Dr Arash Shaghaghi's interview with The Guardian about PM's recent cybersecurity advice
Turn your phone off every night for five minutes, Australian PM tells residents.
Turn your phone off every night for five minutes, Australian PM tells residents.
Australia鈥檚 prime minister,听, has told residents they should turn their smartphones off and on again once a day as a cybersecurity measure 鈥 and tech experts agree.
Albanese said the country needed to be proactive to thwart cyber risks, as he announced the appointment of Australia鈥檚 inaugural national cybersecurity coordinator.
鈥淲e need to mobilise the private sector, we need to mobilise, as well, consumers,鈥 the prime minister said on Friday.
鈥淲e all have a responsibility. Simple things, turn your phone off every night for five minutes. For people watching this, do that every 24 hours, do it while you鈥檙e brushing your teeth or whatever you鈥檙e doing.鈥
The Australian government鈥檚 advice is not new. In 2020, the United State鈥檚 National Security Agency issued best-practice guidelines for mobile device security, which included rebooting smartphones once a week to prevent hacking.
While a reboot every day may seem a basic measure, experts believe it can help, in some instances.
Dr Priyadarsi Nanda is a senior lecturer at the University of Technology Sydney who specialises in cybersecurity development.
He said rebooting a phone regularly could minimise risk because it forcibly closes any applications and processes running in the background that could maliciously be monitoring users or collecting data.
Nanda said many users don鈥檛 realise their apps are often running in the background.
鈥溾嬧婫iven how much we use smartphones in our lives, we know of cases where people haven鈥檛 turned their phones off in an entire year,鈥 Nanda said, noting people who rely on their phone鈥檚 alarm clock, for example, may need it on 24 hours a day.
Nanda said some of the benefits of rebooting a phone could be achieved by regularly closing apps that might be running in the background. But there could be other malicious processes running on a compromised device that will only be stopped by turning the phone off.
鈥淚f there鈥檚 a process running from the adversarial side, turning off the phone breaks the chain, even if it鈥檚 only for the time the phone is off, it certainly frustrates the potential hacker.
鈥淚t may not fully protect you, but [rebooting] can make things more difficult鈥 for hackers, Nanda said.
Experts, while backing the advice of a regular reboot, have听听targeting a specific individual 鈥 especially in light of the proliferation of sophisticated technologies used to hack world leaders revealed in recent years.
Dr Arash Shaghaghi, a senior lecturer in cybersecurity at the University of New South Wales, said daily rebooting was a good first step to 鈥渆ncourage users to adopt good cyberhygiene鈥 because disconnecting can minimise certain risks.
However, Shaghaghi warned against a false sense of security.
鈥淚f your password is stolen and you disconnect your phone, you are not protected, and your account is still at risk. If attackers target a device, a temporary disconnect may be only an inconvenience for attackers,鈥 he said.
Some components of phones can remain active even if turned off.
Shaghaghi said that with so-called zero click exploits 鈥 sophisticated attacks that don鈥檛 require an action from a user to give an adversary access 鈥 rebooting a smartphone 鈥渕ay challenge the attackers as they may need to find alternative means to exploit the device once powered back on鈥.
鈥淩ebooting your device regularly helps when your device is not compromised with persistent malware, as can turning on airplane mode.鈥
Shaghaghi said smartphones can compromise privacy via apps that maliciously track location and listen to conversations. Being cautious of the applications users install and the permissions they grant is another important cybersafety step, he said.
听
Excerpt from article by Elias Visontay from听The Guardian, read the full article听.