Stop Taking Risks Online

Internet-enabled crimes and scams show no signs of letting up, according to data released by the FBI’s Internet Crime Complaint Center (IC3) in its 2019 Internet Crime Report

2020 saw both the highest number of complaints and the highest financial losses reported since the center was established twenty years ago. 

It’s easy for busy people to put off dealing with online privacy and device security. But some of your unwitting online behaviors might be putting you and your family’s connections and data at risk.

Here are seven risky online habits to stop right away, along with advice on better ones that can help keep you and your family safer when online.

1. Accepting Friend Requests From Strangers

You’re scrolling through Facebook while sipping your morning coffee and up pops a new friend request. You don’t know the person but they’re “friends” with three of your friends, so you figure they must be OK. You click “accept.” And that’s exactly what scammers hope you’ll do.

Scammers on social media platforms may take advantage of your desire to be nice. Once they’re in, they can go catfishing, mine personal data from your posts or profile, or post a malicious link that could trick you or your friends into clicking and installing malware on your devices.

Keep your social media connections to people you know in real life. If you do get one of those friend-of-a-friend requests, either ignore it or contact your actual friend to ask about the person first.

2. Complying With Odd Requests In Messages

You get an email or text that looks like it’s from your bank, your favorite store, or even the federal government. The message might offer you a coupon, alert you to “suspicious activity” on an account or claim you’re eligible for a big refund if you’ll just confirm some personal information or click a link. If you do, you could fall victim to a phishing scam.

Scammers will send messages that look like they’re from a trusted source in order to get money or obtain private information from you, such as passwords, account numbers, or your Social Security number. Last year, the FBI Internet Crime Complaint Center got more than 450,000 complaints about phishing schemes linked to over $3.5 billion in losses to businesses and individuals.

When you get an email, text or social media message asking you to take an action, stop and think. If the request seems unusual, take a few minutes to verify that it’s authentic by contacting the sender through a different channel.

3. Broadcasting Your Location To Criminals

You hopped on Instagram to post photos of the Paris café where you ate croissants and sipped café au lait, and now you’re checking in at the Louvre on Facebook. The problem: Thieves can use social media to track potential victims.

If previous photos you’ve taken at home contain metadata showing the exact location where they were snapped, that could lead burglars right to your front door.

Share every last detail about your dream vacation in France - after you get back home. To protect your privacy further, avoid posting photos that contain metadata showing the location where the photo was taken. Start by disabling location metadata on photos on your camera or smartphone.

4. Oversharing About Your Chilren On Social Media

Your child isn’t old enough to read, so there’s no harm in sharing that funny but embarrassing potty-training story, right? Wrong. Keep in mind that your social media posts essentially create a “digital dossier” on your kids, as one mother and children’s rights lawyer writes. The information and photos you share about your kids could eventually fall into the hands of bullies, data miners, identity thieves, and even predators.

As social media comes of age, will we regret all the information we revealed about our families during its early years.

Start thinking about your kids’ online privacy from day one. Check your privacy settings on social media. Also avoid posting potentially embarrassing information, unclothed photos, and personally identifying information, such as full name or announcing their exact date of birth, which could put your children at risk for identity theft. Some parents use a generic nickname or fake initials when posting about a child.

5. Buying a device without considering its security standards and privacy policy

Our homes are filled with gadgets that are supposed to make life easier and more secure, from pet cams to smart speakers and smart doorbells. The problem: Some of these devices could actually be making you less secure by spying on you and your family.

Buy smart devices only from reputable manufacturers, and make sure they meet the minimum security standards. Devices should have encryption and receive regular security updates from their developers.

Manufacturers should require strong passwords and two-factor authentication for remote access. They should also offer information about privacy that is specific to the device. And finally, they should have a system for reporting and dealing with bugs and other security issues.

We all need to think about how we want to model online sharing, so that our kids can follow our example when they are old enough to start using Instagram, TikTok or whatever the next popular platform may be.

6. Leaving your accounts wide open to hackers

You know it’s essential to use strong unique passwords for online security and privacy. If you use your dog’s name or your kid’s birthday, you might be giving criminals and hackers the keys to your accounts and the private information contained within.

