Tag Archive for: safety

12 Days to a Safe Christmas: Day 12 – Holiday Security Tips All Wrapped up Together

Would you like to give the people you care about some peace on earth during this holiday season? Take a few minutes to pass on our 12 privacy tips that will help them protect their identities, social media, shopping and celebrating over the coming weeks. The more people that take the steps we’ve outlined in the 12 Days of Christmas, the safer we all become, collectively.

Have a wonderful holiday season, regardless of which tradition you celebrate. Now sing (and click) along with us one more time.  

On the 12th Day of Christmas, the experts gave to me: 

12 Happy Holidays,

11 Private Emails,

10 Trusted Charities

9 Protected Packages

8 Scam Detectors

7 Fraud Alerts

6 Safe Celebrations

Fiiiiiiiiiiive Facebook Fixes

4 Pay Solutions

3 Stymied Hackers

2 Shopping Tips

And the Keys to Protect My Privacy

 

About Cybersecurity Keynote Speaker John Sileo

John Sileo is the founder and CEO of The Sileo Group, a cybersecurity think tank, in Lakewood, Colorado, and an award-winning author, keynote speaker and expert on technology, cybersecurity, and tech/life balance. He energizes conferences, corporate trainings and main-stage events by making security fun and engaging. His clients include the Pentagon, Schwab, and organizations of all sizes. John got started in cybersecurity when he lost everything, including his $2 million business, to cybercrime. Since then, he has shared his experiences on 60 Minutes, Anderson Cooper, and even while cooking meatballs with Rachel Ray. Contact John directly to see how he can customize his presentations to your audience.

Top Tips to Stop Travel Identity Theft – Sileo on Fox Business

Identity theft increases a great deal when you are on the road. Start protecting yourself with these Top 5 Identity Theft Tips while traveling:
  1. Travel Data Light. If you don’t have to take it with you, increase your safety and leave it at home. This includes checkbooks, debit cards, excess credit cards, Social Security cards and any excess digital gadgets. Simplicity is Security!
  2. Guard Your Devices. Smartphones and tablets are as powerful as laptops. Turn on the auto-lock passcode to keep others out of your information.
  3. Surf Protected. Stop using the free WiFi hotspots in cafes, airports and hotels, as they are constantly sniffed by cyber criminals. Instead, setup tethering between your mobile phone and tablet or laptop so that you are surfing safely.
  4. Privacy Please! Instead of leaving loads of data unprotected in your hotel room (a major source of theft), hang your privacy sign on the door and let house cleaning know that you do not want to be disturbed. Lowering traffic lowers risk.
  5. Mind the Lions at the Watering Hole. Take a minute to watch the video to the left to understand how increasing your awareness in airports, hotels, conferences and restaurants can save you tons of time and money.
Remember, protecting identity on the road isn’t just about you, it’s also about the data you handle in your business every day. It’s one thing to put your own identity at risk, it’s an entirely different affair to jeopardize the security of customer data, employee records or intellectual capital owned by the organization that pays you.
John Sileo is an author and recognized keynote speaker on how identity theft prevention bolsters your bottom line. Learn more about how he can inspire your organization to care about data security, social media privacy, identity management and trust leadership. Contact him directly on 800.258.8076. 

iPad Vampires: 7 Simple Security Settings to Stop Data Suckers

Information is the currency and lifeblood of the modern economy and, unlike the industrial revolution, data doesn’t shut down at dinnertime. As a result, the trend is towards hyper-mobile computing – smartphones and tablets – that connect us to the Internet and a limitless transfusion of information 24-7. It is an addiction that employers encourage because it inevitably means that we are working after hours (scanning emails in bed rather than catching up with our spouse).

In the work we do to change the culture of privacy inside of organizations, we have discovered a dilemma: iPads are not as secure as other forms of computing and are leaking significant amounts of organizational data to corporate spies, data thieves and even competing economies (China, for example, which would dearly love to pirate the recipe for your secret sauce). Do corporations, then, sacrifice security for the sake of efficiency, privacy for the powerful touch screens that offer a jugular of sensitive information?

