Frustrated by CAPCHA’s with wavy, pale, weird or unintelligible characters? Now, there’s hope!

May 14, 2012

You’ve seen CAPCHA’S – Completely Automated Public Turing Test to Tell Computers and Humans Apart – on plenty of websites, the words are scrambled, twisted, wavy, or embellished with lines, wiggles , (even overlaid  with images of cats), and are designed to be decipherable by humans, yet block automated programs from getting into websites.

The problem is that all too often they’re NOT decipherable. You’ve probably cursed the darn things on numerous occasions as you fail – repeatedly – to figure out the characters and are presented with a new set of largely indecipherable options.

If you’re among the millions frustrated with wiggles and dots, take heart. I’ve recently seen very cool security checks that allow you to pass the ‘human’ test by applying basic logic. AMEN!

In the example shown below, users are asked to identify a number in a sequence based on instructions, and it was such a pleasant experience that I’m recommending companies switch methods. The key is to have infinite number of variables, some spelled, some shown numerically so a automated system can’t simply recognize a few options.

Is it possible an advanced scripted program could figure out the logic? Probably. But there are additional tests that can be performed to identify non-humans by their interactions on a site, and that don’t put humans through visual contortions.

Whoever thought of this alternative is brilliant.

Linda

Comments Off | Linda's Blog | Tagged: , , , , | Permalink
Posted by Linda Criddle

Flashback Trojan has Infected Over 600,000 Macs

April 19, 2012

This week Apple patched a flaw in their Java code to prevent Macs from becoming infected with the Flashback Trojan – a malicious program that steals infected users’ user names and passwords, and has continued to evolve to exploit other elements.

Unfortunately, the malware has run rampant the last two months – when the malware was first detected. The Russian antivirus company, Dr. Web, reports that over 600,000 Mac’s are infected – and that 56% of the infected Macs are in the hands of U.S. consumers.

A ZDNet article includes these links for Mac users to get “the new version of Java that patches the security hole in question from Apple here: Java for Mac OS X 10.6 Update 7 and Java for OS X Lion 2012-001. Additionally, F-Secure has instructions on how to remove this malware if you think your Mac may already be infected.”

If you are among the Mac users who have clung to the belief that Macs don’t need strong malware protection, let this be a wakeup call.

Linda

Comments Off | Linda's Blog | Tagged: , , , , , | Permalink
Posted by Linda Criddle

New Online Safety Lesson: Texting and Driving Don’t Mix

April 19, 2012

The 15th installment in the lesson series I’m writing on behalf of iKeepSafe, looks at distracted driving. Would you let someone cover your eyes for two seconds while you were driving? No way.

But teens will be surprised to learn that if they are on the freeway going 65 mph, a quick two-second glance to read a text means they have driven nearly two-thirds of a football field without looking. And those precious seconds can kill them, their passengers or the people in other vehicles.

More than 3,000 people died, and thousands more were injured, due to distracted driving in 2010 alone.

This lesson discusses eye-opening statistics on the perils of distracted driving and alerts teens to the hazards of looking away from the road, plus offers tips for avoiding the temptation of phone use while driving.

To see and use this lesson, the companion presentation, professional development materials, and parent tips click here: TXT + DRV = Total Fail.

Linda

Comments Off | Linda's Blog | Tagged: , , , , , , | Permalink
Posted by Linda Criddle

It’s Official, Half of Cell Phones in U.S. Are Now Smartphones

April 16, 2012

New data from Nielsen shows that half (49.7%) of U.S. mobile subscribers have converted to smartphones, a 38% increase over February 2011, when only 36% of mobile subscribers used smartphones.

Nielsen’s research also shows that Android remains the leading cell phone platform with 48% of the U.S. smartphone market, followed by 32.1% who use an Apple iPhone, and 11.6% who remain Blackberry owners.

Up until last week, I was among the diehard Blackberry users, but I’ve purchased an iPhone and will never look back.

As a further indication of the imminent demise of Blackberry, their stock has plummeted.

Among consumers who acquired their smartphone within the last three months, 48% surveyed said they chose an Android and 43% bought an iPhone.

Not only was Blackberry absent, so was any mention of Windows phones.

In the now two-horse race, the rising frustration by developers and users of the Android platform indicates their market lead over Apple is far from assured. From a safety perspective, choosing Apple and Apple apps is the best bet.

