1 / 64

Security Awareness: Security Tips for Protecting Ourselves Online

Security Awareness: Security Tips for Protecting Ourselves Online. Friday, May 20, 2011 Brian Allen, CISSP brianallen@wustl.edu Network Security Analyst Washington University in St. Louis http ://nso.wustl.edu/presentations/. Let’s Talk About…. Facebook /Social Networking

magar
Download Presentation

Security Awareness: Security Tips for Protecting Ourselves Online

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Security Awareness:Security Tips for Protecting Ourselves Online Friday, May 20, 2011Brian Allen, CISSPbrianallen@wustl.eduNetwork Security AnalystWashington University in St. Louishttp://nso.wustl.edu/presentations/

  2. Let’s Talk About… • Facebook/Social Networking • Password Security • AV Products • Home Wireless Router Security • Laptop Security • Safe Web Browsing • Phishing Examples • Online Banking • Virus Example and Case Study

  3. Facebook/Social Networking:

  4. Password Security

  5. Parents’ Password Cracked On First Try The Onion News Feb 27, 2002 • REDONDO BEACH, CA – Nick Berrigan, 14, successfully hacked into his parents’ AOL account on the first try Tuesday, correctly guessing that “Digby” was their password. • “They actually used the dog’s name,” said Berrigan, deactivating the parental controls on his AOL account.

  6. Free Password Managers • KeePass– I use this one • Password Safe • Bruce Schneier’sProject • PassPack • An online password manager Commercial Password Manager: • 1Password -”Works great on iPhone and OS X”

  7. Free Antivirus Tools

  8. Antivirus • I look for: • the fastest • update themselves automatically • have an easy to use interface • AVG = http://free.avg.com • AntiVir = http://www.free-av.com • Avast = http://www.avast.com

  9. From CNET.com Editor Reviews AVG Popularity: * Total downloads 227,792,675 AviraAntiVirPopularity: * Total downloads 61,994,231 Avast Popularity:  * Total downloads 60,978,532

  10. AVG Interface

  11. AVG Will Check Every Email

  12. AviraAntiVir Interface

  13. AVAST Interface

  14. Home Wireless Router Tips

  15. Home Wireless Router Tips • Change Default Password • Firewall is on by Default • WPA2, not WPA or WEP • MAC Address Filtering • Leave SSID on • No personal info in SSID like Smith_Family

  16. Change The Default Password

  17. Firewall Is On By Default

  18. WPA2

  19. MAC Address Filtering

  20. Home Wireless Router Tips • Change Default Password • Firewall is on by Default • WPA2, not WPA or WEP • MAC Address Filtering • Leave SSID on • No personal info in SSID like Smith_Family

  21. Laptop Tracking Software

  22. Key Questions to Consider • How hard is it to disable or remove the software? • Who will have access to the collected data? • How many laptops are lost or stolen every year?

  23. LoJack Pros • Very difficult to disable • The company, only with the user’s permission, can log in to: • Take pictures • Erase the hard drive • Will work with police to recover the laptop

  24. LoJack Bios Compatibility Asus Dell Gammatech Getac Gateway General Dynamics HP Fujitsu Lenovo (IBM Thinkpad) Motion Computing Panasonic Toshiba

  25. LoJack Cons • Bios compatibility does not include Macintosh • 40% student machines are Macs • Most Expensive - $49 per laptop • The company can get access into laptops, although it is only to be initiated by the owner after it is reported stolen

  26. Laptop/USB Encryption • USB Hardware Encryption – IronKey $$$ • Laptop/USB Encryption – TrueCrypt (Free!)

  27. Safe Web Browsing

  28. Four OS Security Tips • Make sure the operating system has: • Update automatically • Firewall turned on • All accounts have strong passwords • Up-to-date Anti-virus tool

  29. Link Security Tips • Don’t click links or open attachments in emails. • If you have any doubt, get confirmation directly from the sender. • Be wary of messages that include attractive offers or urgent requests. • Watch out for links that require you to immediately provide a login and password. • Type the URL directly into Google.

  30. Browser Security Tips • I use Firefox as myregular browser. • Firefox will automatically update itself. • Firefox 3 and 4 have Phishing and Malware Protection on by default. • Use the Add Block Plus Firefox Addon.

  31. The Top Firefox Addon (By Far)

  32. Without AdBlock Plus

  33. With AdBlock Plus

  34. Phishing Examples

  35. Phishing Email

  36. Spear Phishing Example <http://michaelkellett com/ez/wustl.html>

  37. Online Banking

More Related