Kickball is DEAD, 1 in 4 Children Hack

/in , , /by

Robert Siciliano Identity Theft Expert

 A few months ago I interviewed a criminal hacker who hacks out of a hut in Ghana stealing data all over the world. He has children ages 9 and 12 and he stated “they hacked all over the world man.” He teaches his kids to hack. It’s not just a lifestyle, it’s an occupation. He and his kids are the most famous in their village.

 It comes as no surprise to me, but it may be to you that a survey has found that one in four school children have attempted some level of hacking.

SC Reports “Despite 78 per cent agreeing that it is wrong, a quarter have tried to surreptitiously use a victims’ password, with almost half saying that they were doing it ‘for fun’. However 21 per cent aimed to cause disruption and 20 per cent thought they could generate an income from the activity. Five per cent said that they would consider it as a career move.

Of those who had tried hacking, a quarter had targeted Facebook accounts, 18 per cent went for a friend’s email, seven per cent for online shopping sites, six per cent for their parent’s email and five per cent breached the school website. A bold three per cent had honed their skills enough to aim much higher with corporate websites under their belts.”

Children’s hacking is kids playing. Hacking is replacing dodge ball. Kids today don’t know what it means not to have the Internet. I see more articles talking about how to get your kid outside and away from the computer. Part of the problem is kickball got out a lot of the childhood angst and pent up energy out of their systems. Now they funnel that energy into using technology. For good and for bad. Kids are mischievous too. And given the opportunity will break, steal or deface whatever is in their path. I was 15 once too; but I was an Angel.

Protect your identity.

1. Get a credit freeze and follow the steps for your particular state. This is an absolutely necessary tool to secure your credit. In most cases, it prevents new accounts from being opened in your name. This makes your Social Security number useless to a potential identity thief.

2. Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano Identity Theft Speaker discussing Criminal Hackers on Fox News

Cold, Dumb and Drunk Intruder Crawls in Dudes Bed

/in , /by

This is precious. An intoxicated 33 year old Pennsylvania man had 2 too many. An apartment resident was sleeping when he felt someone crawl into bed next to him. Thinking it was his girlfriend he called out her name, something like “Honey is that you?” The drunk dude says in a deep male voice “No it’s not. 

OMG! CAN YOU IMAGINE???!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

 The resident quickly jumped out of bed and grabbed his trusty aluminum bat until the police arrived. WOW! 

When I read stories like this I cringe. I understand what it means to be drunk and do stupid things, (I saw it in a movie once.) But to actually go into someone’s house and seek out their bed and crawl into it with someone else in it!!!!!!!

 What makes me cringe even more than the drunken guy is the baseball bat swinging resident that DOESN’T LOCK HIS DOORS.  Do you see the hypocrisy in not locking your doors, but having a bat near your bed? And the irony of not locking your doors and a guy crawling into your bed. The whole story stinks of dumb.  

Lock your doors. Require a peep hole on your door. In an apartment ask if you have permission to install an in-apartment home security system with motion detectors. Require it. Wireless home security systems are non-invasive and not expensive.

Robert Siciliano personal security expert to Home Security Source discussing Home Security on NBC Boston.

Police Looking into Tax Return Scam

/in /by

Leading up to April 15th, I’m going to keep reminding you it’s that time of the year again, yes, Tax Scamming Season. This is when identity thieves come out of the woodwork and steal from good standing Americans who do the right thing and pay their taxes.

There are no shortages of bad people looking to take from good people. “Police officials say the case is still under investigation after it was first reported late last week, but are not sure whether the fraud occurred in that fake W-2 forms were submitted or whether real W-2 forms were submitted under fake identities.”

Tax scams can happen in a number of ways. The goal is always to get the victims refund. Every January we get W-2 forms in the mail. As an employee you receive a W-2 from the employer, which is a wage and tax statement for the year. Self employed people who do contract work may receive 1099s.

Scammers can steal these documents from your mailbox and use them as you would to file taxes under your name. Depending on what you claim, or how many dependants you may have, your refund can be substantial, which makes it a nice target to an identity thief.

Robert Siciliano personal security expert to Home Security Source discussing Tax Scams on Fox News

Report 1.8 Billion Cyber Attacks Per Month

/in , , , , , /by

You read that right. While the US government sits high on its perch, snipers are taking aim 60 million times a day. The Senate Security Operations Center alone receives 13.9 million of those attempts per day.

The US National Security Agency is probably the most sophisticated group of security hackers in the world. Many will argue this point. The fact is, without NSA, US STRATCOM, which directs the operation and defense of the military’s Global Information Grid, and US CERT, attacks on our critical infrastructures would be successful. We’d be living in the dark, telephones wouldn’t work, food wouldn’t be delivered to your supermarket and your toilet wouldn’t flush.