Linda

Comments Off | Linda's Blog | Tagged: , , , , , , | Permalink
Posted by Linda Criddle

What Does the Future of Mobile Look Like? Here’s a Peek

April 5, 2012

Business insider just hosted their Future of Mobile conference, and kicked it off by creating a presentation of current mobile trends. It’s pretty cool and worth not only looking through, but also pondering the implications for your own mobile use as well as that of whatever company you work for.

Among the stats:

  • In 2011, the number of smartphones sold exceeded the number of PC’s sold but that’s just the tip of the iceberg because….
  • Off all the mobile device users, only 835 million are smartphone users, whereas 5.6 Billion are still on ‘dumb phones’.
  • Mobile apps are now a ~10 billion dollar market – growing at 100% a year.
  • It took AOL 9 years to get 1 million users. It took Facebook 9 months. But it only took the new “Draw Something” mobile app 9 days.  (NOTE: Draw something roared onto the mobile app scene to now be the #1 App in 79 countries, with more than 20 million downloads. It generates over $100,000 in revenue a day, and has more than 12 million users a day.

Take 5 minutes to flip through the deck and be awed by the sheer volumes represented.

Linda

Comments Off | Linda's Blog | Tagged: , , , , , | Permalink
Posted by Linda Criddle

Generation OMG – Infographic and Data on How Teens Use Mobile Devices

April 3, 2012

Frustrated at your mobile data download speed? Or, Irritated that most carriers have put bandwidth limits their data plans? Blame the apps – or the teens that love to use them.  A great new infographic highlights the trends, but first, here’s a little background.

In December 2011, Nielsen research found that “in the third quarter of 2011, teens age 13-17 used an average of 320 MB of data per month on their phones, increasing 256% over last year and growing at a rate faster than any other age group.”

That’s not to say teens are the biggest data hogs, those aged 25-34 take that distinction, but teens are rapidly overtaking other generations in their data demand.

The data usage among teens isn’t for talking; they’d rather text – though the biggest texters are also the biggest talkers. According to Nielsen’s research voice usage has seen its greatest decline among teen users – from an average of 685 minutes to 572 minutes. Over the same time period, the average number of text messages sent by teens hit a shocking 3,417 messages a month, or roughly 114 texts every day.

When surveyed, the top three reasons teens said that they prefer messaging to calling was because it is faster (22%), easier (21%), and more fun (18%).

Last week (March 2012) new research  from the Pew Internet & American Life Project provided new evidence on the preference to text over calling:

  • 14% of all teens say they talk daily with friends on a landline, down from 30% who said so in 2009. Nearly a third (31%) of teens say they never talk on a landline with friends (or report that they cannot do so).
  • 26% of all teens (including those with and without cell phones) say they talk daily with friends on their cell phone, down from 38% of teens in 2009.
  • 63% of all teens say they exchange text messages every day with people in their lives. This far surpasses the frequency with which they pick other forms of daily communication, including phone calling by cell phone (39% do that with others every day), face-to-face socializing outside of school (35%), social network site messaging (29%), instant messaging (22%), talking on landlines (19%) and emailing (6%).

Another way to look at the rise in data use is to consider that AT&T’s mobile data traffic grew 8,000% in the four years from 2008 and 2011 – and they expect mobile data traffic to be eight to ten times higher by 2015.

Now, research by social entertainment company Fun Mobility has leveraged existing research and added their own to create an infographic titled “Generation OMG: How Teens Use Mobile Devices” that illustrates the growth of teen (ages 13-17) data usage and how much of that increase comes from gaming and mobile applications.

Check out the infographic:

Infographic

Linda

Comments Off | Linda's Blog | Tagged: , , , , | Permalink
Posted by Linda Criddle

Internet Dating Bill Passes Illinois House – But it Does More Harm than Good

March 30, 2012

A new piece of legislation designed to increase safety of online daters passed by a vote of 83-26 in the Illinois House Thursday. The legislation, HB4083, would require all internet dating services operating in Illinois to show whether or not they conduct background checks on their members.

According to Stltoday, one of the bill’s sponsors, Rep. Michelle Mussman said the purpose of the bill is to help usersbecome more savvy and take better steps to protect yourselves” from sophisticated online predators. “A lot of them aren’t just another nice guy looking to meet a nice girl. This is a predator looking for prey,” Mussman said. “They’re going to look for somebody who’s vulnerable and they’re going to trick you into revealing information about yourself that they can use to their advantage.”

