Schools across the nation are kicking off the new school year, and students are targeted for Identity Theft and Fraud schemes! Schemes that we never worried about in the early 2000s. Student life was simple, desktops were for papers, no smartphones, no social media, and socializing was actually in person!
That is not today’s reality
Now more than ever, devices, Social Media, and advanced schemes have increased the risk for students. Risks that now are more prevalent due to the majority of students having constant connectivity.
A significant increase in phony LinkedIn, Facebook, and other social media friend requests placing many students at risk coupled the daily inundation of information/misinformation has given cybercriminals an endless resource to implement their attacks.
It’s not just college kids though…
K-12 districts across the U.S. have become targets as well.
The worst-hit states include:
New York with 89
Texas with 79
Illinois and Ohio each with 60
Florida with 58
Overall, Colleges account for 74% of education data breaches.
What students and parents can do to mitigate risk?
Students and Parents can mitigate exposure to cyber scams and identity theft in the following ways.
The COVID-19 pandemic has new email phishing attacks that try to trick parents working and students studying remotely into giving away credentials for access to their employers’ and college/university networks. You need to stay vigilant and be careful with every email.
A new voice phishing scam uses a combination of one-on-one phone calls and custom phishing sites to steal VPN credentials from again – both parents and students.
Limit what you share online, use, and regularly change strong passwords on devices.
Online students are being targeted by Identity Theft criminals now more than ever. As these criminals continue to use student information to obtain employment, rent an apartment, open a utility, cell phone, or bank account, or access government benefits be ever aware of new and emerging scams.
Thanks to the Internet, jobs that we used to have to do from the confines of an office can now be done at home. Even before COVID led many of us to work from home, millions of us already worked remotely. And that trend doesn’t seem like it will slow down any time soon. BUT home wifi isn’t safe from hackers.
There are good reasons for that, since remote work has many benefits for workers, as well as fewer overhead costs for employers. After a large chunk of the working population got a taste of working from home, many decided that they liked it.
However, working remotely has its own problems and challenges, especially in terms of network security. Your home network is probably not protected by the same rigorous cybersecurity protocols that corporate networks have access to. So, either the company or the employee needs to take steps to protect company data.
Can My Home Network Be Hacked?
Yes, your home network can absolutely be hacked. Our home wifi isn’t safe from hackers or as secure as our office environments. Also, if we are using our own laptops instead of work ones, we may not be using robust security to protect sensitive company information.
One common way hackers can get access to your home network is to guess the password. Routers often come with a default password that the manufacturer uses for all devices, and many times users don’t change this. A hacker only has to look up the default password associated with a particular router and can use it to gain access to all devices on the network.
In addition, hackers can also exploit security flaws in the router’s firmware. Since firmware is updated infrequently, hackers have all the time they need to discover and exploit security flaws before they’re fixed. According to a study by the American Consumer Institute (ACI), 83% of home WiFi routers are vulnerable to this kind of attack.
How Can I Protect My Home WiFi Network?
CNET recently published a great article which detailed ten things you can do to help protect your home network. These are a great starting point to learning exactly what needs to be done to keep company and personal data secure from unwanted eyes.
Place your router in a central location
One of the most important things is to place the router in the center of the home. Not only does this make the best quality connection, it also makes it harder for anyone outside your home to get a strong signal, and limits how far the signal can travel outside of your home.
Use a strong WiFi password and change it every six months
The best thing you can do to keep your WiFi network safe is to use a unique password that does not include any easily guessed passwords or phrases. This means no names, birthdays, phone numbers or other common information. And make sure to change this password at least once every six months.
Change the default router login credentials
You also want to make sure to keep anyone from accessing your router settings by changing the admin name and password for your router. These login credentials are separate from your WiFi password. You can access these by typing your router’s IP address in the URL bar of your browser.
