Protect Yourself From Hacking

[Guest]

Welcome, Guest. Please login or register.

1 Hour 1 Day 1 Week 1 Month Forever

Login with username, password and session length

22/06/2023, 10:15 AM Syklone - ..... hi

18/02/2023, 07:10 PM Damit - https://discord.gg/fYqDFYx

18/02/2023, 07:09 PM Damit - join us on Discord https://discord.com/inv... ite/fYqDFYx

29/11/2022, 12:19 PM BoHiCa - YESSSSSS

26/10/2022, 04:27 PM Victor9-5 - yooooooooooooo!

21/05/2021, 06:19 AM DonutKing - First post

28/08/2020, 08:39 AM Damit - its because we are all on discord now mrx

29/07/2020, 07:42 PM MrX - Its a bit dead round here

29/07/2020, 07:42 PM MrX - Anybody playing COD 

26/03/2020, 10:52 AM Epsoma - Hey Team. Locked down in self isolation. Hope you all are good.

View All

[bageled]

Came across this article today about making your self hack proof.

http://www.smh.com.au/digital-life/consumer-security/when-passwords-fail-how-to-make-yourself-hackproof-20120809-23vxk.html

I'd be interested to hear what you guys think of it, and maybe what advice you might give. You do need to be careful, I know one of our mostly absent members Deadforge got take for about $5,500 last year.

I had one of my hotmail accounts broken into last year when someone got access to a bunch of hotmail passwords, all they did was spam my contacts list.

[naf]

the whole Mat Honan story is good.

http://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/

1. two factor authentication is a great idea especially if your whole online presence is linked back to one email address.
2. I'm in 2 minds about an online back up service, ignoring privacy issues, you still have your stuff in one spot online, I'd at least have 2 backups? I prefer to back up important stuff in a few places, leave one copy at my house one copy at my parents/sisters/work
3. Data encrytion of you stuff is great as long as you don't forget your password...
4. After hearing about Mat Honan, i'm looking at my own daisy chaining issues!

[DonutKing]

I read about this last week and enjoyed the schadenfreude

2FA is great but remember if you use your mobile to do internet banking or whatever and have SMS 2FA enabled... if someone steals your phone and you don't have a password lock on it, and you've set your browser to remember passwords, they can go straight in, so 2FA in this case doesn't help at all.

Online backups are a bit of a worry too. Dropbox had some major vulnerabilities last year allowing anybody to access your files. Doesn't bother me because I don't put anything important in my dropbox, but its something to think about with any online/cloud storage... what happens if they get hacked? All your stuff is freely available. What about data sovereignty? Servers hosted in China have been known to be investigated by their government. Servers in the USA are subject to the Patriot Act (basically the govt can check out your files just because they feel like it). What about a sticky beak employee of the company that just decides to go through your stuff?


Data encryption is a good idea but make sure you have a strong password, and perferably a keyfile as well. You can use TrueCrypt to encrypt files for free. Advances in computing have made brute force cracking simple passwords surprisingly easy these days. So be sure to make your password as strong as you can.

I've heard KeePass reccommended for managing unique passwords for all your sites and services but I've not used it myself.

[Alucard]

it really depends on the services that your using and how you are using them to how you would protect your self. that situation the guy was in there were hole and they were exploited by things that you would not normally think people would go for.

for us (well most of us) disk encryption is a big no for games for it takes to much away from the performance. And if you forget your password for the encryption = no more data
passwords as said in the article - really depends how lazy you are and how complex you want to make it and if you can be bothered doing the second prompt.
backing up - i have stuff spread across many pc's and some stuff in dropbox; nothing i cant get again or recreate.

[DirtyHarry]

for us (well most of us) disk encryption is a big no for games for it takes to much away from the performance. And if you forget your password for the encryption = no more data

If you have a relatively new intel processor and encrypt with AES it really doesn't. Newer intel hardware can natively decrypt AES very quickly. Encrypting your whole drive will add a couple of seconds on to your boot time and the only in game difference will be a fractionally longer loading time as it decrypts the necessary files before dumping them in to memory. MMO's and elder scrolls games would take the biggest performance hit, but even then not by much.

Also on the general topic: (Warning, this is a bit of a braindump and is probably not in any logical order.)
You can never be completely secure. It isn't possible.
Use long, complex passwords. Write them down in pen on a piece of paper. Put them in an $80 officeworks safe that is bolted to the floor of your house. For "Security questions" make up a random string of letters, numbers and characters, write them down, and put them in the safe. Never use answers to security questions that are even remotely related to the question you pick.

"But how do I come up with a good, long password that I can remember?"

Here is an easy way. Pick 2 obscure songs that you like but nobody else knows you like. Pick a line from each song. Mash the words together, change some of the letters to numbers and add a couple of random special characters somewhere. You should now have a 30+ character password that will be ridiculously difficult to bruteforce and somewhat easy to remember for you and only you.

If you want the tinfoil hat approach: Get a dirt cheap computer, like an rPi or something for under $50. Put linux on it. Encrypt it. Firewall it. Lock it down. (If its an rPi put it in the safe! )This is now your financial computer. Everything that you ever do that involves money is done on this machine. It is only connected to the internet when you need it to be. Nothing else is ever done on this computer. Ever.

Separate your "Serious business" internet life and your "Herp derp internet user" life. Use an email address and passsword set solely for your forums accounts and WoW subscriptions. Have no connection between your life on the internet where you troll youtube comments and your life on the internet where you manage your banking.

I should take far more of my own advice.

[Alucard]

for us (well most of us) disk encryption is a big no for games for it takes to much away from the performance. And if you forget your password for the encryption = no more data

If you have a relatively new intel processor and encrypt with AES it really doesn't. Newer intel hardware can natively decrypt AES very quickly. Encrypting your whole drive will add a couple of seconds on to your boot time and the only in game difference will be a fractionally longer loading time as it decrypts the necessary files before dumping them in to memory. MMO's and elder scrolls games would take the biggest performance hit, but even then not by much.

true - i do use an 2 i5's at work and both are encrypted and don't see much of a performance hit but there is a section of the clan that are not running the same up to date gear as some of us and would not benefit at all from that. (have seen core 2 with encryption at work and it is horrible or it could be xp causing issues or combination of pebkac, processor, os and encryption)

TBH it really comes down to convenience and/or how lazy you are and how concerned about it in the end

[deadforge]

I'd be interested to hear what you guys think of it, and maybe what advice you might give. You do need to be careful, I know one of our mostly absent members Deadforge got take for about $5,500 last year.

Wait... when did that happen?!

[Sillen]

Tl;dr but will add this.

Dont type in  you  password as the nme might have a key logger installed. Put all ur passwordz in a txt file on a usb stick and ctrl-c ctrl-v

PS obviously use a pc thats nvr been on the internet to create the txt file for the usb stick. Don't use a mac cause steve jobs included a rootkit in all ios

[DonutKing]

That's not foolproof either. There is malware that takes screen shots every time you click the mouse, which will capture the password (designed to defeat sites with password entry by clicking numbers, letters etc instead of typing them in).
The clipboard isn't protected in any way either.
And that had better be an encrypted USB stick, otherwise all your passwords are in one convinient spot should you lose it...