #9 – Get iCloud+
If you’re willing to invest a small amount each month, Apple’s iCloud+ service is a fantastic option that has seen significant improvements in recent years. The benefits of subscribing to iCloud+ are numerous and well worth considering.
iCloud+ is an enhanced version of the previous iCloud service. In addition to providing you with additional cloud storage space, it also offers a range of security features that can greatly improve your online safety and privacy.
One of these features is iCloud Private Relay. When you use Safari to browse the internet, this feature conceals your IP address and browsing activity from prying eyes. Furthermore, it safeguards your unencrypted internet traffic, providing an extra layer of protection.
Another notable feature is Hide My Email. As the name suggests, this feature allows you to create unique, randomly generated email addresses that you can use when signing up for websites or platforms. The great thing about this feature is that you’ll still receive messages sent to these addresses in your personal inbox, but websites and other individuals won’t have access to your actual email address.
iCloud+ offers many more features, and the best part is that you can access all of these benefits for as little as $0.99 per month. It’s a small price to pay for the added convenience, security and peace of mind that iCloud+ provides.
Tip #10 – Start using a VPN
Virtual private networks, or VPNs, are a great and easy way to keep your iPhone safe at all times, especially if you’re constantly using public Wi-Fi networks.
A VPN automatically hides your IP address, so it’s harder for companies and individuals to track you. Not only that, but you can also select a server from a different country to make it look like you’re somewhere else. See my expert review of the best VPNs for browsing the web privately on your Windows, Mac, Android & iOS devices.
Kurt’s key takeaways
In today’s digital age, ensuring the security of your iPhone is more important than ever. By following these 10 smart tips, you can significantly enhance your device’s security and protect your personal information from potential threats.
Remember to keep your iPhone updated with the latest iOS version, enable two-factor authentication, and be mindful of what you share from your lock screen. Additionally, consider investing in iCloud+ for its advanced security features and using a reputable VPN like ExpressVPN to safeguard your online activities.
By implementing these measures, you’ll be taking proactive steps to maintain the integrity of your iPhone and your sensitive data. While no security system is perfect, these tips will help you stay one step ahead of potential hackers and enjoy a more secure and private iPhone experience.
In what ways do you think iPhone security features could be improved in future updates? Let us know by writing us at Cyberguy.com/Contact.
For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.
Ask Kurt a question or let us know what stories you’d like us to cover.
Follow Kurt on his social channels:
Answers to the most asked CyberGuy questions:
Copyright 2024 CyberGuy.com. All rights reserved.
Microsoft has identified issues upon installing the January 2026 Windows security update. To address these issues, an out-of-band (OOB) update was released today, January 17, 2026.
– Connection and authentication failures in remote connection applications: This issue affects multiple platforms including Windows 11, version 25H2; Windows 10, version 22H2 ESU; and Windows Server 2025. See the bottom of this message for the complete list of affected products.
-Devices with Secure Launch might fail to shut down or hibernate: This issue only affects Windows 11, version 23H2.
NEWYou can now listen to Fox News articles!
Brightspeed, one of the largest fiber broadband providers in the United States, is investigating claims that hackers stole sensitive data tied to more than 1 million customers.
The allegations surfaced when a group calling itself the Crimson Collective posted messages on Telegram warning Brightspeed employees to check their email. The group claims it has access to over 1 million residential customer records and threatened to release sample data if the company does not respond.
At this point, Brightspeed has not confirmed a breach. However, the company says it is actively investigating what it calls a potential cybersecurity event.
DATA BREACH EXPOSES 400,000 BANK CUSTOMERS’ INFO
Fiber networks carry massive amounts of personal data, which makes internet providers attractive targets for extortion groups. (Philip Dulian/picture alliance via Getty Images)
Sign up for my FREE CyberGuy ReportGet my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide — free when you join my CYBERGUY.COM newsletter
What the hackers say they stole
According to Crimson Collective, the stolen data includes a wide range of personally identifiable information. The group claims it has access to:
- Customer names, email addresses and phone numbers
- Home and billing addresses
- User account details linked to session or user IDs
- Payment history and partial payment card information
- Appointment and order records tied to customer accounts
If accurate, that combination of data could create serious identity theft and fraud risks for affected customers.