“Like in the rest of the world, the attacks are increasingly targeted and using application flaws, including Office and Acrobat. “In the last five months of 2009, 87 Senate offices, 13 Senate committees and seven other offices were attacked by spear-phishing attacks, which appeared as e-mail messages to staffers, urging them to open infected attachments or click on bad links.” No matter how good their defenses are, nothing’s 100% effective. Some attacks get through.”

The Adobe Reader and Acrobat is a cross platform application that opens and its the Portable Document Format (PDF) ubiquitous on most PCs. Criminal hackers discovered a flaw that allows for an injection of hostile code into unprotected systems.  Studies show in the last quarter of 2009 as many as 80% of all web-based attacks were directed at PDFs.

Adobe Flash is also vulnerable software becoming standard on most PCs where multimedia is present. The Register reports Adobe advises users to upgrade to Acrobat version 9.3.1 and Reader version 9.3.1, as explained in a bulletin here.

Run Windows Update, Install Anti-Virus, Install Spyware Removal Software, Run Firefox, Secure Your Wireless, Install a Firewall, Use Strong Passwords.

Get a credit freeze and follow the steps for your particular state. This is an absolutely necessary tool to secure your credit. In most cases, it prevents new accounts from being opened in your name. This makes your Social Security number useless to a potential identity thief.

Invest in anti-virus and keep it auto-updated and check out my spyware killer IDTheftSecurty HERE

With your iPhone get my book as an App or go to my website and get my FREE ebook on how to protect yourself from the bad guy.

Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano Identity Theft Speaker discussing Identity Theft Ring Busted on MSNBC

Hollywood Burglars Dubbed the “Bling Ring”

/in /by

Lots and lots of people are looking for their 15 minutes of fame. Some get on reality TV shows, others rescue someone from being hit by a speeding train. But then there are the ones who break into celebrity homes.

Victims include Paris Hilton, Lindsey Lohan, Orlando Bloom, Megan Fox and others. A half dozen teens from a hoity toity suburb of LA fancied the celeb lifestyle and considered themselves part of the “in” crowed. There was only one problem, they weren’t celebrities.

But they lived the celeb lifestyle by hanging out in all the clubs, staying up all night and doing drugs. Their thirst for drugs led to the need for more money to pay for those drugs. So they started to steal. They first started to break into cars. That was their “gateway” felony which led to breaking into homes.

However, celebrity also meant all the material items that go with money. They needed the same designer bags and clothing as their idols. They wanted exactly what the rich and famous owned and wore, what better way to get them than steal from the celebs they admired. So they did just that. They spent time on the celebrity gossip sites looking at celeb pictures and picking out items they wore to steal from them.

Their methods were simple. They tracked their victims by using social media, Facebook and Twitter. They know when they were home and when they were away.  They even used Google Earth to scope out their homes.

They would approach a home and knock on the door and ring the bell. If nobody was home they’d jiggle the door knob. It was reported that Paris Hilton didn’t lock her doors. When a door was locked they looked under the mat for a key and often found one.

Police estimated that from October 2008 to August 2009, the “Bling Ring” stole more than $3 million in jewelry and high-end designer brands.

Lindsey Lohan had a video security camera system installed that caught the thieves on video. It was that film that led the arrest of the Bling Ring members. Now they are all famous.

It’s painfully obvious that the victims in these crimes didn’t do enough to protect themselves. Some locked their doors and other didn’t. Some had security cameras and others didn’t. But NONE had an home alarm system that activated when the home was broken into. A home alarm system would have prevented most of these crimes.
 

I’ll bet there were other celebrities targeted who didn’t make the story, because their home wasn’t burgled, because they had alarms.

Robert Siciliano personal security expert to Home Security Source discussing Home Security on NBC Boston.

National Identity Card Focuses on US Workers & Immigrants

/in , , , , /by

Robert Siciliano Identity Theft Expert

The Wall Street Journal reports under the potentially controversial plan still taking shape in the Senate, all legal U.S. workers, including citizens and immigrants, would be issued an ID card with embedded information, such as fingerprints, to tie the card to the worker.

There are too many forms of identification floating around right now that lack standards and overall security. The Social Security card is currently our national identification card that’s not supposed to be used for identification. From a NY Times article from 1998 it states: WASHINGTONFOR many years, Social Security cards carried an admonition that they were to be used ”for Social Security and tax purposes — not for identification.” That assurance rings hollow today. Congress has authorized so many uses of the nine-digit number, and Americans use it for so many unauthorized purposes, that it has just about become a national identifier. Today your social is connected to everything.

