REFRESH to rotate MAAMAW'S CLICKY NOTES thru this space..... Timely Tips, Best of the Boards & More



You'll find great information in this "Read Only" Archive, but remember..... things change.
Be sure to visit the Current Message Board when you're finished here.

We're very friendly, so don't be shy... just jump right in and post your question.
Scams outnumber legitimate biz ops about a bzillion to one, so it's well worth your time.


| View Thread | Return to Index | Read Prev Msg | Read Next Msg |

FIB - Scams 101 - Ye Olde Archives

Online Security

Posted By: Tom Brownsword <tbrownsword@hotmail.com>
Wednesday, 27 July 2005, at 2:48 p.m.

In Response To: Re: Question for Roadie (The Roadie)

Good points by Roadie, and hopefully I can clarify a bit.

Whenever you do business online with a credit card, hopefully it's encrypted between your computer and the web server of the institution with which you are doing business. Ensure that the URL in the address bar starts with "https" instead of "http" and look for a little lock icon somewhere in the status bar of your web browser. I'd also go to the trouble of actually typing in the URL of the bank every time to prevent someone trying to phish me with a bogus link (I won't even use a bookmark, in case it is compromised).

The encryption between your browser and the institution's web server is pretty good. The problem lies in how your personal data is treated before it leaves your browser (is it stored on your computer? has someone installed a keylogger that phones home? is your computer somehow compromised?) and after it arrives at your institution. The recent incident with the payment processor for Visa, Master Card, etc. occurred because they had violated the credit card companies security policy by retaining data, and that data was in a place where someone had access to it that should not have.

Another thing you probably want to do is change your passwords often (once a month is not too often, in my opinion), use a separate password for each account, use complex passwords (at least 8 characters, capital letters, numbers, special characters, no dictionary words, and NEVER use your userid, name, phone number, pet's name...), and although I'm sure I'll get arguments to this, write the passwords down on a slip of paper, put that piece of paper in your wallet, and treat it with the same care and sensitivity that you would use in taking care of your driver's license, credit cards, and cash. And if you're going to do this, DON'T write down the userid, account number, bank name, etc. on the same slip of paper. That way, if someone does find it, it'll just be a bunch of random password-looking words. And I'd also keep a few old slips in my wallet just to create a bit of obfuscation for a would-be thief. You have to remember which password is which and which slip is valid for this month's passwords, but that shouldn't be too hard for most people.

One more note: check your online bank statements often (at least once a week, perhaps even more often) and make sure that you can account for every transaction that takes place. If you cannot, notify your bank / credit card company immediately by both phone and in writing to challenge it.

Thanks for listening,
Tom

Tom Brownsword
Computer Security Analyst
http://www.CompuSec.us

A Computer Security Project For Every Entrepreneur

Messages in This Thread

Have you read MAAMAW'S CLICKY NOTES today?
Excuse me... You MISSED them??
At the top o' the page in the blue bars (sheesh!).

| View Thread | Return to Index | Read Prev Msg | Read Next Msg |

FIB - Scams 101 - Ye Olde Archives is maintained with WebBBS 3.11.


You'll find great information in this "Read Only" Archive, but remember..... things change.
Be sure to visit the Current Message Board when you're finished here.

We're very friendly, so don't be shy... just jump right in and post your question.
Scams outnumber legitimate biz ops about a bzillion to one, so it's well worth your time.



NOTICE TO SCUMBEEZLES
(you know who you are... you scream "Foul!" when the truth comes out)
        PLEASE READ THIS LEGAL NOTICE CAREFULLY BEFORE YOU FILE A LAWSUIT OR EVEN WASTE TIME THINKING ABOUT IT.  It has been done before, but never successfully.  In fact, the last dodobird who tried it ended up being ordered to pay more than $77,000 in attorney fees ($65,000+ to my attorneys and $12,000+ to my co-defendant's legal advisor).
        If your attorney is worth his salt, he's going to tell you that the expense of filing a lawsuit you can't win is a whole lot worse than any "damages" resulting from messages posted on this insignificant little chunk of cyberspace.
        NEWS FLASH:  I didn't just climb down off that ol' turnip truck yesterday.  I'm well aware that expressing a negative opinion, relating one's personal experience, and restating provable facts are all legal in this country and do not constitute libel, slander, or defamation -- so you don't want to play games with me, and you sure don't want to start something you aren't prepared to finish.  I don't take threats lightly, and I don't accept bribes (or did you call it a "mutually-beneficial arrangement"?).  I'll turn you in faster than you can yell, "ARREST ME, I'M SCUM!!" 
        Do yourself a favor and turn your legal team loose in greener pastures.
        Although we may, from time to time, monitor or review discussions, postings and the like on the Friends In Business (Scams 101) Message Board, we are under no obligation to do so.  We are not responsible or liable for any claim arising from the content of any such discussions or postings or for any error, defamation, libel, slander, omission, falsehood, obscenity, pornography, profanity, danger, or inaccuracy contained in any information contained within such locations on the Site.
        You are prohibited from posting or transmitting any unlawful, threatening, libelous, defamatory, obscene, scandalous, inflammatory, pornographic, or profane materials or any material that could constitute or encourage conduct that would be considered a criminal offense, give rise to civil liability, or otherwise violate any law.  You are likewise prohibited from posting any false claims against any company or individual.  We will fully cooperate with any law enforcement authorities or court order requesting or directing us to disclose the identity of anyone posting any such information or materials.
        By posting messages and/or content on the Friends In Business (Scams 101) Message Board, you give permission for Lesley Fountain/Friends In Business/Shoestring Success Publications to display, distribute and use the posting and content for publication, advertising, promotion, excerption or example. You grant Lesley Fountain/Friends In Business/Shoestring Success Publications complete, perpetual, but non-exclusive rights to use, archive, reproduce, adapt, modify, distribute, sub-license, repurpose, rework, compile, or offer for sale or resale the messages, postings or content appearing on this site in whole or in part, throughout the world and universe, on a royalty-free basis without remuneration.  If you cannot accept or agree with the terms of service for this website and discussion board, you are advised not to post on this board.
        In closing, I would like to remind you once again that it is still legal, in this great country of ours, to express a PERSONAL OPINION, as long as it is presented as opinion and not as fact.
        And finally, all you scammers out there will do well to remember that TRUTH IS AN ABSOLUTE DEFENSE against charges of libel, defamation, and slander... so if you're operating just a hop, skip, and jump ahead of the law, you might want to think twice before doing anything stupid... (AND SHAME ON YOU!!).