Turn on your firewall and WiFi encryption
Your router has a firewall to prevent hacking, as well as encryption to keep anyone from stealing your data that’s being sent from your router to your connected devices. Check to make sure that both of these are enabled, and if they’re off for any reason, turn them back on.
Create a guest network
You probably trust the people you invite over to your house. But you should still consider creating a guest network for your visitors. Guests devices or anything they download on your network could be infected with malware or viruses targeting your network. This guest network is also great for all of your IoT devices. Devices such as your smart speakers or other appliances hooked up to your network. These devices are usually more easily hackable than a computer or phone.
Keep your router and devices up to date
While software updates may be annoying, it’s important to keep them up to date. Updates often include security updates and patches for exposed vulnerabilities. Making sure you install all the latest updates to your router and devices ensures that you reduce your exposure to these vulnerabilities and have the best protection you can get from hackers.
Disable remote router access
Your router usually has the ability for someone to remotely access the settings. There’s usually no need to do this, unless you plan on being away from home for some time. You can disable these in your router’s admin settings.
Verify connected devices
From time to time, look at the devices attached to your network to make sure you recognize them. If anything looks suspicious, disconnect it and change your network password.
Upgrade to a WPA3 router
All new routers have WPA3, the latest security protocol. So if you have a new router, you don’t have to worry about this. But if you have a router that was made before 2018, you might have a WPA2 device. If you do, be sure to upgrade your router.
Use a VPN
Probably the best way to protect your home network and your company’s data is to invest in a strong, reliable VPN.
Our RemoteWorkForceVPN not only protects remote employees when accessing information from the Internet, but it also provides secure access to company resources and databases. RemoteWorkForceVPN can also securely connect your company’s branches worldwide.
If their company does not provide a business VPN, remote employees can use Private WiFi – our consumer offering – to protect their home wifi from hackers.
As we enter the new world of working primarily from home, do everything you can to protect your home network. Follow these simple tips, because as you now know, home wifi isn’t safe from hackers.
Parenting kids is hard enough, parenting kids with social media is another thing…
Without clear guidance from us as parents, and education on the consequences of oversharing, our kids can open themselves to damages we can’t even predict. This is an enormous challenge, but a challenge worth understanding and taking on.
Strong boundaries and education around social media are important as data thieves, and other criminals, don’t consider age a deterrent.
In fact, a child’s information has more value to an identity thief than an adult because they have clean credit files and typically a longer length of time before discovery, creating even more damage.
Helping our kids to understand what they are doing, what impacts their social media behavior has in the long term is more important than ever. If our job is to equip them to face this world without us, we have to ensure they are aware of the implications of their online activities.
Talk to your kids about how to avoid strangers. Have conversations about revealing too much about themselves and their family. Give them tips on social media safety and talk to them about things that could be a red flag. And encourage them to come to you when uncomfortable things happen or if they have any questions.
Tips for Kids and Parents
Learn about social media platforms. Whichever app your child wants to be on, learn about it. Read the reviews, age restrictions, and the fine print.
Get an account before your kids. Learn the app, make sure you know exactly what they can and cannot do.
Teach your child about posting. Every post, comment, like, and share is part of your kid’s digital footprint. And deleting a post does not mean it is gone. Inappropriate posts may have an impact on their lives later. Posts may not seem like a big deal now but it could hurt them in the future. Most college admissions and employers are looking at social media accounts.
Emphasize the importance of privacy. Many social media sites request information such as names, dates of birth, school names, and hometown. Teach them about how much information is too much information. The information exposed online can create exposure and vulnerability to Identity theft.
On my work laptop, I use a VPN (Virtual Private Network) whenever I work remotely including in my home, my hotel room, or any other location away from the office. (be sure to watch the video below)
Private WiFi is the flagship product of Private Communications Corporation, founded by Kent Lawson in 2010. After reading a series of articles in The Wall Street Journal, Forbes, and The New York Times about the security vulnerabilities of WiFi hotspots, Lawson (a 40 year computer industry executive) was inspired to come out of retirement and work to resolve the problem.