Brightspeed responds to the allegations
Brightspeed says it takes the situation seriously, even as it continues to verify the claims.
In a statement shared with BleepingComputer, the company said it is rigorously monitoring threats and working to understand what happened. Brightspeed added that it will keep customers, employees and authorities informed as more details become available.
So far, there has been no public notice on Brightspeed’s website or social media channels confirming customer data exposure.
Who Brightspeed is and why this matters
Brightspeed is a U.S. telecommunications and internet service provider founded in 2022 after Apollo Global Management acquired local exchange assets from Lumen Technologies.
Headquartered in Charlotte, North Carolina, the company serves rural and suburban communities across 20 states. It has rapidly expanded its fiber footprint, passing more than 2 million homes and businesses and aiming to reach over 5 million locations.
Because Brightspeed focuses on underserved areas, many customers rely on it as their primary internet provider. That makes any potential breach especially concerning.
A closer look at Crimson Collective
Crimson Collective is not new to high-profile targets. In October, the group breached a GitLab instance tied to Red Hat, stealing hundreds of gigabytes of internal development data.
That incident later rippled outward. In December, Nissan confirmed that personal data for about 21,000 Japanese customers was exposed through the same breach.
More recently, researchers say Crimson Collective has targeted cloud environments, including Amazon Web Services, by abusing exposed credentials and creating rogue access accounts to escalate privileges.
In other words, the group has a track record that makes its claims hard to ignore.
What this could mean for customers
Even though Brightspeed has not confirmed a breach, the claims alone are enough to raise red flags. If customer data was accessed, it could be used for phishing scams, account takeovers or payment fraud.
Cybercriminals often move fast after breaches. That means customers should stay alert even before an official notice appears.
CyberGuy reached out to Brightspeed for comment, and a spokesperson told us,
“We take the security of our networks and protection of our customers’ and employees’ information seriously and are rigorous in securing our networks and monitoring threats. We are currently investigating reports of a cybersecurity event. As we learn more, we will keep our customers, employees, stakeholders and authorities informed.”
JANUARY SCAMS SURGE: WHY FRAUD SPIKES AT THE START OF THE YEAR
How to protect your personal data and online accounts
Even if this Brightspeed investigation does not end up impacting your account, these steps are worth following. Most data breaches lead to the same downstream risks, like phishing scams, account takeovers and identity theft. Building these habits now can help protect you across all your online accounts.
Cybercriminals often use public posts and countdowns to pressure companies into responding quickly. (Sebastian Kahnert/picture alliance via Getty Images)
1) Watch for phishing attempts
Scammers often take advantage of breach headlines to create panic. Be cautious with emails, calls or texts that mention your internet account billing problems or service changes. If a message pushes urgency or pressure, pause before responding.
2) Avoid suspicious links and attachments
Do not click links or open attachments tied to account notices or payment issues. Instead, open a new browser window and go directly to the company’s official website or app. Strong antivirus software adds another layer of protection against malicious downloads.
The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe.
Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android & iOS devices at Cyberguy.com
3) Update your account passwords
Change your Brightspeed account password and review passwords on other important accounts. Use strong, unique passwords that you do not reuse elsewhere. A trusted password manager can generate and store complex passwords, which makes account takeovers much harder.
Next, see if your email has been exposed in past breaches. Our #1 password manager (see Cyberguy.com/Passwords) pick includes a built-in breach scanner that checks whether your email address or passwords have appeared in known leaks. If you discover a match, immediately change any reused passwords and secure those accounts with new, unique credentials.
Check out the best expert-reviewed password managers of 2026 at Cyberguy.com
4) Reduce your data footprint
Personal data spreads quietly across data broker sites. Using a data removal service can help limit how much of your information is publicly available. Less exposed data means fewer opportunities for scammers to target you.
While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you.
Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com
Get a free scan to find out if your personal information is already out on the web: Cyberguy.com
5) Turn on account alerts
Brightspeed lets customers turn on account and billing alerts through the My Brightspeed site or app. You can choose which notifications you receive by email or text. Alerts can help you catch unusual activity early and respond before more damage occurs.
