Give us the cheat codes to your industry/place of work!

  • Maple Engineer@lemmy.world
    link
    fedilink
    arrow-up
    26
    ·
    edit-2
    5 months ago

    I work in information security.

    Don’t use biometrics to secure your devices. Biometrics are a convenience feature to make it easier to access your device. Biometrics are NOT security. You can be compelled to unlock your device by having it pointed at your face or your finger forced onto the reader. Don’t do it.

    Use 2FA/MFA everywhere you can. If it’s an option, turn it on.

    Use a password manager that generates strong passwords and use a different password for every service you use.

    Update, update, update. Allow your devices, OSes, and software/applications to update automatically.

    Talk to your parents about safe surfing. Tell them that their bank won’t send them an email or text asking them to send personal information. Set a password with your family to identify them if they are in trouble and need help. Tell parents and grandparent not to send you bail money to get you out of jail in Morocco.

    Teach your kids that everything they post on the internet is public and permanent. Teach them that if they do something that they think will get them in trouble and someone is blackmailing them that it’s better to tell you and ask for help than to give in to the blackmailers.

    • CoggyMcFee@lemmy.world
      link
      fedilink
      arrow-up
      8
      ·
      edit-2
      5 months ago

      Regarding biometrics, I’ve felt that one advantage is that if I’m in a public space, I don’t have to worry about someone watching me enter my password over my shoulder. If I got into a situation where someone is physically overpowering me to get my finger onto my device against my will, I’m probably going to give them whatever password they want so I don’t get a beat down.

      • Maple Engineer@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        edit-2
        5 months ago

        That’s a threat and risk assessment. You’ve decided you’re willing to accept the risk of anyone being able to unlock your phone. For me, I’m not really worried about someone in the street strong arming me. I’m more worried about a state actor, border guard, police officer, etc demanding that I unlock my phone. They can physically compel you to unlock your phone by pointing it at your face or putting your finger on the pad but they cannot compel you to give them your password.

        • CoggyMcFee@lemmy.world
          link
          fedilink
          arrow-up
          4
          ·
          5 months ago

          I definitely see your perspective, but mostly wanted to make sure I wasn’t overlooking some obvious downside in my risk assessment.

          I figure my chances are low that I will get into the situation where an authority demands access to my phone but I also don’t have the opportunity to lock out biometrics. Like if I get pulled over I just hold power and volume up buttons for three seconds and biometrics is off. That said, it certainly doesn’t eliminate my risk completely, and I wouldn’t consider anyone crazy for just opting out completely.

          • Maple Engineer@lemmy.world
            link
            fedilink
            arrow-up
            5
            ·
            5 months ago

            The other problem with biometrics is you can’t change them. With the OPM breach a few years ago they lost 5.6 million finger prints. Those finger prints are now useless since they are in the wild and can’t be changed. Not a problem for your average phone user but in my world that’s a really big deal. In my world biometrics are a convenience and convenience is bad for security.

            As long as you’ve considered and accepted the risks you’re good.

        • chasingtheflow@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          edit-2
          5 months ago

          I’m probably preaching to the choir, but for those who don’t know, at least on an iPhone and I’m sure android has something similar, if you foresee the situation coming you can just hold the sleep/wake button for a few seconds (even while your phone is in your pocket) and it will require the passcode and not allow biometrics.

          Edit: my memory, it’s the sleep/wake button and volume down. Similar to android as per the below.

          • MIDItheKID@lemmy.world
            link
            fedilink
            arrow-up
            4
            ·
            5 months ago

            For android it’s power+volume up to bring up the power options menu (shutdown, restart, etc) and there is a “lock down” option that disables biometric unlock.

            Wish I could do it with one hand, but good to know it’s there.

    • morriscox@lemmy.world
      link
      fedilink
      arrow-up
      5
      arrow-down
      2
      ·
      5 months ago

      Allowing apps to update automatically often means that advertising and feature removal or nerfing, etc., can happen. Checking manually has saved me a lot of grief.

      • CaptKoala@lemmy.ml
        link
        fedilink
        English
        arrow-up
        3
        ·
        5 months ago

        I finally let my phone do some app updates the other week, my banking app now displays full screen ads for their credit cards, conveniently right as you go to click the transfer button.

        I don’t update shit anymore. I update my OS and apps on my desktop, but my phone is now being actively neglected in regards to app updates. Every single app update breaks something, removes a feature, or brings ads into the picture.