Of course not! That’d be like driving a race car minus seat belts and air bags.

iPads provide a competitive advantage, and like generations of tools before it (the cotton gin, the PC), individuals and organizations alike will be forced to learn how to operate this equipment safely or risk the bite of intellectual property vampires. Here are 7 Simple Security Settings to help you lock down your iPad much like you would your laptop.

7 Simple Security Settings for Your iPad

  1. Turn On Passcode Lock. Your iPad is just as powerful as your laptop or desktop, so stop treating it like a glorified book. Your iPad is only encrypted when you enable the passcode feature. (Settings/General)
  2. Turn Simple Passcode to Off. Why use only an easy to crack 4-digit passcode when you can implement a full-fledged alphanumeric password? If you can tap out short emails, why not spend 5 seconds on a proper password.
  3. Require Passcode Immediately. It is slightly inconvenient and considerably more secure to have your iPad automatically lock up into passcode mode anytime you leave it alone for a few minutes.
  4. Set Auto Lock to 2 Minutes. Why give the table thief at your favorite café more time to modify your settings to his advantage (to keep it from locking) as he walks out the door with your bank logins, emails and kid pictures.
  5. Turn Erase Data after 10 Tries to On. Even the most sophisticated passcode-cracking software can’t get it done in 10 tries or less. This setting wipes out your data after too many failed attempts. Just make sure your kids don’t accidentally wipe out your iPad (forcing you to restore from your latest iTunes backup).
  6. Use a Password Manager. Your passwords are only as affective as your ability to use them wisely (they need to be long and different for every site). Keeping your passwords in an unencrypted keychain or document is a recipe for complete financial disaster. Download a reputable password-protection app like 1Password to manage and protect any sensitive passwords, credit card numbers, software licenses, etc. Not only is it safe, it’s incredibly convenient and efficient.
  7. Avoid Untrustworthy Apps. Not all applications are friendly. Despite Apple’s well-designed vetting process, there are still malicious apps that slip through the cracks to siphon data out of your device. If the app hasn’t been around for a while and if you haven’t read about it in a reputable journal (Macworld, Wall Street Journal, New York Times, etc.), don’t load it onto your system. Don’t jail-break your iPad to download apps outside of iTunes. Short-term gain equals long-term risk.

Believe it or not, these simple steps begin to give you a level of security that will discourage casual data vampires. After implementing the Simple 7, move on to 5 Sophisticated Security Settings for iPads for even more robust data defense.

John Sileo lost almost a half-million dollars, his business and his reputation to identity theft. Since then, he’s become America’s leading keynote speaker on identity theft, social media exposure and weapons of manipulation. He helps organizations build successful cultures of privacy. His clients include the Department of Defense, Pfizer and Homeland Security. To learn more, visit ThinkLikeASpy.com or contact him directly on 1.800.258.8076.

How Secure is Your Gmail, Hotmail, YahooMail?

I just finished an interview with Esquire magazine about the security of webmail applications like Gmail, Windows Live Hotmail and YahooMail. Rebecca Joy, who interviewed me on behalf of Esquire, wanted to know in the wake of the Rupert Murdoch phone-hacking scandal, how secure our photos and messages are when we choose to use free webmail programs.

The simple answer? Not very secure. Just ask Vanessa Hudgens (nude photos), Sarah Palin (complete takeover of her email account) and the scores of celebrities and power figures who have been victimized by email hacking.

Think of using webmail (or any web-based software, including Facebook, Twitter, Google Docs, etc.) as checking into a hotel room. Unlike a house, where you have tighter control over your possessions, the same is not true of a hotel. While you definitely own the items you bring into a hotel room (laptop, smartphone, wallet, passport, client files), you don’t have nearly as much control as to how they are accessed (maids, managers, social engineers who know how to gain access to your room). In short, by using webmail to communicate, you are exchanging convenience for control.

