5 Ways to Secure Your Smartphone in 2020

With the ever-increasing use of computers and mobile devices and the widespread proliferation of computer networks, there are countless opportunities for cybercriminals to do their dirty work. These people are not easy to pin down. More often than not, they’re working in a clandestine manner. They can be anywhere and can strike at any time. And they’ve usually very, very smart.

For those of us who lead companies that combat this kind of activity, it’s a constant challenge to develop tools and measures that successfully protect your data. Now that we’ve turned a corner into a new year, I’d like to share with you five tips for keeping your smartphone secure.

Use a screen lock.

We live with our mobile devices and count on them to help us connect with people, stay on top of things, run our businesses, and do all sorts of personal tasks. Because of this, we want them to always stay in tip-top shape. That said, you might be surprised by how many people don’t use a screen lock to secure their phones. Whether your phone’s lock can be opened by a difficult-to-guess password or your unique thumbprint, it’s worth it to take this extra measure to keep out those who might pick it up and attempt to access your data when you’re not paying attention.

Install security software.

Smartphones are susceptible to cyber attacks, and it’s expected that this activity will increase in the months ahead. The last thing you want is to open your mail or a social media app and learn that someone, possibly even halfway around the world from you, has stolen your identity or accessed your information. Security software can help prevent this. Download it, install it and activate it today. You’ll be glad you did.

Back up data on a regular basis.

Have you ever had files that were on your smartphone one minute and somehow gone the next? I think everyone has lost photos or other items at one time or another. This won’t be a problem if you take an extra few minutes to back up your data on a regular basis. The good news is that it’s become easier to do this. Often, this can be accomplished by simply connecting your phone to your computer and transferring files. Now, you can also save your phone photos to a small external drive that plugs into your phone. It’s fast and easy, and worth the effort.

Don’t click on suspicious-looking texts.

It’s become routine to provide our cell phone number to companies with which we interact regularly or do business. Text messaging has become the new e-mail, and texts are often used today as part of security verification for some online transactions. That said, don’t automatically trust every text message you receive, especially if it contains a link. If you’re not 100 percent sure that a message you receive is from someone you know, be safe and don’t click. Delete instead.

Update your operating system and apps regularly.

If you haven’t been doing this, you may be surprised one day to click open your updates folder and see dozens of apps that have available updates. It’s smart to update your apps as often as the providers let you know that they’re available. In many cases, the updates contain updated security features that you’ll want to have on your phone.

Have a great new year and stay secure!


Password Fatigue: What It Is and How to Beat It

According to The 2019 State of Password and Authentication Security Behaviors Report, the average person spends almost 11 hours each year entering and resetting online passwords. As we create more and more profiles and accounts and live our lives online, it’s no wonder that so many people suffer from what’s known as “password fatigue.”

Password fatigue describes the feeling of annoyance and stress people feel with having to craft, remember, and enter tens or even hundreds of passwords at work or school and in their personal lives. Mobile devices have made password fatigue even stronger, as typing on touch screens can be difficult for some users.

As a result, many users choose the simplest passwords possible and often use the same login credentials across numerous accounts. Many sites require passwords to meet criteria like length, numbers, capitals, and letters. Unfortunately, though, hackers have taken advantage of this fatigue with breaches to some of the world’s largest systems. Even worse, a study by Norton found that 40 percent of users don’t bother to create complex passwords or change their passwords regularly.

So, how can we beat password fatigue while keeping sensitive data secure?

On an individual level, commit to creating more complex passwords and changing them often. You can also use a password management software that securely stores all of your passwords in one place, accessible by entering just one master password. Remembering one password is much less tiring and stressful than keeping track of hundreds.

Identity and access management (IAM) professionals are also constantly coming up with innovative alternatives to traditional password login systems. More companies are beginning to adopt two-factor authentication, although it is still far from the norm. Some in the IAM industry believe that biometrics will replace passwords in the future. Fingerprints and face recognition would both strengthen data security and reduce password fatigue by requiring a simple touch or look.

We may even see the implementation of physical security keys to protect data. At work or school, you would receive a device to insert into your computer, which then gives you access to your documents and other information without having to enter any login credentials. When the device is removed, nothing can be accessed. While this strategy is not foolproof, in cases when the key is lost or stolen, for example, it could be the future to eliminating password fatigue completely.

Reddit Security Breach and Other Forum Digital Security Breaches

On Wednesday, August 1st, Reddit announced that it had uncovered a data breach, according to NBC News. Hackers were apparently able to access a database containing email addresses linked to user accounts, including email addresses from some current accounts as well as a 2007 database backup that included old passwords that had been “salted and hashed” (in layman’s terms, they were scrambled for digital security protection).

Hackers were also reportedly able to access email addresses and public and private messages in the old database, Mac Rumors and other outlets reported.

Reddit reportedly sent an email to all affected users, which was mainly people who joined Reddit in 2007 or before. That’s a great proactive step, and it’s certainly better for those who might have been affected by the security breach to know sooner rather than later.

But this breach is clearly very serious, especially for a site that allows users to be fairly anonymous in their correspondence if they choose to be. It is possible that a database of emails connected to Reddit usernames could make it easier to link anonymous accounts to people’s identities, NBC News pointed out.

So what should you do if you were impacted by the Reddit security breach, or if this ever happens on another online forum you’re a member of?

The truth is, you can’t just delete your Reddit account and hope for the best. The information is out there, but there are steps you can take to protect your account on the site or on any sites where this could happen (and really, it could happen anywhere).

Reddit is recommending that users who are using passwords similar to the ones they had in 2007 should change them, but it’s probably not a bad idea to change your security login info even if you know you’ve changed your password and such since then.

Reddit also recommended that users enable two-factor authentication; take advantage of that extra security step is important whenever it’s available. Even if you weren’t specifically impacted by the Reddit breach, changing your password and setting up the authentication is a definite better-safe-than-sorry move.

Running a dark web scan to see if any of your information, like your phone number or email address, are floating around the web, and monitoring your identity online is never a bad idea either. If you’re not sure how to do all of that, a digital security expert can help.

It’s a good idea to always be careful about what you share online, but security breaches happen. The best thing you can do after they occur is take proactive, appropriate steps to protect your information and identity, on Reddit or any other corner of the web.