Security Management reports that all workers and mariners attempting to access secure maritime and port areas nationwide will have to flash a government-approved Transportation Worker Identification Credential (TWIC), which includes a biometric identification card before entry. HSPD-12, or Homeland Security Presidential Directive 12, set universal identification standards for federal employees and contractors, streamlining access to buildings and computer networks. Then there is old and new versions of the passport, as many as 200 forms of ID circulating from state to state, plus another 14,000 birth certificates and 49 versions of the Social Security card.

Government has tried hard to create identification that will once and for all standardize the process under the REAL ID Act which is most likely going to be squashed under Homeland Security Secretary Janet Napolitano who is proposing the repeal of the Real ID Act.

“A person familiar with the legislative planning said the biometric data would likely be either fingerprints or a scan of the veins in the top of the hand. It would be required of all workers, including teenagers, but would be phased in, with current workers needing to obtain the card only when they next changed jobs, the person said.”

Many oppose biometrics and New Hampshire has even proposed legislation against it. My money is on biometrics creeping into our lives in the form of a national ID. Like it or not biometrics are coming.

Meanwhile, until there is assigned accountability, which means nobody can pose as you and work as you and open new accounts as you, protect your identity.

Get a credit freeze and follow the steps for your particular state. This is an absolutely necessary tool to secure your credit. In most cases, it prevents new accounts from being opened in your name. This makes your Social Security number useless to a potential identity thief.

Invest in anti-virus and keep it auto-updated and check out my spyware killer IDTheftSecurty HERE

With your iPhone get my book as an App or go to my website and get my FREE ebook on how to protect yourself from the bad guy.

Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano Identity Theft Speaker discussing Social Security numbers on Fox News

Watch Out For Caller ID Spoofing

/in /by

Caller ID spoofing is the practice of causing the telephone network to display a number on the recipient’s caller ID display which is not that of the actual originating caller. Similar to e-mail spoofing which can make it appear that a message came from any e-mail address the sender chooses, caller ID spoofing can make a call appear to have come from any phone number. Most people trust caller ID and are unaware of caller ID spoofing. This is obviously a flawed system ripe for fraud.

In Oklahoma, the anti-caller ID spoofing act has passed the Oklahoma House and now heads to the state Senate. The bill would protect people from getting scammed by people using fake caller ID. The Washington Post reported the “Truth in Caller ID Act of 2007” would make it “unlawful for any person within the United States, in connection with any telecommunications service or VOIP service, to cause any caller identification service to transmit misleading or inaccurate caller identification information with the intent to defraud or cause harm.”

Caller ID Spoofing is often sold as a tool for law enforcement to disguise them when trying to nab suspects. If someone is trying to evade child support caller ID spoofing may be a legitimate tool. Someone who suspects a cheating spouse may use it to do their own investigations. Doctors on call wanting to block their number may need to change a caller ID if the client requires a phone number to show when calling.

The fraudulent uses for caller ID spoofing far out weigh legitimate ones. Anyone can pose as law enforcement, a charity, government agencies, credit card companies or whatever the imagination can bring. Abuses of this technology have raised hackles with government officials.

Any time your phone rings be suspect. Don’t automatically trust what shows on caller ID. No matter what caller ID says, never give out personal information over the phone. If someone is calling          because you won something or stand to lose something, tell them you’d be happy to discuss, but that you will call them back. My suggestion is to go online and search out a legitimate number and call to confirm the details.

Robert Siciliano personal security expert to Home Security Source discussing Identity Theft and Home Security on TBS Movie and Makeover.

Cell Phone Spying Nightmare: ‘You’re Never the Same’

/in , , , , , /by

Robert Siciliano Identity Theft Expert

Technology makes it easier to connect with the people in your life, but it can also enable others to connect to you without your knowledge.

The engine behind this is RATs, AKA “Remote Access Trojans. RAT’s can capture every keystroke typed, take a snapshot of your screen and even take rolling video of your screen via a webcam. RAT’s covertly monitor a PC generally without the user’s knowledge. RAT’s are a criminal hackers dream and are the key ingredient in spyware. Common RAT’s are the LANRev Trojan and “Backdoor Orifice”.

Now RATs come to mobile phones. When somebody remotely activates your phone, you’re not going to know it and they can use that phone to monitor the conversations in the room you’re in. Your phone could be sitting next to you while you are watching TV, and somebody can actually log into your phone and can actually watch what you are watching on television.

Cell Phone Spying Software is Affordable and Powerful. I worked with Good Morning America (GMA) on this issue.

GMA found thousands of sites promoting cell phone spying software, boasting products to “catch cheating spouses,” “bug meeting rooms” or “track your kids.” Basic cell phone spying software costs as little as $50. Someone can easily install a spyware program on your phone that allows them to see every single thing you do all day long, via the phone’s video camera. GMA spent $350 to get the features that remotely activate speaker phones, intercept live calls and instantly notify you every time a call is made.