Here are the five most common ways you lose control:

  1. The password on your email account is easy to guess (less than 13 characters, fail to use alpha-numeric-symbol-upper-lower-case, don’t change it often) and someone easily hacks into your webmail account, giving them access to your mail, photos, contacts, etc.
  2. Someone inside of the webmail company is given a huge incentive to leak your private information (tabloids that want access to a celebrity’s photos and are willing to pay hundreds of thousands for it).
  3. You populate your password reminder questions (What high school did you go to?) with the correct answers instead of using an answer that is not easily found on your Facebook, LinkedIn or Classmates.com profile.
  4. You fail to log out of your webmail while on a public computer (hotel business center, school, library, acquaintances house), allowing them to log back in to your email account using the autosaved username and password (which by default tends to stay on a system for up to two weeks).
  5. You continue to deny the fact that when you store your information in places that you don’t own, you have very little actual control.

If you are sending sensitive information of any sort (text, photos, identity, videos or otherwise), don’t use webmail or social networking to send it. Use a mail program that resides on your own computer and encrypt the sensitive contents using a program like PGP. That gives you a much stronger form of protection than ignorantly exposing your information for all to see.

John Sileo is the award winning author of Privacy Means Profit and a professional speaker on data security, privacy, identity theft and social networking exposure.

 

Facebook Privacy: Hide from Google

The New York Times recently published an article that discusses the severe changes Facebook has made to privacy settings. This is the last post on these changes and each post gives you details on how to manage these new settings so that you can gradually accumulate your Facebook Privacy.

What Can Google See? (Keep Your Data Off the Search Engines)

When you visit Facebook’s Search Settings page, a warning message pops up. Apparently, Facebook wants to clear the air about what info is being indexed by Google. The message reads:

There have been misleading rumors recently about Facebook indexing all your information on Google. This is not true. Facebook created public search listings in 2007 to enable people to search for your name and see a link to your Facebook profile. They will still only see a basic set of information.

While that may be true to a point, the second setting listed on this Search Settings page refers to exactly what you’re allowing Google to index. If the box next to “Allow” is checked, you’re giving search engines the ability to access and index any information you’ve marked as visible by “Everyone.” As you can see from the settings discussed above, if you had not made some changes to certain fields, you would be sharing quite a bit with the search engines…probably more information than you were comfortable with. To keep your data private and out of the search engines, do the following:

  1. From your Profile page, hover your mouse over the Settings menu at the top right and click “Privacy Settings” from the list that appears.
  2. Click “Search” from the list of choices on the next page.
  3. Click “Close” on the pop-up message that appears.
  4. On this page, uncheck the box labeled “Allow” next to the second setting “Public Search Results.” That keeps all your publicly shared information (items set to viewable by “Everyone”) out of the search engines. If you want to see what the end result looks like, click the “see preview” link in blue underneath this setting.

Read more from the New York Times article that discusses the Facebook settings that every user should be aware of. Be proactive about what you share on Facebook and protect your online privacy!

Read The first 2 articles –

Facebook Privacy: Videos, Photos, and Status Updates

Facebook Privacy: Your Personal Info

Order your copy of the Facebook Safety Survival Guide to make sure you and your children are protected online.

John Sileo became one of America’s leading Social Networking Speakers & sought after Identity Theft Expert after he lost his business and more than $300,000 to identity theft and data breach. His clients include the Department of Defense, Pfizer and the FDIC. To learn more about having him speak at your next meeting or conference, contact him by email or on 800.258.8076.

Facebook Privacy: Your Personal Info

The New York Times recently published an article that discusses the severe changes Facebook has made to privacy settings. This is the second post on these changes and each post will give you details on how to manage these new settings so that you can gradually accumulate your Facebook Privacy.

Who Can See Your Personal Info?

