There's been a lot of news stories lately about security breaches. We've had reports of credit card numbers, personal info, and email addresses stolen. The modern high-tech thief has gotten a lot more sophisticated lately so we're all at higher risk. A few people have asked me what they can do to keep their info more safe. So I thought I'd post some of the tools I use and recommend along with some general tips.
We all spend a lot of time online these days at a number of websites. The best thing you can do to keep your personal info secure is to use complex passwords that are different for each site. But how do you remember all those passwords? I use a tool called Last Pass. It runs in your browser and keeps track of all your passwords. It can generate secure passwords for you, remember them, and automatically log you in to the sites you visit. Once you set up a site you can forget about it. It's cross-platform (Mac, Windows, Linux) and runs as a plug-in or extension for most browsers. The free version works great for most people. For only $1 per month you can add support for smart phones and a few added advanced features. The passwords are stored encrypted on your computer and also encrypted online. The encryption means no one but you can read the info.
So how to you protect all of the important files you have on your computer? Most of us know that we should back up our computers, but the experience is a bit like pulling teeth. Plus we're all pretty busy and tend to forget. Ideally we should have our most important info and files backed up in several locations.
I like to keep a backup of everything on an external hard drive. This protects you if your main hard drive or computer dies. Drives are pretty inexpensive these days and are easy to use. Just plug them in and you're ready to go. External drives can back up everything you need and you can access the backup instantly.
For my most important info such as banking data, contacts, and personal documents, I want to have an off-site backup incase of something more catastrophic such as a fire or natural disaster. You can keep another backup drive with a friend or family member, but unless you encrypt the files they can see all the stuff you have on there. Plus you have to remember to take the drive back every time you want to create a backup. There are several sites online now that offer backup services. The problem is that unless you have a fast internet connection they're really slow. Plus, unless you're encrypting the files before they go online, anyone at that company has access to your data, including hackers.
I've recently begun using a program called Crash Plan. It covers all the bases and is really easy to use. Crash Plan also works on the Mac, Windows, and Linux. The free version lets you make backups to a second hard drive and/or to a friend's computer over the internet. Crash Plan encrypts and compresses the data so it takes less time to transmit, takes up less space, and keeps out prying eyes. The inexpensive paid versions also allow you to backup to their online servers, again keeping your data secure and private. The best part is that both versions allow you to automate the backups. Files get backed up in the background automatically as they change. You never have to remember to back up. As a bonus, you can set it to keep multiple versions of the files. Did you ever make a change to a document, save it, then realize later that you liked the previous version better? With Crash Plan you can go back in time and restore that version.
Here's a few other tips: if you every use web sites such as FaceBook, email, or banking sites in public places such as the coffee shop or library, make sure the browser is set to use SSL or secure mode. Most sites allow you to turn this on as an option, but you may have to dig through your account settings to enable it. Facebook, for example, let's you turn this on so it automatically uses SSL when you log in. Keep in mind that 3rd party sites, such as games, may not be secure though.
If you like to shop online, make sure you use a different password for each site. Plus, check and see if your credit card company lets you generate limited or one-time use card numbers. Many major credit card comanies now offer this for free. Thiis allows you to generate a "fake" credit card number to use for a single purchase or for a single site. You can often also set a maximum credit limit for each fake number. If a hacker breaks into the web site, or an unscrupulous employee (most common scenario) steals credit card info, that number will not work anywhere else they try to use it. You can even make card number that only work once and then become invalid.
Finally, we all know to not open email attachments from people we don't know right? I'd add that you should also be suspicious of attachments from your friends and family unless it's something you are expecting. With all of these security breaches, not to mention computer viruses and worms, it's pretty easy to get a hold of people's address books and send out fake emails so that they look like they're coming from people you know.
I also want to caution you against clicking on any web links in emails. A common attack is to pretend to be a bank or other online service and claim there's been a problem with your account. They ask you to send them your login info or click a link to access your account. What they are really doing is sending you to a site that's set up to look like your bank or online service. You enter your username and password and they've got you. Nearly every online company has a policy where they will never send you emails asking you to provide information or login credentials. If they need you to log in they will ask you to type the address into the browser directly. When in doubt, call the company and verify the issue.
Randy
Tuesday, May 24, 2011 at 1:34PM