Posts

10 Personal Safety and Security Tips

/0 Comments/in , , /by

Fundamentals: Body language is 55% of communications. That’s your walk, posture, facial expressions and eye contact. Awareness is being alert to your surroundings at all times. Intuition is when the hair on the back of your neck stands on end. Voice tone and pitch equal 35% of communications. The way a person communicates physically and verbally can determine whether or not a predator deems you a good target.

Prevent Abductions: When returning to a parked car, scan the area around your car, be alert to suspicious activity. Be aware of vans. Abductors and rapist open up the side doors and pull in their victims.

Never Use Your Keys As A Weapon: Contrary to popular belief your keys are not a good weapon. Using your keys as a weapon can injure your hand, the keys can break, you lose your “key to safety”, and you lose access to your car and home which are safe havens. Unless it’s a LARGE key. Then it’s a good weapon.

Prevent Home Invasions: You tell your children not to talk to strangers, so why do you open the door to a total stranger? Home-invaders pose as delivery people, public workers, or people in distress. Install peepholes, talk through the door. Under no circumstances do you open the door unless you get phone numbers to call their superiors. If someone is in distress tell him or her you will call the police for them. Install security cameras and a home security system.

Safety On The Streets: One dollar bills and change in an easily accessible pocket. Then if someone tries to rob you, you can throw the “chump change” several feet away. The robber will draw his attention to it giving you time to escape. Do not fight over material items.

What To Do If Attacked: Fighting, running and screaming are all options. Remember: You are worth fighting for!

Safety In Your Car: In the event of a minor accident, stop only in a well-lit area. Carjackers often provoke such “accidents” just to get a victim to stop. DO NOT stop on a deserted, dark street. Drive to a police station or a gas station. Use a cell phone and call 911.

Home Safe Home: Consider a second line or a cell phone in your bedroom. That’s because burglars often remove a telephone from the receiver when they enter a home. Of course, an alarm system activated while you are sleeping will prevent a home burglar from getting this far. Newer home alarms have cellular options, a safeguard even if the phone lines are cut.

Vacation/Business Traveler Safety: Be suspicious of a call from the hotel desk just after checking in requesting verification of your credit card number “because the imprint was unreadable.” A thief may have watched you enter the hotel room and called from the guest phone in the lobby. Never open your hotel room to anyone.

Telephone Security: Never give personal information over the phone unless you initiate the call. Do not click on links in text messages asking you to update banking information. Set your mobile to require password access in case it’s lost or stolen.

Robert Siciliano personal security expert to Home Security Source discussing home security and identity theft on TBS Movie and a Makeover.

Self-revelation Can Help Assemble a Social Security Number

/0 Comments/in , , , , , /by

I am not done nor will I ever be done sounding that alarm, ringing that bell and informing you about how ridiculous social media is. I was asked in a radio interview today what it will take to get people to recognize they are sharing too much data. In a word, tragedy. When a home is broken into, they install a home security alarm. When someone is mugged, they take a self defense course. When planes fly into buildings, we get frisked. Being smart is understanding risk and being proactive.

Most people are smart enough to NOT give out a social security number on Facebook. However between what you say, your family, friends and colleagues say and post, your profile is becoming more complete every minute. Even your mom or wife posts her name as “First Maiden Last” because she saw someone else do it and it made sense to allow her old friends/flames to find her.

But today with all this personal information readily available there are now rumblings from academia that they have cracked the code and have assembled technologies to decipher all this information and turn it into hard decipherable data that leads to opening new accounts in your name.

The New York Times reportscomputer scientists and policy experts say that such seemingly innocuous bits of self-revelation can increasingly be collected and reassembled by computers to help create a picture of a person’s identity, sometimes down to the Social Security number. So far, this type of powerful data mining, which relies on sophisticated statistical correlations, is mostly in the realm of university researchers, not identity thieves and marketers.”

SearchSecurity.com reports that researchers at Carnegie Mellon University have developed a reliable method to predict Social Security numbers using information from social networking sites, data brokers, voter registration lists, online white pages and the publicly available Social Security Administration’s Death Master File.

Originally, the first three numbers on a Social Security card represented the state in which a person had initially applied for their card. Numbers started in the northeast and moved westward. This meant that people on the east coast had the lowest numbers and those on the west coast had the highest. Before 1986, people were rarely assigned a Social Security number until age 14 or so, since the numbers were used for income tracking purposes.

From this point on I’d suggest locking down social media profiles in a way that they are not publicly accessible. Prevent anyone (except those very close to you) from seeing and reading everything about your daily activities, who you associate with and all the names and contact information of all your friends and family.

Robert Siciliano personal security expert to Home Security Source discussing cracking the code and wireless security on Fox Boston.

