Helpful Info

|Helpful Info
Helpful Info 2018-02-08T15:23:08+00:00

Online Safety Tips

What should you be aware of when it comes to online safety? First, follow these guidelines:

  • Don’t share your User ID or password with anyone and don’t write it down. If you share your password with a third party, you assume responsibility for their actions.
  • Avoid accessing your account from public computers in Internet cafes, libraries, hotels, etc.,—they can be accessed by malicious users who may have installed software in them to record your keystrokes.
  • When you are finished accessing your account, always log off and close your browser.
Many Internet scams today involve email messages that appear to come from a trusted source, but are not trustworthy. Additionally, email attachments can be harmful because they may contain viruses.

The below can be indications that an email is fake:

  • The email claims to be from a legitimate company requesting that you change your password by clicking on a link. It may even threaten to suspend your account if you do not do this.
  • The email claims to be from a person in authority requesting a copy of a password file, User ID, Social Security number, or banking information.
  • The email asks you to verify your account information by clicking on a link and filling in a form.
  • Right click on the link in the email and select properties. If the section under URL Address contains an “@” symbol or does not appear to be a tdameritrade.com address then it is likely fraudulent.

Here are some ways to protect yourself from email fraud:

  • Do not reply to any email asking for personal information.
  • Use antivirus software and keep it updated. Scan all attachments with an antivirus software program before downloading
  • Do not visit links sent by email as these can lead to phishing sites— sites made to look legitimate and designed to collect your personal information. One way to avoid this is to enter the URL into your browser instead of clicking the link.
  • Do not open or reply to spam email which can prompt more spam to be sent to your inbox.
  • Turn off the “preview pane,” as this allows some viruses to be executed even if you never actually open the email.
  • Report suspicious email to your advisor and BCJ Financial Group.
Choosing your password well and keeping it a secret can be key steps to safeguarding all of your online transactions. To create a password that is more difficult to guess, use a combination of letters and numbers for passwords you create, such as “4funcallC3po” or “Il9vemyd1g.” Certain passwords are easier to compromise, so try to avoid common pitfalls by creating secure passwords:

  • Don’t base your password on personal information—such as the name of your pet or your company.
  • Don’t use a word found in the dictionary as your password.
  • Avoid substituting numbers for letters, for example: using a zero for the letter “o” or a one for the letter “i.” These substitutions are well known and predictable.
  • Don’t use your User ID as your password.
  • Don’t use simple number sequences like “12345” or a series of duplicate numbers like “11111”
  • Change your password frequently, and don’t “recycle” a password you’ve used somewhere else.
Make sure you only access personal information through websites that use Secure Sockets Layers (SSL). An SSL offers an additional layer of security that many sites use. You can check whether the site you are on has an SSL in effect by checking for two things:

  1. Look at the website address. If you are on a secure site, the address will include https:// instead of http://. The extra “s” stands for secure.
  2. Look at the bottom of your browser or at the top (after the address bar) for a lock or key icon. This indicates a secure connection. Each secure site comes with a digital certificate, establishing its legitimacy. To view the certificate, double-click on the lock or key.

If you get a pop-up message indicating a problem with a site’s Security Certificate, do not proceed. The website should be secured with a digital certificate, which verifies you’re at a legitimate website and not a “spoofed” site.

It’s important to be aware of possible risks to your computer and the information on or passing through it. We have a designated team responsible for reviewing potential threats to clients’ assets and information.

Your awareness, combined with our vigilance, can help to decrease the risk to your accounts and information.

Familiarize yourself with the threats posed by:

Identity theft

Identity theft—using a person’s personal or financial data to commit fraud—is one of the most rapidly growing global crimes. The targets of this crime are personal information, financial information, and access to online accounts.

The personal information often targeted includes:

  • Name, address, and date of birth
  • Social Security number
  • Driver’s license number
  • Passport
  • Signature

The financial information often sought is:

  • User IDs and passwords
  • Account numbers and ABA numbers
  • Credit card numbers
  • ATM/Debit cards
  • Checks
Phishing happens when someone attempts to steal personal or financial information. It usually starts with an email asking for sensitive information, such as your User ID or user name, your password, or your account information. Phishing—sometimes referred to as pharming—opens the door to identity theft and computer security breaches. Please note: BCJ advisors and staff, and any of their affiliates will never ask you for your account number, User ID, PIN, password, or any other personal information in an email. (In rare cases, however, we might need to ask you for the last four digits of your account number for identification purposes.) For more details on how you can help protect your investments, log in to AdvisorClient.com and access the Security Center from the Client Services tab on the site menu.

Password Manager

If you’re anything like the guy in the video to the left you need a password manager. Dreaming up a different password for every site and service is the only way to keep your stuff safe online, but it’s also a gigantic nuisance. There’s one thing you can—and should—do to help: Get a password manager program. The three programs below all will help in lessening your password woes. Please see the break down below and choose one that would work for you.

dashlane             lastpass               1pass

                   Dashlane                 LastPass                    1Password

But, wait—isn’t storing all your passwords in one place a terrible idea? It’s better than reusing easily remembered passwords everywhere. Password managers hide your information behind a master password that only you know.