According to Lawson, “your private information is an easy target on a public WiFi network such as hotels, coffee shops, and airports that are not secure. Anyone using the same hotspot can intercept and hack your communications. Your usernames, passwords, and other private information can be stolen out of the thin air.”
“We created Private WiFi to protect your identity and personal information by encrypting your WiFi signal. Everything you do online is protected with bank-level security, so you can surf, share, shop, and bank with confidence.”
A way of life
Think about it, connecting to public WiFi hotspots has become a way of life. Millions of people connect to public WiFi every day without thinking – at coffee shops, hotels, restaurants, or airports. It’s fast, it’s free, and it’s convenient. But this convenience can come at a cost.
But it’s not secure. Everything transmitted on your laptop, smartphone, or tablet over WiFi hotspots can be grabbed out of thin air – and many users don’t understand hotspot security risks. Roughly 39% have accessed sensitive information while on WiFi hotspots, according to a Nielsen/Harris Poll. That means their privacy and security are in danger every time they connect.
According to Lawson, “Private WiFi encrypts Internet traffic and protects hotspot users from hackers and identity thieves, creating a secure tunnel that is invisible to hackers.”
“In a world full of wireless security risks, Private WiFi puts the power to protect hotspot users’ information in their own hands,” said Lawson.
The New York Times calls Private WiFi the “VPN for the masses.” PC Magazine featured Private WiFi as one of the “Ten VPN Services You Should Know About” and it has been featured on CNN, and Good Morning America among other news outlets.
VPNs are easier to use than ever. My recommendation is to use a VPN on all your devices to search, shop, bank, read, and connect. This will give you the confidence your personal privacy is secure. Think before you connect, don’t make it easy for the bad guys.
As we continue to see the Russian invasion of Ukraine, it is natural that we look for ways to help. Donating money is often one of the best and easiest ways to make an impact. Unfortunately, we need to ensure that we avoid Ukraine relief scams popping up which is causing more chaos.
Scammers have no shame and will try to lure out money from people like you who are just trying to help. Below are some tips to consider while looking to help.
Donation Tips
Give to Organizations You Trust:
Do your research before giving. Review the charity’s purpose and find out how the charity spends its donations. How much is spent directly on the charitable cause? How much goes to overhead and employee compensation? You should also confirm the charity’s name, address, and nonprofit status.
Be Wary of Social Network Fundraising:
If you are planning to donate through a social network solicitation, first do some research. Find out what percentage is going to the charity, whether you will be charged a fee, or if a percentage of your donation will be paid to the platform website.
Don’t Be Pressured by Telemarketers – Ask Questions Before Donating:
If you receive a call from a telemarketer, ask for the name of the fundraising organization, whether it is registered with the Attorney General’s Office, the name of the charity benefitting from the solicitation, how much of your donation will go to charity and how much to the telemarketer, and the direct telephone number of the charity. Don’t fall for pressure tactics or threats. Remember that you have the right to say no and if you feel pressured or threatened, just hang up.
Watch Out for Similar-Sounding Names, Web Addresses, and Other Deceptive Tactics:
Fraudulent organizations may use names that closely resemble those of well-established charitable organizations in order to mislead donors. Look out for fraudulent websites that have a slightly different web address (URL) than that of a legitimate charitable organization. Similar-looking URLs are sometimes purchased by fraudsters to lure in would-be donors. These sites may ask you for personal information or install harmful material onto your device. Be skeptical if someone thanks you for a pledge you never made, and always check your records.
Understand the Difference Between “Tax-Exempt” and “Tax-Deductible”:
Being a nonprofit does not mean the organization is exempt from taxation, or that your donation is tax-deductible. Generally, a tax-exempt organization is exempt from paying tax on its income/gifts, but may or may not be able to offer tax deductions to donors. Just because an organization has a “Tax ID Number” doesn’t mean it is a charity, tax-exempt, or tax-deductible. A few tax-exempt organizations – 501(c)(3) tax-exempt status – are able to offer charitable tax deductions for your donations. If you are not sure whether your donation is tax-deductible, verify the charity’s tax-exempt status by using the tools and information located on the IRS website.