Opposing the legislation on grounds that it overreaches the state’s legislative responsibility. State Rep. Jim Durkin, R-LaGrange, said adults should be responsible for their own safety when using online dating services, reports Stltoday. “If they’re going to participate in this type of social networking, they have responsibilities to perform their own due diligence. This is overstepping what is necessary,” Durkin said.

Adding to the dissent, State Rep. Dennis Reboletti joined in calling the protective disclaimer unnecessary. And he gets to the core of my concern when he said, People go on dates all the time without the aid of Match.com or True.com and we don’t have any requirements for those individuals. Websites providing disclaimers revealing that they conduct background checks could do more harm than help. “What if people lie? Now we have the situation where we think there’s a background check and all the information is validated but in reality it isn’t. Aren’t we actually giving people a false sense of security?”

Mussman countered this objection by saying there will always be people who manage to fool background checks. “Any sort of background check is never a full proof method, Mussman said. “We’re not going to catch every single person, but not being able to catch everybody is not a reason to not take any step forward.”

4 reasons this legislation should not pass

While the goal of protecting online daters sounds good, the problems this legislation create are significant and the gain dubious.

  1. Dangerously false sense of security – Most background checks will not reveal a problem.For example, less than 10% of sexual predators are ever caught and convicted for their crimes – so even if a background check caught every registered sex offender, the sense of safety users felt would be dangerously false. Add to this that most stalkers, swindlers, etc. aren’t caught and the enormity of the misrepresentation of safety becomes apparent.The best any dating website can do is to say that the site cannot guarantee that daters will not behave badly, that users must use caution when meeting anyone – whether they met online or offline, and provide clearly discoverable safety guidelines for users to follow.
  2. Falsely banning legitimate users. Many background checks have inaccurate ‘false negative’ information. Consumers do not have access to see the information pulled about them in background checks, and are therefore unable to challenge or correct information that inaccurately claims negative behavior. People with the same or similar names for example may have ‘data bleeding’ where the information from one person negatively impacts another. In other cases victims of identity theft may appear to be someone with a criminal record when in fact it was the thief who committed the crime, not the innocent victim.
  3. Places an unreasonable burden on online dating companies.  I’m not a lawyer, but this legislation would seem to favor dating sites that claim they perform background checks – essentially forcing others to perform the same checks to compete, in spite of the issues just highlighted with background checks. Additionally, it would seem to open the dating sites to increased risk of lawsuits by any user who comes to harm from contact through the site with any form of criminal – rapist, swindler, stalker, etc.
  4. The false sense of trust gives criminals greater freedom. The implied safety assurance that a prominent notice that ‘our users have been screened’ sends would be a godsend to criminals of every ilk as it means users would be less likely to remain vigilant against their exploits.

In other words, while on the surface the legislation sounds like motherhood and apple pie, in reality it makes online dating a potentially more dangerous endeavor.

If you want greater safety for online daters, encourage sites to provide excellent safety materials so users are armed with the skills and knowledge they need to protect themselves, and encourage sites to have strong moderation to be watching for issues and to respond to issues raised by their members.

Linda

Comments Off | Linda's Blog | Tagged: , , , , | Permalink
Posted by Linda Criddle

New Online Safety Lesson: Online Hate Crimes: Are you part of the solution or part of the problem?

March 21, 2012

The 14th installment in the lesson series I’m writing on behalf of iKeepSafe, looks at taking a stand against hate crimes and content groups on the internet.

The vast majority of people in every country oppose hate, hate groups, and hate crimes. Unfortunately however, the number of hate groups around the world is increasing. In the U.S. hate groups have surged by 54% since 2000 when there were 602 hate groups, to 1,018 official hate groups in 2011.

The rise in hate groups isn’t just an American problem; Germany, South Africa, France, Britain, and other countries also struggle with rapidly expanding numbers of hate groups.

To see and use this lesson, the companion presentation, professional development materials, and parent tips click here: Online Hate Crimes: Are you part of the solution or part of the problem?

Linda

Comments Off | Linda's Blog | Tagged: , , , , , , , , , , , | Permalink
Posted by Linda Criddle

I Get Asked the Darnedest Things – Including How to Protect Ill-Gotten Gains

March 5, 2012

I recently spent a week teaching several hundred students, teachers and parents in several schools and school districts across North Carolina. The sessions are always great, but since there is never enough time to answer everyone’s safety, security and privacy questions, I encourage listeners to leverage the “Ask Linda” section on my website.

