Every October, organisations around the world mark Cyber Security Awareness Month. This is a timely reminder of the importance of staying alert to the growing number of online threats, particularly in the era of artificial intelligence. At TLScontact, this is more than just a date in the calendar: it is an opportunity for us to reiterate our shared responsibility to safeguard the sensitive data that is entrusted to us every day by visa applicants around the world.
This year’s theme, “Stay Safe Online,” focuses on simple, practical steps that everyone can take to reduce their risk of cyberattacks. As an international organisation processing millions of visa applications each year, we handle significant amounts of personal and sensitive information. Protecting this data is not just a technical requirement: it is central to maintaining the trust of the applicants and government institutions we serve.
At TLScontact, cyber security is what we call “job zero.” It is not the responsibility of the Cyber Security team alone: it is a shared mission across our entire organisation. Every employee plays a role, whether by creating strong passwords, reporting suspicious messages, or keeping their devices updated. Together, we aim to create a culture of security where awareness and prevention are second nature.
As we remind our colleagues in regular training exercises, there are four simple but powerful actions everyone can take to improve their online security:
1. Use strong passwords
Passwords are the first line of defence against unauthorised access. The longer and more complex, the better: they should include lower- and upper-case letters, numbers, and special characters. Most importantly, it is critical to avoid using the same password across different platforms. If one account is compromised, unique passwords ensure that others remain safe.
2. Activate Multi-Factor Authentication (MFA) whenever possible
MFA adds an extra layer of protection by requiring users to verify their identity in more than one way. That could mean entering a One-Time Password (OTP) sent to their mobile phone, using an authenticator app such as Microsoft Authenticator, or confirming their identify through biometrics (fingerprint or facial recognition). This simple additional step has a major impact: according to the US Cybersecurity and Infrastructure Security Agency (CISA), the implementation of MFA makes it 99% less likely that an account will be hacked.
3. Stay Alert to Scams
Cyber criminals are employing increasingly sophisticated methods. Phishing emails, vishing (voicemail scams), and even quishing (fraudulent QR codes) are common attack methods. These messages often create urgency, asking users to click a link or flash a QR code to view a report, confirm a payment, or download an attachment. It is important to take a cautious approach to any unexpected messages, looking out for spelling mistakes or strange greetings, and never sharing login or financial details without first verifying the source.
4. Keep Software Updated
Hackers are constantly searching for vulnerabilities in operating systems, apps, and devices. In order to reduce these risks, our Cyber Security team ensures that all software and systems are kept up to date with the latest security patches. We also ask our employees to support these efforts by following update prompts and allowing devices to complete any required restarts, as well as reporting any unusual behaviour. By working together in this way, we help minimise exposure to known threats and keep our systems secure.
Cyber security: a collective responsibility
Cyber security is not static: threats evolve, and so must we. At TLScontact, the actions outlined above are a critical part of the cyber defences we put in place to secure our systems and protect sensitive applicant data. They are also measures that each and every one of us can implement in our daily lives, to counter growing online threats and help to ensure that we all stay safe online.
Article written by Filip Stojanovic
Head of Cyber Security