That could put you at risk for account takeovers, ID theft, and having your email address used to scam your colleagues, friends, and family.

But it’s hard to remember strong passwords, so consider putting “install password manager” on your to-do list and don’t keep putting it off for another day.

Get a password manager to help you keep track of all of your strong, unique passwords. Many password managers also include a random generator feature to help you create unique passwords of at least 12 characters that include letters, numbers and symbols.

7. Putting loads of free apps on your phone.

Apps can be nearly irresistible, especially when they’re free. The lure is powerful since apps can allow you to do anything from chat with your friends to find a date to meditate, get your horoscope, track your budget, and play games.

But sketchy apps can infect your device with malware or compromise your privacy by gathering and selling your data. This can be especially worrisome with health apps.

Only download apps from official app stores, and only get apps you really want and will use. If you have apps you’re not using, delete them from your device. And before you get a new app, look at what permissions it requests.

For example, some apps will ask to access your camera, learn your location, make calls, view your contacts, and more. If an app is requesting permissions it doesn’t obviously need to function, you may want to think twice about installing it on your smartphone.

Anyone can fall victim to identity theft or a scam. But taking the time to learn the risks and tweak your online behavior just a bit can greatly reduce your risk and keep you and your family safer online.

FBI:        Norton:      Mozilla:     Cyber Smile:        New York Times

You Might Also Read:

Why You Should Never Use A Free Proxy:

 

« Ransomware Attack On Ireland's Health Service
Pipeline Ransom Has Been Paid »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Center for a New American Security (CNAS)

Center for a New American Security (CNAS)

CNAS is the nation's leading research institution focused on defense and national security policy. Cyber security issues are an intrinsic element of the national security debate.

Cybertrust Japan

Cybertrust Japan

Cybertrust Japan provides a comprehensive security certification and digital authentication service, enabling customers to build and manage highly secure IT infrastructures.

Zeneth Technology Partners

Zeneth Technology Partners

Zeneth is a consulting firm providing information technology and cybersecurity services to federal and commercial clients.

ngCERT

ngCERT

ngCERT is the National Computer Emergency Response Team for Nigeria.

Assertion

Assertion

Assertion secures your collaboration (UC/CC) systems from cyber risks. Enforcing the right set of controls and monitoring them continually brings down risk to acceptable levels.

GuardSI

GuardSI

GuardSI was created to protect companies from growing threats to security such as fraud, hacking, internal theft, accidents and human mistakes that can directly affect the business.

ADL Process

ADL Process

ADL Process offer secure data destruction, certified product destruction and responsible electronics recycling services to businesses and institutions.

SlowMist

SlowMist

SlowMist is a blockchain ecosystem security company providing cybersecurity audits and protection for leading digital asset exchanges, crypto wallets, public chains, and smart contracts.

AttackIQ

AttackIQ

AttackIQ delivers continuous validation of your enterprise security program so you can strengthen your security posture and your response capabilities.

Inspira Enterprise

Inspira Enterprise

Inspira Enterprise is a leading digital transformation company with expertise in Cyber Security, Internet of Things (IOT), Blockchain, Big Data & Analytics, Intelligent Automation and Cloud Computing.

Cytenna

Cytenna

Cytenna Signal is a suite of SaaS (Software-as-a-Service) products that use AI and machine learning to automatically aggregate the latest information about software vulnerabilities.

Hackuity

Hackuity

Hackuity is a breakthrough technology solution that rethinks the way of managing IT vulnerabilities in enterprises.

Retruster

Retruster

Protect your users against phishing emails, ransomware & fraud with the most advanced, user-friendly, non-intrusive solution available.

Plex IT

Plex IT

Plex IT provides managed IT services to organisations along with managed security services.

ProjectDiscovery

ProjectDiscovery

ProjectDiscovery is an open-source, cybersecurity company that builds a range of software for security engineers and developers.

ZEST Security

ZEST Security

The ZEST platform natively integrates into your technology stack to make efficient risk remediation possible.