IT Security Tip #46: The DANGERS of Dropbox and other file sync apps
If you’re using Dropbox, OneDrive, Google Drive or other consumer-grade file sync and sharing cloud applications, listen up! These applications pose a huge threat to your company because company data can be spread far and wide without central oversight of what information is being shared with whom. Further, over 7 MILLION Dropbox accounts have been hacked, giving cybercriminals a path into the company’s network.
This is even MORE important if your company has access to and/or stores financial, medical or other sensitive data. Using file-sharing applications like these are a clear and direct violation of data breach and compliance laws. Bottom line, DON’T USE THEM FOR COMPANY DATA and use only company-approved, business-grade file-sharing applications.
IT Security Tip #47: DON’T use public WiFi until you read this
We’re all guilty of it: connecting to free public WiFi. Whether it’s at the coffee shop, hotel or airport, the temptation to check e-mail and surf the web is just too strong to resist. So BEFORE you connect to any free, public WiFi, make sure the connection is legitimate.
It’s not uncommon for hackers to set up fake clones of public WiFi access points to try and get you to connect to THEIR WiFi over the legitimate, safe public one being made available to you. Before connecting, check with an employee of the store or location to verify the name of the WiFi they are providing. Next, NEVER access financial, medical or other sensitive data while on public WiFi. Also, don’t shop online and enter your credit card information unless you’re absolutely certain the connection point you’re on is safe and secure.
IT Security Tip #48: Work computers and devices are only for ONE thing…
That is, WORK! Never mix personal web surfing and social media with company devices. If you want to check your Hotmail account or Facebook page, do it during your lunch break and on YOUR personal device. Over 600,000 Facebook accounts are hacked every day. If you’re using a company device to access a compromised account, you’re opening up a door to a hacker who can then get into your company’s network via your e-mail or PC. Bottom line, don’t use company PCs, devices, phones or Internet for PERSONAL use.
IT Security Tip #49: Set up bank alerts – NOW!
Here’s a tip that just might save your bacon: set up withdrawal alerts on your bank accounts. Many banks will send you an e-mail alert whenever money is withdrawn from your account via check, debit card or transfer. Setting up those alerts will allow you to spot and report fraudulent activity BEFORE the money has already been siphoned into a cybercriminal’s hands.
IT Security Tip #50: Make THIS password different from everything else
You know you’re guilty of it: using the same password for everything. Believe me, I understand how annoying it is to try and remember all those passwords; and if you’re using the same password for sites that don’t share sensitive information, like a login to a news feed you like to read, then it’s generally okay.
HOWEVER, the ONE password you want to keep unique is your e-mail password. If an e-commerce site you’ve registered at or bought from gets hacked – and you’ve used the SAME password you usually use for everything to register at the site – you can pretty much bet hackers are going to gain access to your in-box. They’ll have your e-mail and your password to the e-commerce site and will use that to hack in. From there, they’ll have fertile ground for getting all your data and other passwords.