top of page

Secure your business with our Christmas Advent Calendar

As we approach the Christmas period, many of us will be getting ready for the festive holidays. Wrapping up end-of-year tasks before we leave the office, end of term time for schools across the UK, and everyone shopping for gifts both on the high street and online. December is a very busy and hectic month of individuals and businesses alike, and cyber criminals are aware of this. 

 

The Christmas period always sees a spike in cyber attacks with cyber criminals attempting to exploit vulnerabilities to compromise your data, devices, and finances. This year, in collaboration with the North West Cyber Resilience Centre we have created a cyber advent calendar, filled with our top tips and resources to help you remain secure, and ready for the New Year.

1

Tip #1: â€‹Avoid fake website and phishing emails by using legitimate payment services, such as PayPal, to keep your bank details protected. 

6

Tip #6: Avoid the problem with package or missed delivery scams, do not click on links or call numbers contained within the message or email.

11

Tip #11: Don’t advertise when you’re out of the office for your Christmas party and post the office Christmas party as this presents an opportunity for hackers when they know staff are away.

​

2

Tip #2: Ensure a form of multi-factor authentication is turned on across all of your accounts and devices where possible.

7

Tip #7: Be aware of fake eCards/vouchers and if you are suspicious of the sender, do not click on links within the email.

12

Tip #12: Avoid giving hackers the toolkit to attack your website, make sure you have a website firewall installed, update your CMS and control access management.

17

Tip #17: Check for signs of Phishing in emails and messages, check things like poor grammar and spelling and low-quality versions of logos.

3

Tip #3: Avoid phishing emails by not clicking links or downloading attachments embedded within the emails and check the email address of the sender.

8

Tip #8: Install the latest updates and patches to stop criminals from exploiting faults in old systems or software.

13

Tip #13: Download the NCSC's Cyber Security Guide for Small Businesses for an overview of the basic things you can do to secure your accounts.

18

Tip #18: Always back up your data and keep one copy of your data separate to the original home of the data.

4

Tip #4: Avoid paying for fake products by checking the seller is legitimate and purchase directly from the manufacturer/

brand if possible.

9

Tip #9: Multiple passwords can be hard to remember them all. A good way to create strong, memorable passwords is by using 3 random words

14

Tip #14: Avoid connecting to public Wi-Fi networks. as public Wi-Fi can easily be compromised by cybercriminals.

19

Tip #19: Regularly scan your emails and systems for malware. This is something you should do all year round, not just ahead of a business shut down.

5

Tip #5: If donating to a charity this Christmas, check they’re legitimate using the Charities Commission website, and don’t donate through a bank transfer to the charity.

10

Tip #10: Secure your social accounts by making sure you know which staff members have access + which devices are signed into each account.

15

Tip #15: Have a Cyber Incident Plan in place in the event of an attack taking place.

Our free Cyber Incident Plan is ready for you to download and use!

20

Tip #20: Change the passwords that devices come with and regularly check them specifically to detect unchanged default passwords.

21

Tip #21: â€‹Ensure you have a Bring Your Own Device (BYOD) policy to ensure you have an appropriate policy that covers which apps are permitted on devices used for work.​. 

Tip #2: Make sure you have set the anti-virus system to auto scan all new files, including those downloaded from the internet or stored on a USB stick, external hard drive etc.

22

23

Tip #23: Secure your wireless network by changing the router's default name and password, not using the business's name in either.

24

Tip #24: Create your Cyber Action Plan using the Cyber Aware Action Plan to get a free personalised list of actions that will help you improve your cyber security.

25

Tip #25: Join the SECRC! Our FREE membership can help you become more secure online.  secrc.co.uk/membership 

Secure your business this Christmas with our Top Tips Advent Calendar

(Video Version)

Download these cyber and online security resources

list

Heading Home for Christmas Checklist

Remember to tick these tasks off your to-do list before you lock up your office this Christmas!

Cyber incident response template

Cyber Incident Response

Template

Use this guide to help prepare for, respond and recover from cyber incidents.

Ransomware infographic

​Follow these 6 steps to help prevent your business from falling victim to a ransomware attack.

How to prevent Ransomware

attacks

NPCC
TVP Logo
Hampshire Police Logo
SEROCU logo
Surrey Police Logo
Sussex Police Logo
Cyber Essentials Logo
Cyber Essentials Plus Logo

The contents of this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of the South East Cyber Resilience Centre is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others.  Articles on the website cannot by their nature be comprehensive and may not reflect the most recent legislation, practice, or application to your circumstances. The South East Cyber Resilience Centre provides funded services and Cyber Essential Partners if you need specific support. For specific questions please contact us at enquiries@secrc.police.uk.  The South East Cyber Resilience Centre does not accept any responsibility for any loss that may arise from reliance on information or materials published on this website.  It is not responsible for the content of external internet sites that link to this site or which are linked from it.

© 2022 - 2025 The South East Cyber Resilience Centre

Registered in England & Wales, No. 13263448 

TM

  • Facebook for South East Cyber Resilience Centre
  • LinkedIn for South East Cyber Resilience Centre
  • X for the South East Cyber Resilience Centre
  • Youtube for South East Cyber Resilience Centre
  • Instagram for South East Cyber Resilience Centre
  • RSS feed for South East Cyber Resilience Centre
  • Threads
bottom of page