Protect Your Identity:
Never give your Social Security number or other personal information in response to a charitable solicitation. Never give out credit card information to an organization unfamiliar to you. Some organizations sell or rent their donor lists to other organizations, including organizations that are not charities.
Please consider sharing this with others, you may be helping others avoid Ukraine relief scams!
It was the best of times, it was the worst of times, and VPNs During Covid have proved their worth!
In the middle of a global pandemic that upended everyone’s lives in a myriad of ways – the world of work changed profoundly. It was a huge shift that was very was hard and it took some time. But, overall, companies learned that “work from home” really works. And while some companies might be heading back to their offices in the near future, many will remain remote or adopt a hybrid model.
But working from home means there are entirely new security issues to worry about. In the physical office, we had very strong security protocols, implemented by IT experts.
What about our home networks? Are they as strong? How can we protect our communications? Our company information? Our partners’ and clients’ information?
Also, we are now using cloud-based applications from our smartphones, tablets, and laptops. But are these being used securely outside the safe parameters of our normal security apparatus at work?
Home Networks Are Not Safe
According to YouGov America, 52% of us who are working from home are using a VPN. Which sounds good at first, until you consider that that means that nearly half of us are not using one at all. In fact, 30% use a VPN “rarely” or “never”! This means that we are entirely at the mercy of the security of home networks.
It’s absolutely possible for a home network to get hacked. One common method is to guess the password. Routers often come with a preset default password that the manufacturer uses for all devices. Have all your employees changed theirs?
Another possible issue is wardriving. Wardriving involves attackers searching for vulnerabilities in-home networks while moving around an area in a vehicle, bicycle, or on foot. These attackers then use hardware and software to gain unauthorized access to the network by cracking passwords or decrypting the router. While wardriving is less common today, there are no laws that specifically prohibit it.
Hackers can also exploit security flaws in the router’s firmware. Infrequent firmware updates leave 83% of home WiFi routers vulnerable to attack, according to a study by The American Consumer Institute.
That’s a problem. But there’s more to the story. Even when we do use supposedly secure home networks, there are issues we may not be aware of.
Home routers have firmware that may not be up to date. Are you updating all of your software constantly and regularly? If so, you are better than most. ResearchGate found that only half (52%) update our software within a week when updates and patches are released.
And honestly, how many of us dread getting those notifications to update our software, which usually requires a system reboot? Most of us dread software updates, which leads to many of us not updating our software at all.
A 2017 Pew Research survey found that 14 percent of people never update their phone’s operating system, and 42 percent only do so when it’s convenient, despite these updates sometimes containing urgent security fixes.
Working from Home Doesn’t Always Mean Working from Home
Another truth is that when we are working remotely, we aren’t necessarily working from home. Many of us work from our local cafe, library, or anywhere else where we can log into a public WiFi network.
But here’s the thing about logging into public WiFi: anything we do on it can be seen and potentially accessed by anyone else on the network.
It’s exceptionally easy for novice hackers to spy on anyone using public WiFi. YouTube has hundreds of thousands of videos on how to do it.
Only a VPN Fully Protects You When Working Remotely
The simple truth is that unless you are working from your physical office on a network that is managed by your company’s IT department, your company information is at risk. This is true even when folks are working from home on a supposedly secure home network.
And this is true even if teams aren’t working from home 8 hours a day, five days a week. It’s true even if they work a few hours or a few days from home.
And if they do work from their phone or laptop on a public WiFi network, you can’t be totally sure who sees what they do online.
The best way to protect your company information when working remotely or from home is to use a VPN. A VPN ensures that they can work from anywhere and you can rest easy knowing that you and your company’s data are completely safe.