Be careful Your PC Isn’t Held for Ransom

/0 Comments/in , , , , , , /by

Computerworld reported that a hacker threatened to expose health data and demanded $10 million from a government agency. The alleged ransom note posted on the Virginia DHP Prescription Monitoring Program site claimed that the hacker had backed up and encrypted more than 8 million patient records and 35 million prescriptions and then deleted the original data. “Unfortunately for Virginia, their backups seem to have gone missing, too.” “Uh oh,” posted the hacker.

Holding data hostage is sometimes done using “ransomware” Otherwise known as “ransom software.” The software gets on your PC as the result of you downloading an infected attachment or clicking the links in the body of an email. Sometimes you can get ransomware simply by visiting a website in what’s called a “drive-by.”

Once your PC is infected with ransomeware it locks down your files in a way that prevents you from accessing them and gives the bad guy full control of your machine.  Sometimes the virus poses as a “Browser Security and Anti-adware” security application whose license has expired. Windows machines infected by the malware are confronted by a full-screen message that poses as a Windows error.

This type of an exploit not common, but it’s definitely a rising star in the malware community. The best way to avoid this is to make sure your PC is updated with the most current version of your operating system, and anti-virus definitions. It’s also very important not to click on links in the body of an email or visit rogue websites that may have viruses that inject themselves into your browser.

Robert Siciliano personal security expert to Home Security Source discussing Ransomware on Fox Boston.

Dumb Criminals – The Best Way to Get Caught? Call 911!

/0 Comments/in , , , , /by

In Daytona Beach, Florida, the dumb criminal capital of America, two Florida teenagers are facing charges after breaking into cars. Apparently one teen’s phone was programmed to call 911 and the phone was smarter than the teens and called (maybe accidentally) 911 to inform law enforcement of the crimes taking place.

Dispatchers from the police department listened in at the duo discussing the cars they were breaking into and the stuff that was worth taking. Seems some info was given that directed law enforcement to the parking lot of a local nightclub where the teens were apprehended. Karma man karma.

Meanwhile, another Cro-Magnon Mickey-the-dunce in Utah stole 2 phones from a convenience store. In the process he left a piece of paper with an address he was going to. So now cops had a lead. But it gets better. The store clerk reported the theft and gave a description of the man to police.

Moments later as Mickey was driving and looking for the address, he pulled over to ask a cop for directions. Immediately the cop recognized the address and the dunces description and arrested him. Karma man karma.

And in an amazing criminal history that spans 55 years, an 80-year-old woman, known as the “Beverly Hills Burglar,” gets three years for breaking into a medical building.  Her rap sheet was well known in Beverly Hills as she’s been to the clink in the past. She was quoted saying “I’m 80 years old,” she said. “I don’t think I’ll ever come back – except I’m going to die and be in the morgue.”

That’s amazing and sad all at the same time.

Lock up. Don’t be victimized. And don’t be dumb.

Home Safety Tips:

1. Install outdoor lighting on timers and motion sensors.

2. Make sure your home has a “lived in” look.

3. Use indoor timers for lights, TVs and automatic shades.

4. Install security cameras that can be remotely monitored.

5. Install a home alarm system monitored by an alarm company and the police.

Robert Siciliano personal security expert to Home Security Source discussing home security and identity theft on TBS Movie and a Makeover.

Beware of Door to Door Conmen

/0 Comments/in , , , , /by

There are bazillion scammers using a bazillion ruses to get your money. The lowest of the low are the ones who scam the elderly. These same conmen often do it door to door and can be very dangerous.

Con men posing as city employees seem to be the most effective scam. In one incident 2 men posed as city workers who were trimming trees in a neighborhood. One man would knock on the door and schmooze the resident into allowing him into the home. He would then coax the person into the back area of the home while his partner would sneak in the front door.

Once the second man was in he’d rob the person. Often they’d head straight for the bedroom and grab jewelry boxes and look for wallets and pocketbooks.

In another scam a man would go door to door and offer his labor for gardening and yard work for elderly. He would do the job he was hired to do at an agreed fee. But when the job was over he would request a significant amount of money that wasn’t previously discussed. In this case he would escalate the situation to yelling and threats.

He was so bold he would drive the person to an ATM machine to get the money.

In both of these situations the home owners were lucky the situations didn’t escalate to physical violence. It’s unfortunate that elderly are preyed upon in this way. If you have an elderly parent or neighbor, keep a close eye on them and watch out for them. Unfortunately with some people you can tell them to be careful and not open the door to strangers until you are blue in the face and they may not listen.

If you have an elderly person you care for and they live away from you I’d recommend installing a video security system in their home. Today’s surveillance systems can be remotely monitored from any PC in the world. I’m able to monitor mine from my iPhone. You can set an alarm on individual cameras to alert you to activity.

