Computer and Information Security Best Practices

After a recent conversation with a friend, I reallized that many people don't know much about information and computer security. Maybe they install anti-virus on their computer, but that's often about it. I decided to put together a short post with tips about how to keep your information secure.

First off, why do you care about information security? Quite simply, in the modern age any information you make available is likely to be used to your detriment. People will try to steal your money, your credit, even your identity. They will sell your information to others who will use it for nefarious purposes. Credit Card fraud alone cost US consumers $16 billion in 2016. That cost gets passed on to consumers and retailers. Protecting yourself can prevent loss and hassle.

The first thing to consider is to choose programs that handle your information. This includes your email, your texting app, your search engine and your internet browser. Here are my current recommendations, but there are other good choices, of course. Just being thoughtful about your choices is a great step.

Internet Browser - I use Brave. It has a built in ad blocker and is supported by a blockchain token. You can use the token associated with Brave, BAT, to fund websites if you choose. Brave works well on Windows, Mac OS, Apple iOS and Android for your phones. It is stable and more secure than many other browsers. Do not install browser plug-ins or toolbars unless they are absolutely needed.
Advanced option - Block cookies and javascript on all sites, then allow it only on sites you trust. Yes, this means you won't be able to access certain sites. It's a bit of trouble, but much more secure.
Extra advanced option - Install a TOR browser, there are many available for all platforms.
Extra Extra advanced option - Use a VPN. Not a free one! Pay for a VPN service for your internet usage.

Internet Search Engine - DuckDuckGo. It is just as good as Google but it doesn't track you and sell that information to advertisers. It is even available as an option on the newer versions of iOS so you can set it as the default on your iPhone or iPad.

Email - The days of being able to trust Google are long behind us. The same goes for Microsoft and Yahoo. For that reason I recommend a more secure and private email service for any important correspondence. This includes any email involving banking, taxes, investments, etc. Counter Mail and Proton Mail are two of the leaders in this space, but there are lots of other choices as well.

Texting - Again, using the stock messaging app on your phone leaves you open to those communications being intercepted. Using an encrypted texting applicaton protects you. Avoid WhatsApp, as it has been compromised by DHS. Right now I like Signal and Threema, both are available for iPhones and Android.

Social Media - Your data is not safe with Facebook.. Your data is not safe with Facebook. I could type this over and over again, each with a new link of how Facebook abuses any data you expose it to. Do not install the Facebook app. Do not use the same computer to access Facebook and to do any banking or personal business. Consider Facebook to be the seedy strip club or the back alley drug dealer- you wouldn't show up to either with your entire bank account in an envelope in your hand and not expect to lose it. Don't access banking or financial accounts on the same computer or device you use to access Facebook and other social media sites. Also, friends don't let friends take Facebook quizzes, mostly because those quizzes harvest not just the data from the person who takes it, but from their friends as well.

Smart Phone Apps - If you have an Android phone, make sure to read the permissions allowed to any app you install. Is playing a free game worth turning over your location history, call history, photographs or other information? You would be surprised at what various applications get permissions to access. Companies or individuals that write these apps harvest this information from your phone and sell it. That free game just isn't worth it. Yes, this means that you won't be able to install a bunch of random applications on your phone. It is a sacrifice to keep yourself safe.

I hope this helps! As an IT security professional I take a lot of this for granted, but many people just haven't been properly taught how to be secure online. If you have any questions or think I am nuts, please comment below and I will respond.