YOU’RE BEING WATCHED! · Include information gathered from social spaces (LinkedIn): Company, Job...
Transcript of YOU’RE BEING WATCHED! · Include information gathered from social spaces (LinkedIn): Company, Job...
Cary Moore, CISSP, CFE, MBA Chief Executive Officer MegaByte Security, LLCStress-Free IT
YOU’RE BEING WATCHED!
SECURITY TIPS & TECHNIQUES
YOU’RE BEING WATCHED!
BE AWARE OF PHISHING AND SPEAR PHISHING
▸ Spear Phishing ▸ Unlike regular phishing attacks, spear phishing includes specific information about the
target recipient
▸ Mostly from public info sources, like social media:
▸ Name, Address, Phone Number
▸ Include information gathered from social spaces (LinkedIn):
▸ Company, Job Position, Supervisor, Projects and Programs
▸ Attack Payloads may be target specific:
▸ Keystroke Logging, Form Grabbing, Session Injection, Remote Control
YOU’RE BEING WATCHED!
PHISHING, SMISHING, AND VISHING. OH MY…
YOU’RE BEING WATCHED!
PHISHING, SMISHING, AND VISHING. OH MY…
YOU’RE BEING WATCHED
YOU’RE BEING WATCHED!
BE ON THE LOOKOUT FOR FAKE ALERTS AND SCAREWARE
YOU’RE BEING WATCHED
YOU’RE BEING WATCHED!
BE ON THE LOOKOUT FOR FAKE ANTIVIRUS ALERTS AND SOFTWARE
YOU’RE BEING WATCHED
YOU’RE BEING WATCHED!
BE ON ALERT WITH ATTACHMENTS
YOU’RE BEING WATCHED
YOU’RE BEING WATCHED!
GOOGLE YOURSELF…
What does Google know about me?
Don’tForget GoogleImageSearch
https://takeout.google.com/settings/takeout
YOU’RE BEING WATCHED!
YOUR FACEBOOK DATA
▸ To download your Facebook data, click at the top right of any Facebook page and choose Account Settings.
▸ Click Download a copy of your Facebook data at the bottom of the page.
YOU’RE BEING WATCHED!
GOOGLE AND FACEBOOK https://findmyfbid.com/
YOU’RE BEING WATCHED!
GOOGLE AND FACEBOOK https://findmyfbid.com/
YOU’RE BEING WATCHED!
ENCRYPT YOUR DIGITAL LIFE
▸ Use two-factor authentication
Rememberyour
GoogleArc
hive?
If users have two-factor authentication, fraudsters would be less likely to steala user’s identity by hacking their Google account and exploiting their Google Archive.
YOU’RE BEING WATCHED!
ENCRYPT YOUR DIGITAL LIFE
▸ Encrypt your hard drive ▸ Windows - BitLocker ▸ Mac - FileVault
YOU’RE BEING WATCHED!
ENCRYPT YOUR DIGITAL LIFE
▸ Secure your mobile device
▸ No simple pins and consider biometrics1234
9999
1111
3333
0000
1212
6666
7777
1122
1004
2000
8888
4444
4321
2222
1313
5555
6969
1010
2001
YOU’RE BEING WATCHED!
ENCRYPT YOUR DIGITAL LIFE
▸ Use different passwords for each login
▸ Consider a password manager ▸ https://en.wikipedia.org/wiki/List_of_password_managers
▸ PC Magazine - Best Password Managers of 2018:
▸ https://www.pcmag.com/article2/0,2817,2407168,00.asp
YOU’RE BEING WATCHED!
ENCRYPT YOUR DIGITAL LIFE
▸ Come up with a password scheme
▸ Create a strong base password: ▸ “Everything I Do I Do It For You” = E1d_1D!4Y:)
▸ Simply add the name of the service to the base:
▸ E1d_1D!4Y:)GMail - for your GMail account
▸ E1d_1D!4Y:)eBay - for your eBay account
YOU’RE BEING WATCHED!
ENHANCE YOUR PRIVACY
▸ Use a VPN ▸ Here are deals on top VPN solutions: ▸ VPN Unlimited: https://stacksocial.com/search?utf8=%E2%9C%93&query=VPN+Unlimited&rid=4666897 ▸ NordVPN: https://stacksocial.com/search?utf8=%E2%9C%93&query=NordVPN&rid=4666897
▸ Consider using TOR ▸ https://www.torproject.org/
▸ Use DuckDuckGo instead of Google for searches ▸ https://duckduckgo.com/
▸ Use Chrome’s “Incognito Mode” or Firefox’s “Private Browsing”
YOU’RE BEING WATCHED!
TAKE BACK THE INTERNET
▸ iCareFone ▸ Ad Block Plus ▸ AdGuard DNS
YOU’RE BEING WATCHED!
SECURE YOUR HOME NETWORK
▸ Cujo ▸
▸ Bitdefender BOX
▸ Dojo
▸ Keezel
YOU’RE BEING WATCHED!
UPDATE EVERYTHING
▸ Operating Systems ▸ Applications (Flash, Java, Office) ▸ Mobile devices ▸ IOT? ▸ Nest ▸ Smart TVs ▸ Media Devices
YOU’RE BEING WATCHED!
SECURE YOUR CREDIT
▸ Security Freeze or Lock Your Credit Reports
▸ Experian ▸ Equifax ▸ TransUnion
▸ Consider a monitoring service
▸ Pay for it OR wait for a letter in the mail…
YOU’RE BEING WATCHED!
PRACTICE GOOD ONLINE HYGIENE
YOU’RE BEING WATCHED!
WANT MORE?
▸ Bring MegaByte Security in for your organization’s trainingor to present at a conference!
▸ Reach us at: ▸ Cary Moore, CISSP, CFE, MBA ▸ 720-770-8870 ▸ [email protected]
▸ www.MegaByteSecurity.com
Cary Moore, CISSP, CFE, MBA President & Chief Executive Officer MegaByte Security, LLCEnabling The Cyber Warrior
YOU’RE BEING WATCHED!