Facebook has a section of your profile called “personal info,” but it only includes your interests, activities, and favorites. Other arguably more personal information is not encompassed by the “personal info” setting on Facebook’s Privacy Settings page. That other information includes things like your birthday, your religious and political views, and your relationship status.

After last month’s privacy changes, Facebook set the new defaults for this other information to viewable by either “Everyone” (for family and relationships, aka relationship status) or to “Friends of Friends” (birthday, religious and political views). Depending on your own preferences, you can update each of these fields as you see fit. However, we would bet that many will want to set these to “Only Friends” as well. To do so:

  1. From your Profile page, hover your mouse over the Settings menu at the top right and click “Privacy Settings” from the list that appears.
  2. Click “Profile Information” from the list of choices on the next page.
  3. The third, fourth, and fifth item listed on this page are as follows: “birthday,” “religious and political views,” and “family and relationship.” Locking down birthday to “Only Friends” is wise here, especially considering information such as this is often used in identity theft.
  4. Depending on your own personal preferences, you may or may not feel comfortable sharing your relationship status and religious and political views with complete strangers. And keep in mind, any setting besides “Only Friends” is just that – a stranger. While “Friends of Friends” sounds innocuous enough, it refers to everyone your friends have added as friends, a large group containing hundreds if not thousands of people you don’t know. All it takes is one less-than-selective friend in your network to give an unsavory person access to this information.

Read more from the New York Times article that discusses the Facebook settings that every user should be aware of. Be proactive about what you share on Facebook and protect your online privacy!

Order your copy of the Facebook Safety Survival Guide to make sure you and your children are protected online.

John Sileo became one of America’s leading Social Networking Speakers & sought after Identity Theft Expert after he lost his business and more than $300,000 to identity theft and data breach. His clients include the Department of Defense, Pfizer and the FDIC. To learn more about having him speak at your next meeting or conference, contact him by email or on 800.258.8076.

Scrooge’s Top 10 Holiday ID Theft Protection Tips

“Might I have another lump of coal for the fire, Mr. Scrooge?”
-Bob Cratchit (Dickens’ A Christmas Carol)

What in the world do we have to learn from Ebenezer Scrooge about protecting our identities during the busy holiday season?

Plenty!

Scrooge was a miserly old git who wouldn’t share anything – his coal, his wealth, his love. The ghosts of Christmas Past, Present and Future scared him into realizing that giving generously is what the holidays (and life) are all about. But the ghosts forgot to mention that as he donated his wealth, paid for Tiny Tim’s medical care and purchased gifts for all of London, he should continue to be miserly with his personal information!

Distraction is our worst enemy. During the holidays, in addition to spending more money, we tend to be busier, more stressed-out and less careful than other times of the year. Identity thieves take advantage of our distraction to perform information extraction. In the spirit of Charles Dickens, here are Scrooge’s Top 10 Holiday Prevention Tips:

