Security consultant needed
![[Post New]](/jforum/templates/default/images/icon_minipost_new.gif){kind=icon}
Anonymous
|
I am absolutely drowning in passwords and security alerts and dealing with new log in procedures everywhere. I'm doing my best to understand what best practices are but I feel too old for this.
Are there reputable individuals who will work with me BEFORE something bad happens, to help me figure out what safety steps I should be doing and taking online? I am a moderate income person so I am just looking for a one time consultation. I don't need links to a website with helpful tips; I need someone like a professional organizer who can talk me through things. |
Anonymous
| Just do this https://1password.com/ |
Anonymous
|
Just don't use things like password123 and use a variety of passwords.
Most websites these days have pretty strict standards so you can't. |
Anonymous
| Make sure to have two factor identification on all devices and websites that allow it |
Anonymous
|
Right - here's the thing: I'm old, I'm exhausted with caregiving, and I'm overwhelemed.
Tips that start with "Just" and "Make sure you have..." are too much for me. How the Eff do I get two factor authorization on everything? My cell phone is full off apps I don't understand already. How many more apps do I need? What happens if my cell phone is hacked? What happens if I lose the password to my email and can't reset it because of some problem? It's too much and I need help! |
Anonymous
|
Question for OP: are you a high-value target, or a normal-ish person? This makes a difference.
What do these usernames and passwords protect? If they protect you (e.g. bank accounts), then definitely use unique passwords for everything and store them securely. Make them at least 8 characters long (16 is much better) and use multi-factor authentication when possible. Use random charactes, not words. If these are just accounts that protect other people (e.g. logins to read some newspaper online or download some piece of free software, with no financial or personal data being protected), then just use one generic password for all of them. For a truly high-value target, it would be best to use a separate and isolated computer for access to sensitive accounts. Also, use disk encryption on laptops (or anything portable) and destroy all hard disks/SSDs from laptop and desktop computers when decommissioning them or upgrading your storage. Shred all cell phones, too, when replacing them. Don't let your data fall into the wrong hands. Choose any "security questions" carefully--don't use "mother's maiden name." (I work in information security, but don't deal with this sort of thing specifically. These are just some thoughts that immediately come to mind. And, yes, there is probably a market for a "personal security consultant" for high-value targets, but I'm not sure where one would find such a person.) |
Anonymous
| How much money do you have to spend on this, OP? If you have a lot, find an IT security firm on Google, ask for their references, and retain them. |
Anonymous
| What email do you have? Google? That can be linked to a phone number if you forget your password. |
Anonymous
|
I am a very modest income person.
I already use LastPass. But I don't know for sure - is it OK to log in at work and use work wifi (I teach at a school) to use LastPass? Is it OK to use my cell phone to log in to my bank when I am just out and about? It seems like I'm getting mail daily telling me there's been yet another security breach. Everyone's switching to these 2 factor verification things, and telling me to download apps on my phone and just... it's getting so freaking complicated. |
Anonymous
I have a work Google account and a personal Google account. I also have a Microsoft email account that was linked to me HOME phone not a CELL phone and when they try to send me a text on my home phone for 2 factor authentication it doesn't work. Because it is a home phone. Someone apparently tried to log in to my microsoft email in another state and that set off a security alert, but I can't do anything about it because they are trying to reach my home phone (landline) not my cell phone. So probably I set up the Microsoft email a million years ago when people still used home phones, and probably at some point I should have updated that? That's the kind of thing I mean - I need an organizer to take me through all my accounts and make sure everything is as it should be. |
Anonymous
$400 maybe? An IT Security team sounds like they will laugh at me. I need a person who is just someone who helps regular people! |
Anonymous
What if you just let the microsoft email die? Do you need it? |
Anonymous
Ask the IT person at school. They'll probably make you feel much better about your accounts and will refuse to take your money. |
Anonymous
Ha ha ha! No, I can't ask the IT person at school - she covers 8 schools and we barely see her for work related issues! |
Anonymous
Yeah - it is my primary account! OMG I have so many things linked to it. |