Helpful information
A few things that you can do to enjoy a safer online experience.
Clicking Without Thinking Is Reckless... Yes don't click on anything you see! Ok ok.. We all know that right? Here's a few more. You're welcome :)
Use Two-Factor Authentication... Not sure what this is? Something every computer user should know. Google how to set it up and use it.
Look Out for Phishing Scams... Uhmmm that looks like your email or banking... but is not!
Keep Track of Your Digital Footprint... Identity theft anyone? The saying I have nothing to hide is plain silly. We all have secrets somewhere. If you don't want it getting out, don't post it online. This goes for chat applets too.
Keep Up With Updates... Always keep your operating system and software up to date. This goes without saying, even though some updates can be buggy, the pros far outweigh the cons. Keeping up to date helps keep your operating system safe... yep this goes for Mac users too!
Connect Securely... Always whenever possible connect to secure websites especially when making transactions, even filling in your information that may not seem important to you - it is to someone else.
Secure Your Mobile Device... That option to lock your phone? Yep probably a good idea! Ok, now that goes without saying but there are other security options within your mobile, be sure you check them out.
Beware of Social Engineering. This falls in to different categories really but.. Ok, for lack of better words. Please explain Google... "the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes." Thank you Google.
Really in part the point of that is if your not sure of something look it up. You can find all kinds of information online to help protect yourself online and through sharing of information (ahem you can use this site too), those around you.
Dan and the Microdyne Team.
Knowledge is power.
The probability of your site, banking, Facebook, or other platforms being technically "hacked" is less higher in comparison to instances where people's personal information is obtained through social engineering.
User error, being tricked in to logging in to a fake site that looks like your banking, Facebook or other platforms you use or simply being tricked in to giving up information on the phone is more common than technical hacks.
Cyber criminals in a lot of cases if not most know human behaviour in some areas better than we know ourselves.
Exploiting individuals and their information, along with using their "correct" login credentials, present a more likely and easier avenue for cybercriminals.
It is crucial to understand and acknowledge a few key points, regardless of the situation. The weakest link in the chain of cybersecurity is the human element, as famously stated by Kevin Mitnick. Every day, people's passwords and information are stolen and freely shared among criminals, who are capitalizing on the current pandemic (at the time of this writing) to exploit these vulnerabilities for their gain.
Through my experience working with clients, I have discovered that many individuals use the same passwords across various websites and platforms that require login credentials, including Facebook, Twitter, Instagram, and even their CRA (Canada Revenue Agency) accounts. We are already aware of the attacks on government sites.
Once these malicious actors obtain an individual's email and password, it requires minimal effort to uncover the user's other accounts. Armed with this information, bad actors can effortlessly log into a server using the victim's "correct" credentials and pilfer their data. It's important to note that this type of attack is not a direct technical hack on the server itself, but rather an exploitation of the victims through social engineering or credential stuffing.
The stolen information may encompass sensitive details such as social insurance numbers, dates of birth, health records, and more. It's essential to take action and adopt secure practices now and in the future to safeguard our digital lives.
If you currently use the same password for most, if not all, of your accounts, it is imperative to cease this risky behavior. I hope I have effectively conveyed the dangers associated with this practice. Consider employing long, secure passwords that are difficult to guess. Remember to change your passwords regularly and avoid reusing old passwords, as many of these have already fallen into the hands of malicious actors. You can search online for guidance on creating secure passwords.
Furthermore, I recommend learning about and utilizing a password manager to simplify the management of multiple login credentials. This approach significantly reduces the need to type in numerous passwords, thereby minimizing the risk of criminals gaining access to your accounts, particularly if your system is compromised by malware, specifically keyloggers. Ensure that you opt for reputable password managers rather than relying on freeware or compromising your privacy.
A reliable website you can use to check if your email has been compromised is Troy Hunt's "Have I Been Pwned" at https://haveibeenpwned.com/. I encourage you to take advantage of this resource.
Thank you for taking the time to read this valuable information. If you find it useful, please consider sharing it with others who may benefit.
Warm regards,
Dan and the Microdyne Team