  • Protect your home. Your greatest risk during the busy-ness is all of the extra people that come into your home. It makes it very easy to pocket a check book that’s on your desk or a brokerage statement in your filing cabinet. We’d all like to believe that the people we know wouldn’t steal from us. Unfortunately, statistics prove that identity theft is committed by someone the victim knows approximately 30-50% of the time.  I recommend that you shred every document you don’t need and purchase a Sentry Safe fire-safe to lock up your valuable identity documents. (No, I don’t make money if you buy a Sentry Safe – good question). These make great gifts for people you care about!
  • Use your credit card. Don’t use checks and don’t use a debit card. When you use either of these forms of payment, the money is drawn directly from your bank account. If fraud does occur, it’s harder to get the money reimbursed and in the meantime, you don’t have the money to spend. When you use a credit card, nothing is withdrawn from your bank account. In addition, credit cards generally give you a longer period (90 days) to catch the fraud before you are held liable. Debit cards generally give you 30 days.
  • Leave your purse in the trunk. For women, take a wallet that fits in your coat pocket and leave your purse in the trunk, or at home. It is too easy to steal a purse (30% of all identity theft) that is sitting at your feet as you pay or have lunch. The very best advice is to take your drivers license and one or two credit cards with you shopping and store them in your front pocket. The chances that you will lose them decreases exponentially as you leave more at home. If you must have a purse, use one that zips and hangs in front of you.
  • Watch your statements. Most forms of holiday identity theft can be caught simply by monitoring your checking, debit and credit card accounts frequently. Remember, the pain of this crime gets much worse if you don’t catch it quickly. By monitoring your financial statements, you will catch credit card and check theft immediately. I recommend that you monitor your accounts online, which is fast, convenient and smart. Even better, sign up for automatic account alerts when any transaction occurs on your account. If you spend $1 at a store, you receive an email notifying you of the purchase. If you receive an email for an amount you didn’t spend – bingo – you’re probably a victim of fraud. Visit your bank online to set up account alerts.
  • Give yourself the gift of Identity Monitoring. It is impossible to track all of the ways our identities are exposed, which is why I use identity monitoring. To learn about the best way to monitor your online identity (credit reports, non-credit loans, cyber attacks, public records, etc.), read my review of identity monitoring services and learn how to save almost 50% on the best service available.
  • Shop on secure websites. Shopping online can be safer for your identity than shopping in person. But you need to make sure you adequately protect your computer, and that you shop on secure websites. Sites with a good reputation (Amazon, Sears, Lands End, Eddie Bauer – names you easily recognize) are a good place to start. When you begin shopping, make sure that the website address in your browser changes from https:\ to https:\ – this lets you know that your private information (name, credit card number, address, phone) will be encrypted so that hackers can’t steal it. Finally, if the Lock symbol appears in the bottom right-hand corner of your browser, click on it and make sure that the security certificate belongs to the store at which you are shopping.
  • Don’t trust your email. There are so many holiday scams by email that you should read everything with an enormous grain of salt. If someone is promising you something for nothing (free gift, free money, etc.), don’t buy it. If they are threatening to close your account if you don’t update information online, don’t buy it. If you don’t know the person on the other end of the email, don’t believe it. Delete it.
  • Be a Scrooge with what you say. Don’t give your credit card number (or Social Security Number) over the phone if someone is within earshot. Be especially careful about what information you give away over your cell phone in public.  When you are typing your PIN into your ATM or the credit card swiper at the store, cover up your fingers so that the person behind you can’t see. There are so many fraud schemes once someone has your PIN I can’t even describe them here.
  • Rotate your credit cards. After the busy holiday shopping season is over, call your credit card company and ask them to issue you a new card (you can tell them that you are concerned that your credit card number was stolen). Make sure they transfer your credit limit to the new account, along with any miles or perks you have attached to that card. Also, make sure than any auto-pay charges set up on your card are transferred to the new card (e.g., if you auto-pay your cell phone bill on your credit card each month, you’ll need to call your cell phone provider and give them the new credit card number). By rotating your credit card in this way, you are making sure that all of the personal data sitting in retail databases is no longer valid. That way, if they lose the credit card number that you used during holiday shopping, it will no longer be valid.
  • Hire an identity theft speaker for your next corporate or association event. Okay, that was a shameless plug for my motivational identity theft speeches, but that’s how I make a difference in this world and I guarantee that educating your organization about identity theft will directly improve your bottom line. Corporate privacy begins with personal privacy. Blue Cross, Pfizer, The Federal Reserve Bank, Prudential Real Estate, AIG, AARP and my other recent clients agree. Read what they have to say. Mention this blog post and receive $1500 worth of Stolen Lives at no cost when you book a speech. Unclear about why you would hire an identity theft speaker for your next event? Visit my FAQs page.

Please remember that your private information is YOUR PROPERTY. Treat it with care and have safe and happy holidays.

John Sileo
Identity Theft Keynote Speaker