After the most recent Facebook breach last week, it occurred to me that I, as an IT professional, find it difficult to keep up with today’s security challenges; do non-IT professionals even try anymore?
I decided to put together this guide mostly for myself to track how to keep my family safe. It’s probably going to be very disorganized for a bit as I get my thinking around what I need to accomplish for each of my loved ones.
Use at least 2 different email accounts. One email account should be used for financial accounts. The second account for everything else including, but not limited to, social media, newsletters, everyday communication.
For financial data, I’d like to get everyone to use ProtonMail. It has Android and iOS mobile apps so there’s less chance of making a mistake while using it.
I have a family license for 1Password and I need to get everyone on it or LastPass. Some members of my extended family may prefer LastPass. Both of those services were vetted by organizations I trust. Both have utilities to check your account security and remediate issues. As long as they’re using a password manager, the passwords can be as complicated as sites allow.
Wherever possible, use fake information: incorrect birthdates, fake answers for security questions, etc. Use 1Password or LastPass to track all of that information.
Setup two-factor wherever possible. I prefer to not use SMS for two-factor since some of my family travels and I’ve been told a first-hand account of a hacker successfully convincing the victim’s carrier to transfer his number to a different SIM. Sure there are ways to lock the account, but I’d rather avoid relying on the carrier if at all possible.
Setting different family members to be each other’s security backups. I’m not sure how this will work yet.
More refinements and ideas as I think of them...
from F. Omar Telan https://ift.tt/2RiDceN
via IFTTT
