Some considerations for better InfoSec: There are A LOT of various options for securing credit cards, smartphones, laptops, iDevices etc. If you travel a lot for work, your company probably has a device and InfoSec policy in place. Check it out and adhere to it since you can often be held personally responsible for loss. If you are a small business this is just as relevant. Having a business credit card, laptop or personal cell phone stolen when traveling could be disastrous. Having to shut down your business credit card while traveling can be a real issue and bite into your bottom line or personal finances. You may want to consider implementing a couple of these safeguards: 1) Personal and Situational Awareness – Monitor smartphones like you would monitor a personal carry firearm. I often see people place smartphones in open coat or purse pockets. On many occasions I could have picked up someones phone and walked off or stuffed it in my pocket, no problem. The amount of personal information contained on these phones is staggering. This also includes inputting a lock-out code on smartphones or tablet, laptop devices. I sat in an airport back in August and by simply observing a number of people around me was able to record 3 different peoples lock-out codes during the 45min I sat waiting for a plane. You think that code is secure, however, through a small amount of observation someone can get a code that unlocks a ton of personal info. Protect that comm device like it’s a portable bank, because it actually is. You have probably heard this before, don’t utilize the same passcode for multiple devices, multiple Apps or multiple websites; have a different code for every different access point. Inconvenient, yes, true InfoSec and PerSec often is. 2) AVOID – using the debit function on cards. Entering a debit card number out in public, like at a grocery store, possibly allows others to see the PIN# and can make skimming much easier. That PIN# along with the card number that was skimmed is an open door to your account. Both VISA & MASTERCARD offer zero percent liability against debit or credit fraud however, if your debit card is skimmed or hacked those fraudulent charges come directly out of your “available balance”, that balance which you may need to pay bills with, tomorrow. Those stolen funds will be placed on hold until your dispute is remediated which can be very inconvenient and a source of great stress. Using the credit function of the card requires no PIN#, has liability protection and the funds represent “borrowed” funds. This means that if a card is skimmed or hacked (fraud of any type), nothing is lost directly. There is usually a window of time before you will become responsible for the debt that was accumulated due to the theft or fraud. In that time, a watchful individual will have detected the fraud, reported it and had it resolved. 3) Counter Measures – Technological counter measures are available to block crimes like skimming. If you are concerned check out the following options: RFID Blocking Wallets OFF Pocket Scottevest BlackOut Pocket
4) Device Security – Secure WiFi when in public or utilize a VPN or Virtual Private Network (here is why from lifehacker.com). I have utilized ProXPN since 2011 with good results. The only concerns with a VPN setting or network is that it tends to slow down browser and speed. If you are willing to apply a little patience for security then try this out. Disable Bluetooth when in public if you don’t need it. Others can take advantage of your bluetooth connection, pairing to your device, access files or piggyback onto another device you have paired. A lot of devices have the bluetooth already enabled, go into the settings and figure out how to disable this feature when required. Disable Location Based Services (GPS) – location based services can be totally disabled on most smartphones or set to on/off for specific apps. For example, I may need my location services on in my Navigation App for travel purposes but there is no need for Facebook Places to track me providing info to anyone on Facebook. This is just good PerSec unless you are of the generation of people who believe everyone should know your every move, everyday, everywhere and see a pic of you doing whatever. FACT – YOU are not that important to anyone but yourself. Good InfoSec = Better PerSec How does all of this apply to Personal Security and personal protection? Having a credit card, smartphone, iDevice or laptop hacked, skimmed or stolen while traveling can have a significant impact on your personal and family security. Without funds, without stored travel data, without comms, you are at risk. Technology is great, technological ignorance is not. Take your personal and family security seriously, train, practice, test viable info security to enhance overall personal security.