6) Monitor your financial accounts closely
Check bank and credit card statements often. Look for small or unfamiliar charges since criminals sometimes test stolen data with low-dollar transactions before attempting larger fraud.
7) Consider fraud alerts or a credit freeze
If sensitive information may have been exposed, placing a fraud alert or credit freeze can add protection. These steps make it harder for criminals to open new accounts in your name. To learn more about how to do this, go to Cyberguy.com and search “How to freeze your credit.”
You may also want to consider an identity theft protection service that monitors for suspicious activity and sends alerts. Identity Theft companies can monitor personal information like your Social Security number (SSN), phone number, and email address, and alert you if it is being sold on the dark web or being used to open an account. They can also assist you in freezing your bank and credit card accounts to prevent further unauthorized use by criminals.
See my tips and best picks on how to protect yourself from identity theft at Cyberguy.com
When personal and billing information is exposed, the risk extends beyond one company to everyday customers. (Pixelfit/Getty Images)
Kurt’s key takeaways
Brightspeed’s investigation is still unfolding, and the company says it will share updates as it learns more. Until then, the claims highlight how valuable customer data has become and how aggressively extortion groups are targeting infrastructure providers. For customers, caution is the best defense. For companies, transparency and speed will matter if these claims turn out to be real.
Do you feel companies are doing enough to keep your personal data safe? Let us know by writing to us at Cyberguy.com
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide — free when you join my CYBERGUY.COM newsletter
Copyright 2026 CyberGuy.com. All rights reserved.
Setapp Mobile was a bold, breakthrough project that aimed to provide EU iOS users with access to alternative app marketplaces – creating a new app ecosystem where both developers and users could thrive. We are proud of what we have accomplished with it over the past two years and still believe passionately in this vision.
As a result of still-evolving commercial conditions, we have determined that it is not viable to continue development or support for Setapp Mobile within Setapp’s current business model.
While we are disappointed to discontinue Setapp Mobile, we are looking forward to pursuing the development of other innovations. We are excited to focus efforts on various projects that will launch later this year. This includes Eney, a first-of-its-kind AI assistant native to macOS, and new enhancements to Setapp Desktop.
Vermont’s Free Ice Fishing Day is January 31
Virginia Democrats push for earlier spot on 2028 presidential primary calendar – Virginia Scope
History not lost on Tom Izzo during Michigan State visit to Washington
Wisconsin utilities expand clean energy as U.S. prepares to exit Paris Climate Agreement
West Virginia Football Transfers Who Are Still Looking for a New Home
Florida High School Football Rankings: Top 25 teams – Oct. 21
Cleary's 21 help Le Moyne down Central Connecticut State 69-64 in OT
How old is Bo Nix? What to know about Oregon quarterback ahead of 2024 NFL Draft
99th annual Pony Swim held in Virginia
Video: ‘It Didn’t Have to Happen This Way:’ U.Va. Faculty Call for Review of Police Response to Protests
Did Hunter S. Thompson Really Kill Himself?
Wife of former American detainee released after more than a year in Venezuelan prison
What is the EU's anti-coercion instrument, and how does it work?
U.S. military troops on standby for possible deployment to Minnesota
Border Patrol commander vows continued tear gas use after Minnesota fedreal judge’s order
-
Montana1 week agoService door of Crans-Montana bar where 40 died in fire was locked from inside, owner says
-
Delaware1 week agoMERR responds to dead humpback whale washed up near Bethany Beach
-
Dallas, TX1 week agoAnti-ICE protest outside Dallas City Hall follows deadly shooting in Minneapolis
-
Virginia1 week agoVirginia Tech gains commitment from ACC transfer QB
-
Montana1 week ago‘It was apocalyptic’, woman tells Crans-Montana memorial service, as bar owner detained
-
Minnesota1 week agoICE arrests in Minnesota surge include numerous convicted child rapists, killers
-
Lifestyle4 days agoJulio Iglesias accused of sexual assault as Spanish prosecutors study the allegations
-
Oklahoma1 week agoMissing 12-year-old Oklahoma boy found safe