A virus, called “Red Browser,” was created specifically to infect mobile phones using Java. It can be installed directly on a phone, should physical access be obtained, or this malicious software can be disguised as a harmless download. Bluetooth infrared is also a point of vulnerability. Once installed, the Red Browser virus allows the hacker to remotely control the phone and its features, such as the camera and microphone. For all you techies who want to take a crack at decoding tricks for defeating SSL on mobile phones see Mobile Security Labs HERE.

If history is any indication of the future, mobile phones, just like computers, will soon be regularly hacked for financial gain. Prepare for mCrime in the form of credit card fraud, identity theft and data breaches.

To protect your mobile phone:

Spyware can be installed remotely or directly on the phone. Never click on links in a text or email that could contain a malicious link to a download.

Always have your phone with you and never let it out of your site or let anyone else use it.

Make sure your phone requires a password to have access. If your phone is password protected it will be difficult to install spyware.

If you suspect spyware on your phone re-install the phones operating system. This can be done by consulting your user manual or calling your carriers customer service to walk you through it.

And protect your identity.

Get a credit freeze and follow the steps for your particular state. This is an absolutely necessary tool to secure your credit. In most cases, it prevents new accounts from being opened in your name. This makes your Social Security number useless to a potential identity thief.

Invest in anti-virus and keep it auto-updated and check out my spyware killer IDTheftSecurty HERE

With your iPhone get my book as an App or go to my website and get my FREE ebook on how to protect yourself from the bad guy.

Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano Identity Theft Speaker discussing Mobile Phone Spying on Good Morning America

How to Spend More Money on Home Security

/in , , , , , /by

Lets face it, if you had it you’d spend it, and what better way than on your families security! In today’s high tech connected world a networked and remotely monitored home security system is the way to go.

Keyless Access: Door locks that require a pincode make it easier to access without fumbling for keys. Many keyless locks are smart and can be set to allow contractors limited one time PIN access.

Remote Control Alarms: For a few extra bucks you can add remote controls to an alarm system that allow you to activate or deactivate from the driveway or online.

Robot Cameras: New and very expensive robotic camera equipped technologies will roam your property taking full day and night video.

Remote Monitoring: Having someone monitor a video surveillance system 24/7/365 is close to having feet on the ground. These same systems come equipped with speakers used to yell at the trespassers.

Bullet Proof: If you’re especially concerned about flying bullets then installing bullet proof glass, doors and shoring up your walls with bullet proof steal is a must.

Panic or Safe Rooms: A safe room provides a space where you can survive a tornado, hurricane or home invasion with little or no injury.  Residents can hide out in a relatively bullet proof, well stocked room equipped with wireless communications and wait for law enforcement to show up.

16 or 32 Camera Surveillance System: Once you go beyond 8 cameras prices start to rise. However 16 or even 32 cameras will provide you with a birds eye view of every single nook and cranny of your home extending into your neighborhood.

Robert Siciliano personal security expert to Home Security Source discussing Self Defense on Fox Boston

Copy Machines Can Store Your Private Info

/in , , , , /by

Robert Siciliano Identity Theft Expert

Today, copy machines, fax machines and many printers are just like computers; they’re smart and they have hard drives or flash drives and can store data that can be extracted. Peripherals in the olden days, just like when dot-com was a significant part of a person’s stock portfolio, were dumb.

Because of the increased demand of networked technologies, manufacturers of all these peripherals met the demand and built them so they can be easily accessed by everyone in the office.  These same peripherals are often wireless too.

The issue here is that these devices, sometimes, but aren’t always treated with the same considerations as a computer would have.  PCs are often locked down, access is limited and the data might be encrypted. Worse, when someone upgrades to a new PC, the old PC’s data is supposed to be removed, reformatted etc. This procedure is often overlooked on a copier/printer/fax.

Consider what kind of data is copied at your doctors, banks, mortgage broker and accountants office. Generally, there might be personal identifying information that can be used to create a new accounts or take over exiting accounts.

Where do old peripherals go? Many of them head to warehouses to be resold. Others end up on eBay. A quick search on eBay results in 7845 copiers for sale and 1130 used ones. If I can buy an ATM off Craigslist with over 1000 credit and debit card numbers on it, how much data do you think we can get from used copiers?

All the more reason to protect your identity.

1. Get a credit freeze and follow the steps for your particular state. This is an absolutely necessary tool to secure your credit. In most cases, it prevents new accounts from being opened in your name. This makes your Social Security number useless to a potential identity thief.

2. Invest in anti-virus and keep it auto-updated and check out my spyware killer IDTheftSecurty HERE

3. With your iPhone get my book as an App or go to my website and get my FREE ebook on how to protect yourself from the bad guy.

4. Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano Identity Theft Speaker discussing copy machine scams on CBS Boston