Monday, September 11, 2017

How to protect yourself in a massive data breach

Hopefully, everyone is aware of the data breach at Equifax, one of the major credit bureaus. Reportedly, the data of 143 million people has been compromised, including social security numbers, names, addresses, phone numbers, credit card numbers, in short everything someone would need to commit identify theft.

Equifax is offering a website where you can go and enter your name and part of your social security number to see if you are among those whose information has been compromised. Some hackers and tech enthusiasts claim that the viability of this system is questionable as it provides different results to the same information entered in subsequent queries. It also has provided positive results for fabricated data. It's probably safe to assume that your data has been compromised and proceed from that assumption.

Equifax also provides a solution for that possibility: a year's free enrollment in their identity protection program: Trusted ID. Many are skeptical as to whether they want to trust the company whose potential gross negligence resulted in the problem in the first place.

CNET offers A guide to surviving the Equifax data breach (without Equifax's help). Not all of the information provided in this piece is uniformly agreed upon. For example, apparently enrolling in the Equifax Trusted ID program no longer requires you to opt out of a class action lawsuit. I think most of the advice about checking credit reports, freezing credit, setting fraud alerts and being vigilant during tax season is good advice.

Update 9/12/2017 - Thanks to Diane Van Gorden and Alex Clark
How to Protect Yourself from Identity Theft - Montana Legal Services Association

Update 9/14/2017 - Thanks to Steve Gibson on Security Now
Credit Freeze Guide: The best way to protect yourself against identity theft

Here is more information and background on the data breach from some of my preferred sources:

Wednesday, August 23, 2017

Unlimited data - can it replace your home broadband?

The FCC has recently released an inquiry on the current state of broadband in the U.S. One of the questions they raise is whether or not it's necessary to have a wired broadband connection (fiber or cable) and to reach the previously set targets of 25 Mbps down and 3 Mbps up for home users. Or is a cellular connection enough?

This report from 2016 shows that the U.S. lags well behind most of the rest of the world in cellular data download speeds at around 10 Mbps.
See how painfully slow 4G LTE is in the U.S. compared to the rest of the world
That's also about what I've gotten on personal tests on Verizon in my area.

But there are also questions about data caps and throttling. So, along come new unlimited data plans from the major cellular carriers.

You can see there are limits on mobile tethering. So, the data is not unlimited if you want to use it with a tablet or PC. Plus there are limits on video quality and the data can be throttled even if you stay under a given level.

This may be good news for some cellular users. But it doesn't look like an adequate replacement for high speed broadband, particularly in areas with spotty cell service.

Friday, August 18, 2017

Passwords Guidelines Changed

Finally the guidelines about passwords that made me crazy - change every 90 days, include an upper case, lower case, number and other character - are being changed as we see in this NPR article.
Forget Tough Passwords: New Guidelines Make It Simple

I'd often thought it couldn't be terribly secure if we had to write it down to remember it. Of course, I find the best solution is still a password manager.

Here's some information and a review of some of the best rated ones from PC Magazine:
The Best Password Managers of 2017

I use LastPass and have generally been quite happy with it but it can be a challenge to use with mobile apps and sites.

Friday, June 9, 2017

Internet of Things article from Pew Research

There was a fascinating if long article from Pew Research Center on Internet and Technology on:
The Internet of Things Connectivity Binge: What Are the Implications?

Well worth at least a scan to remind you of the potential risks in unbridled connectivity with no questions asked.