Consider a home alarm system too. Make it real easy for them to activate and deactivate using a remote control. Have the alarm company call them first, the police second and you third when an alarm goes off.

Robert Siciliano personal security expert to Home Security Source discussing Home Invasions on Montel Williams.

Is Your Facebook Friend a Fed, or Sex Offender?

/1 Comment/in , , , , , , /by

When you think about it, Facebook is weird. Where else in the world do you call people who you don’t know your friends? I probably have about 10-15 friends. Most are acquaintances and the others 400 are total strangers.

There’s a lot of excessive trust in the Facebook world. People have entirely dropped their sense of cynicism when logged on. They have no reason to distrust. People who are your “Friends” are generally those who you “know, like and trust.” In this world, your guard is as down as it will ever be. You are in the safety of your own home or office hanging with people all over the world in big cities and little towns and never have to watch your back.

Reports of sex offenders on social media abound. Do you know who your child is befriending?

Many of the “strangers” came into my life as a result of what I do, and I appreciate and accept them for connecting. But I know plenty of other people who don’t write or do media and might be in college, and have 2000 friends! And they know 5 of them! Social media is weird.

Employers, potential employers and others will often friend someone for the sole purposes of getting a solid profile of that person to determine if they want to hire them. Now the AP reportsU.S. law enforcement agents are following the rest of the Internet world into popular social-networking services, going undercover with false online profiles to communicate with suspects and gather private information, according to an internal Justice Department document that offers a tantalizing glimpse of issues related to privacy and crime-fighting.”

I don’t think there is anything wrong with this; it’s a good thing actually. There is a question of legality and whether or not government agents can pose as someone else and lie, which often violates the terms and conditions of the sites themselves.

But the fact remains, there are bad people out there and they need looking after. And if it means an FBI agent posing as someone to catch the bad guy, I’m all for it. So next time you get a friend request from a stranger, they might be someone checking up on you. Guilty conscience? Hope not.

Robert Siciliano personal security expert to Home Security Source discussing social media security on Fox Boston.

New Facebook Phish Steals Passwords

/0 Comments/in , , , /by

I got an email from a colleague today:  Subject: “My Facebook account got hacked.

I wonder if you could give me some guidance here –

I received the following email from Facebook:

——————————————————————–

From: Facebook [XXXXXX@facebook.com]

Sent: Wednesday, March 17, 2010 5:58 AM

To: XXXXXXXXXXX

Subject: Security Warning From Facebook

Dear XXXXXXXXXX,

We have detected suspicious activity on your Facebook account and have temporarily suspended your account as a security precaution.

You can regain control of your account by logging into Facebook and following the on-screen instructions.

Please be sure to visit the Facebook Help Center (http://www.facebook.com/help/) for further information regarding these security issues and let us know if you need assistance.

Thanks,

Facebook Security Team

————————————————————————-

Reuters reports Hackers have long targeted Facebook users, sending them tainted messages via the social networking company’s own internal email system. With this new attack, they are using regular Internet email to spread their malicious software.

McAfee estimates that hackers sent out tens of millions of spam across Europe, the United States and Asia since the campaign began on Tuesday.

Dave Marcus, McAfee’s director of malware research and communications, said that he expects the hackers will succeed in infecting millions of computers.

“With Facebook as your lure, you potentially have 400 million people that can click on the attachment. If you get 10 percent success, that’s 40 million,” he said.

McAfee says:

Tip 1: Do not open the attachment. Promptly delete the Facebook scam email.

Tip 2: Consumers can protect their computer from this type of cybercrime by installing a complete security software suite that includes anti-virus, anti-spyware, and firewall protection.

Tip 3: Consumers should make sure they are running the most up-to-date security software and their subscription is active.

Tip 4: If consumers are unsure if their security software vendor has an update for this type of malware, McAfee recommends that they check for and install any available updates, then immediately run a full scan.

Robert Siciliano personal security expert to Home Security Source discussing Facebook hacking on CNN.

 

If You Care About Privacy Don’t Do These 8 Things

/0 Comments/in /by

I don’t care as much about privacy like some people do. My concern is personal security. If I was concerned about people knowing “me” stuff then you wouldn’t be reading this because I’d live in a cave in Wyoming with no Internet and I’d blow glass all day. But personal security is something I deeply care about. The following are both privacy issues and a little personal security in there too.

Don’t throw away anything that can be used against you. For privacy and security reasons consider how someone could use something in your trash against you. I never toss anything with a name or account number on it and I’m careful not to toss DNA related stuff either. And I know people are saying that’s crazy. If it can be planted at a crime scene its flushed.

