Category Archives: Security Questions

Avoid Phishing Website Tricks

We had a curious experience this week that made us realize how easy it is to be tricked by an unscrupulous website. Here’s how it happened and here’s what you can do about it:

1. When you are on a Facebook page, you’re usually quite safe, right? It’s when you click on a link in a comment or beside a photo that you might get into trouble. Here’s an example of what we’re talking about:

Photo of Phishing Tricks  1
The photo itself isn’t the link, the blue line is.

In this case, you can click on the photo to enlarge it or you can click directly on the link. Where does the link lead? We don’t know, do we. The link has been shortened. When a link looks like this, you have to ask yourself, “Is this safe to click on?” In spite of the fact that we know and trust ‘Home Design’, how do we know their account hasn’t been compromised (hacked)? We don’t. Is it worth clicking the link? Better not.

2. Here’s an example of a safer link:

Photo of CBC Url.
The CBC uses full links, not shortened ones. It’s obvious where this link leads.

Just for extra security, hover your mouse over any link on a page then look down at the bottom of your browser window. The real url of that link will be shown there. Like this:

Photo of Phishing Tricks 3
Here is the real URL of the link, in this case it’s the same as the link in the CBC post.

3. Next, the phishing attempt. You’re already on Facebook. You know that. When you click on a link and the page that comes up happens to look like a Facebook page and asks for your password, wouldn’t that set off your warning alarms? Facebook knows your password, you are still logged into it. Why would they be asking for that password again? They’re not. The link from Facebook led to a page that only looks like it belongs to Facebook. Look up at the top of your browser window. This is what you should see if you are still on a Facebook page:

Photo of Phishing Tricks 5
Make sure the url reads: https://www.facebook.com

4. The above information is for Facebook but this also applies to your email, Twitter, Instagram and other accounts that you must sign in to use.

TIP: When you find yourself on a page that asks for your password, close your browser, reopen it and type in the URL yourself. If you happen to click on a link in an email and a page opens that asks for a password, close the tap, open another one and type the address that you want at the top.

We hope we’ve given you some useful tips about how to guard your identity online. There are many different ways that unscrupulous people can get access to your different social networking accounts. If you have questions or tips about this yourself, let us know.

Thanks for reading.

 

Encrypting Your Stuff – Create a TrueCrypt container for DropBox Part Two

This is the last post on encryption for a while. Today we’re going to show you how to lock up your DropBox storage folder, both online and on your computer.

(In case you don’t know about DropBox, you should really check it out. We’ve written several posts on this free and very cool service so search our site or head over here and sign up for your free 2 gigs of space. Here’s how DropBox works:  Post 1  Post 2   We’ve also written about how Dropbox can ‘save your bacon’. It really can! Here’s  a link to that post: How DropBox can Save Your Bacon)

Photo of Dropbox
DropBox – Make sure you encrypt your stuff.

In spite of what DropBox says about its encryption and the safety of your files in its Cloud, don’t believe it. At the drop of a hat, DropBox will open up your private files to anyone who asks. Anyone with a badge that is. What’s the problem with that? We’re all for law and order but we don’t think anyone should be able to go through your personal files without you knowing about it. Even if no one in authority has an interest in your stuff, the employees of DropBox can and do sift through your files on a regular basis. Microsoft does this too, this kind of thing is not limited to DropBox. Let’s just say that everyone does the same thing.

Once you’re clear on that, here’s how to keep your information private. You made an encrypted container right? We showed you how to do that in our last post. Here’s the link in case you missed it: Encrypting Your Stuff – Create a TrueCrypt container for DropBox. You should make more than one container. Instead of putting everything in one locked volume, consider making several. Let’s say you make one for passwords, one for personal photos, one for videos, one for financial information, etc. That way, you don’t have to upload a massive folder every time you do some work on the things in that folder. We’ll explain that next.

DropBox keeps your stuff online AND on your computer(s). The beauty of DropBox is that you can access your material from any computer anywhere in the world. Sometimes you will access your online folder using a browser. Other times, when you’re on one of your own computers, you will access your stuff in the folder that is on your hard drive. DropBox automatically syncs that folder every time you go online. If you access your folder in a browser, DropBox syncs any changes that you made with the folder that’s on all or any of your computers the next time you go online. You don’t have to worry about any of this, it’s all done automatically.

All you have to do is make sure that your encrypted containers/volumes/folders are in the DropBox folder on your computer. As soon as you put the encrypted volumes there, DropBox syncs everything automatically, any time there are changes. It really is that simple.

Knowing all of this, you’ll probably agree that this is the best way to hide your personal information online and on your own computer(s). If your house is broken into or if you lose your laptop, anyone can access that information if it’s not encrypted. Don’t wait for that to happen, do it now! Don’t keep the TrueCrypt password on your computers, that’s kind of obvious but we thought we’d mention it.

Photo of Encryption poster
Not just your email. Encrypt everything!

TIP: Use several small containers instead of one large one. That makes syncing much faster. As mentioned above, encrypt a few 10 MB containers and label them accordingly. If you do need a larger container for a video, for example, you probably won’t change it too much so syncing time won’t be an issue.

That’s it for now. If you have questions, comments, suggestions, please let us know.

Thanks for reading! Why not Like us on Facebook? Here’s the link: Computers Made Simple on Facebook 

 

Security Questions – Don’t tell the truth!

Besides a good password, security questions are another way to keep your different online accounts safe. This is a good thing, isn’t it? Well, it is a good thing if you select the answers to those questions carefully. Remember, you don’t have to tell the truth when you choose an answer. Lie a little.

Here’s an example that you might see on the Internet when signing up for a new service:

 

Photo of Security Questions
Anyone who knows you might be able to answer these questions.

These are typical security questions. Before you simply plunk in ‘Benji’ and ‘Sheboygan’, think about it. Who knows where your parents met? You and anyone that you’ve told the story to.  Maybe your childhood friend is still a friend. Maybe he’s your husband! Here’s where you can lie a little, just to keep your accounts a bit safer.

For any security question, use completely different answers, ones that aren’t guessable. For your first car, you could put the answer as ‘123’. Mother’s maiden name? Tokyo. First pet’s name? Smith (assuming it wasn’t named Smith!).

When you use a series of numbers or names or words that don’t match any of the questions, your account is completely secured from anyone who happens to guess your password. Sure, they may have your password solved but they won’t be able to get past your security questions.  We showed you last time how to create a strong and secure password using mnemonics. This technique is somewhat similar, using easy to remember words that have no relation to the questions being asked. There are no rule books as far as security questions go. You’re dealing with a computer, not a real person, so you can say anything you want. Lock up your accounts with a good password and crazy answers to security questions and you’ll be a whole lot safer online. Good luck!

Thanks for reading! Why not like us on Faceboo? Here’s the link: Computers Made Simple on Facebook