Nothing is 100% guaranteed, but all three of these managers take the additional security step of never sending your master password over the Internet. They’re like a safe-deposit box that a professional keeps without knowing what’s inside, or even holding a key to open it.

In an age where more of our personal information lives, password protected, up in the cloud, we need defenses beyond antivirus software. Using a password manager is the next step.

These programs are becoming increasingly popular as hackers try to infringe on your personal data through passwords that can be cracked as easily as eggs. Here, I’ve put three of the most popular password managers to the test to help you choose the software that best suits your needs.

Dashlane

Encryption and database

Like1Password and LastPass, Dashlane uses the AES-256 encryption for its database. The key that encrypts the data is derived from the master password: the decrypted data is not stored on your device or Dashlane’s servers.

Dashlane gives you the possibility to keep encrypted data locally on one device, or to sync it between multiple devices via Dashlane’s servers. The encrypted data is hosted on Dashlane’s servers and is downloaded and decrypted every time.

Just like Lastpass, Dashlane lets you add two-factor authentication options to enhance the security of your master password.

Integration with browsers

Dashlane is compatible with Chrome, Firefox, Internet Explorer, and Safari. The application lets you import your saved passwords in Firefox or another browser.

dashlane-ss

Threat prevention

Dashlane sends security alerts directly to your devices when your passwords could be compromised. Dashlane also advises on the saved passwords.

Platforms

Dashlane is available for: Android | iOS | Mac | Windows

Last Pass

Encryption and database

With Lastpass, all your data is encrypted locally on your PC using AES 256 encryption, and you’re the only one who can unlock it. Your key doesn’t leave your device, and it’s never shared with LastPass.

The only downside is that the program requires an internet connection because the encrypted data is hosted on LastPass servers by default. Fortunately, you can access the data without an internet connection through the LastPass Pocket app.

One good thing is that LastPass supports two-factor authentication. It’s a  practical solution to add another layer of security to the master password.

Integration with browsers

LastPass is compatible with the following browsers: Chrome, Dolphin Browser, Firefox, Firefox Mobile, Internet Explorer, Maxthon, Opera, and Safari. The app also imports existing passwords from Firefox and Internet Explorer.

lastpass-ss

Threat prevention

LastPass offers a line of defense against phishing attacks, and it will not fill in forms hosted on malicious websites. The application also analyzes passwords to find out if they’re weak: LastPass will warn you when you’re using a weak password when logging into your accounts, and it’ll send you security alerts every time a new security breach is discovered.

Platforms

LastPass is available for: Android | BlackBerry| iOS | Linux | Mac | Windows | Windows Phone

1Password

1Password uses AES-256 encryption but stores all your data locally on your computer. Even if you choose to synchronize your data with other devices, your master password, the unique decryption key, never leaves your computer or device. Decryption is always done locally and the decrypted data is never written on the disk.

With 1Password, using the cloud is an option, not a requirement. The software lets you synchronize data between devices via iCloud and Dropbox, or locally through Wifi. It’s an ideal solution for mobile users who are more cautious about the cloud.

Integration with browsers

1Password is compatible with Chrome, Firefox, Opera, and Safari. Extensions allow the app to automatically save new passwords entered in the browser and to automatically fill out forms with just one click.

1password

Threat prevention

The Watchtower feature in 1Password identifies sites that are vulnerable to cyber attacks and tells you which passwords you should change. The app will tell you which sites to avoid, and gives you the green light to change your password after covering security holes.

Another good feature is that 1Password will also tell you if your passwords aren’t safe enough, are duplicate, or are obsolete so that you can update them.

Platforms

1Password is available for: Android | iOS | Mac | Windows | Windows Phone

A Matter of Preference

All three password managers are very similar in many ways. On a security level, they all use the AES-256 security standard and store their data locally. In the end, your preference for one or another will boil down to the additional features of each program.

Dashlane’s mobile apps will give an experience (auto-completion, generating passwords) that’s very close to what is offered for PC thanks to a dedicated keyboard on Android and a full browser on iOS.

For LastPass, it’s the unparalleled variety of available platforms what will make the difference. Of the three, this is the only one that supports Linux, BlackBerry, Windows Mobile, Symbian, and Firefox OS, an ideal choice if you’re using one of these platforms. The app, however, syncs your encrypted data on its servers by default, a solution that will discourage those who are most skeptical about cloud security.

1Password is notable for how easy it is to use and its elegant design. If you fear that you’ll end up with something indecipherable, 1Password is a good solution. This is indeed the best password manager for less advanced users, and the function that lets you sync data between devices via Wi-Fi could attract savvy users not wanting their data copied to the cloud.

This Is A Custom Widget

This Sliding Bar can be switched on or off in theme options, and can take any widget you throw at it or even fill it with your custom HTML Code. Its perfect for grabbing the attention of your viewers. Choose between 1, 2, 3 or 4 columns, set the background color, widget divider color, activate transparency, a top border or fully disable it on desktop and mobile.

This Is A Custom Widget

This Sliding Bar can be switched on or off in theme options, and can take any widget you throw at it or even fill it with your custom HTML Code. Its perfect for grabbing the attention of your viewers. Choose between 1, 2, 3 or 4 columns, set the background color, widget divider color, activate transparency, a top border or fully disable it on desktop and mobile.