 Don’t publish your phone number. Many data aggregators use phone company records to index you. Without a published phone number they have a harder time indexing your name associated with an address. My home phone number is under a pseudonym and it’s also under a business name.

Don’t allow your name to be searchable on Facebook or be on Facebook at all. I broke that rule. When logged into Facebook go HERE to change it.

 Don’t broadcast your location. Location-based services (LBS) are information and entertainment services, accessible with mobile devices through the mobile network and utilizing the ability to make use of the geographical position of the mobile device. Twitter, Facebook and others are getting in the game with LBS.  Carnegie Mellon University compiled more than 80 location services that don’t have privacy policies or collect and save all data for an indefinite amount of time. I see this more as a personal security issue.

Don’t post videos on Youtube that reveal your personal life. I have a business Youtube page and a personal. The iPhone has a direct connection to Youtube and it’s a blast taking video and quickly uploading. However, my personal page is under another name and all the videos are private. The only way to see them is to login.

Don’t forget to read privacy policies. I don’t like reading privacy policies because they are long winded and confusing. But not knowing what companies may do with your data is not good.

 Don’t use your real name as a username. I broke this rule a few hundred times. It’s a privacy issue when you don’t shield your name. It’s a personal security issues not to grab your name allowing someone else to get it and use it against you. Get all of them at Knowem.com.

Don’t put your name on your mailbox or on a plaque on your home. All the postal carrier needs is a street number. There’s no reason to plaster your last name on your home either. I see this more as a personal security issue. But there are certainly privacy concerns here too.

Robert Siciliano personal security expert to Home Security Source discussing Location Services on The CBS Early Show.

10 Wicked Inexpensive Ways to Secure Your Home

/1 Comment/in /by

1. Call the cops. Most communities have programs in place where a law enforcement officer will inspect a personal home or apartment and make recommendations based on exiting vulnerabilities. Generally they will make those recommendations within your budget upon request.

2. Install signage. I bought 2 “Beware of Dog” neon signs for $1.98 this week. One for the front door and one for the back door. The same hardware store had “This House is Alarmed” signs for short money.

3. Go to the pet store. Dogs are a great form of home security. A few things I can do without include all the barking, tumbleweeds of fur, financial expense of shots and all the dog doo. Save a few bucks and buy the biggest dog food bowl possible. Get 2, one for the front porch and one for the back. Write “Killer” in permanent marker on it. This gives the impression you have a big dog. You can even buy a barking dog alarm.

4. Get your neighbors to guard your home. Why pay for security guards or lame remote security monitoring when you can have your neighbor Ed keep a keen eye on your property? Start a neighborhood watch program and design it so everyone has a monthly responsibility to work the neighborhood.

5. Make your home seem occupied 24/7/365. When you are away put the stereo or TV on loud enough to hear from the immediate exterior. Buy inexpensive timers and plug all your lamps in.

6. Install motion sensors that make a burglar think they are being watched.

7. Use your existing door locks and LOCK THEM! Or buy better ones and install yourself. Beef up the strike plate, which is the metal plate where the bolt enters the jam. Install 3 inch screws deep into the jam.

8. For short money you can buy a “security bar” that wedges up under your door knob and is also alarmed.

9. Secure your windows so they don’t raise more than 6-10 inches. Install small angle brackets that prevent the windows from going any higher.

10. Get a home alarm system for less than 100 bucks; then a dollar a day. A home alarm is the best protection while you are home and away.

Robert Siciliano personal security expert to Home Security Source discussing Home Security on NBC Boston.

Cold, Dumb and Drunk Intruder Crawls in Dudes Bed

/0 Comments/in , /by

This is precious. An intoxicated 33 year old Pennsylvania man had 2 too many. An apartment resident was sleeping when he felt someone crawl into bed next to him. Thinking it was his girlfriend he called out her name, something like “Honey is that you?” The drunk dude says in a deep male voice “No it’s not. 

OMG! CAN YOU IMAGINE???!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

 The resident quickly jumped out of bed and grabbed his trusty aluminum bat until the police arrived. WOW! 

When I read stories like this I cringe. I understand what it means to be drunk and do stupid things, (I saw it in a movie once.) But to actually go into someone’s house and seek out their bed and crawl into it with someone else in it!!!!!!!

 What makes me cringe even more than the drunken guy is the baseball bat swinging resident that DOESN’T LOCK HIS DOORS.  Do you see the hypocrisy in not locking your doors, but having a bat near your bed? And the irony of not locking your doors and a guy crawling into your bed. The whole story stinks of dumb.  

Lock your doors. Require a peep hole on your door. In an apartment ask if you have permission to install an in-apartment home security system with motion detectors. Require it. Wireless home security systems are non-invasive and not expensive.

Robert Siciliano personal security expert to Home Security Source discussing Home Security on NBC Boston.