2. Universal Precautions: Treat All Data as Potentially Infectious

Bob J
Sep 9
1 min read

Paramedics are drilled to use universal precautions—gloves, masks, eye protection—on every patient contact, regardless of how healthy a patient appears. Why? Because you never truly know who might carry an infectious risk. The safest approach is to assume everyone is potentially infectious until proven otherwise.

Translating the Protocol:

In cybersecurity, universal precautions mean treating every digital interaction—especially emails, links, and files—as potentially dangerous. This means never assuming a file or message is safe just because it appears to come from a trusted source.

Practical Example:

You receive an email from your medical director with an attachment labeled “Updated Protocols.” It looks legitimate, but the file type is odd and the wording is slightly unusual. Just as you wouldn’t handle blood without gloves, you shouldn’t open that attachment until verifying its authenticity—call the sender, check for signs of phishing, and report anything suspicious.

Protocol in Action:

- Use strong, unique passwords for all systems.

- Enable multi-factor authentication (MFA) wherever possible.

- Never share login credentials, even with coworkers or supervisors.

- Be cautious with unfamiliar USB drives, emails, or links—even if the sender is someone you know.

Key Takeaway:

Assume every interaction is a potential risk until verified - protection is standard procedure in both infection control and cybersecurity.