The questions I typically get asked range from “is_____ a strong password”, to questions about situations that need immediate intervention. However, among the many follow up questions from this trip came my first request for assistance in protecting stolen funds. The audacity and irony in the email are just too good not to share, so with identities hidden, here’s the original email – and my response. Enjoy.

On 12/16/2011 “Michael”:

Today, you spoke my school (xxxxx).  The talk was the best I have ever heard at a school event because during 2009-2010 I recovered other people’s old RuneScape accounts.  I learned many ways to look up people, many of which you mentioned today.  I have since stopped recovering because many people have found out this easy way to make money and so there are far fewer unused accounts to steal. I also did a fair bit of phishing on the system pelican (fish.in.rs) which is a mass mailer of runescape phishers, so all I needed was an email address owned by a scaper.

Since then, I have been sitting on a few thousand dollars worth of RuneScape currency. With college coming up, I am hoping to sell this on the RuneScape black market sythe.org .  The preferred method of communication of most members is MSN which I saw on your website that you used to work for.  One of the questions I had for you is: can another person that is chatting with you on MSN get your ip address?  I have heard many hackers claim they can get ips through skype, MSN, and email communications.

On another note, I plan on majoring in mathematics and becoming an investor.  However, I am wondering what classes are recommended to become an internet security consultant such as yourself.

Enjoy your stay in North Carolina,

Thanks,

Michael

“Michael”,

The answer to your question is yes, MSN or windows live uses the Microsoft notification protocol that carries the client IP address in some of its headers. While I’m pleased that you found my internet safety, security and privacy presentation to be useful, I’d say that given your phishing and account theft activities the field of security is not the right one for you, and recommend you stick to investing.

Linda

Comments Off | Linda's Blog | Tagged: , , , , , | Permalink
Posted by Linda Criddle

Creating a secure password – Easy Instructions and Infographic

March 4, 2012

Creating passwords that are strong and memorable is easy – once you learn how – yet  it is probably the most frequently asked question I get. Whether you’re young, old, tech-savvy or a novice, everyone has to learn how to create strong passwords or run a very high risk of being hacked.

It’s a new year, so to help you start it off right; here are two resources for you:

The first is my blog Safe passwords don’t have to be hard to create; just hard to guess that walks you through the password creation process. The second is an infographic from Killer Infographics that explains the same concepts through images.

Safe passwords don’t have to be hard to create; just hard to guess

The prospect of changing an internet password or using multiple passwords panics so many people because you believe being safer requires memorizing multiple passwords like Wts4e-_79PBa13^_qnS.  Frankly, if I thought I’d have to memorize a dozen passwords like that I too would be anxious.

The result is that many people find the task so daunting that you still resort to using only one password even though you know it’s unsafe particularly if it is a simple one – if it gets compromised all of your Web information is compromised. Or you use several passwords, but they are all short simple words or include numbers that relate to your life they are still too easy to guess.  Or, if you made hard to remember passwords (probably because your business or a Web site forced you to) then you likely have a list of the passwords right next to your computer – even though you know this also compromises your safety.

There is nothing complicated about making strong yet memorable passwords

In fact it’s easy and can actually be fun – you just have to know how – and the payoff in increased safety is huge.

A few key aspects of a strong password are length; a mix of letters, numbers and symbols; and using no elements that ties to your own personal information.

Look at a few weak passwords:

  • Password – The word “Password” is the most commonly used password and it is pathetically weak – as are ‘default’ and ‘blank’. These are simple words and easily guessed or broken with a dictionary assault on the password.
  • Smith1968 – Though this uses 9 characters and includes letters and numbers, names that are associated with you or your family, or uses other identifying information such as birth year, are easily hacked.
  • F1avoR – Though it mixes up capitols and numbers, it is too short and substituting the number 1 for the letter l is easy to guess.

Look how easy it is to create strong password:

Use a phrase:

  • 2BorNot2B_ThatIsThe? (To be or not to be, that is the question)
  • 2_4_6_8WhoDoYouAppreciate? (from the children’s chant)
  • L8r_L8rNot2day,AllTheLazyPeopleSay (Later, later, not today, all the lazy people say

Incorporate shortcut codes or acronyms:

  • CSThnknAU2day (Can’t Stop Thinking About You today)
  • MyWork@MSFTisOver (My work at Microsoft is over)

Play with your keyboard – you don’t have to    think of it just as the numbers you see, it can also be a canvas to draw on.

  • Make a letter of the alphabet – This W is actually 1qazdrfvgy7, but it’s a lot easier to remember!
  • Or start at one point and make a circle – or smiley face. The circle is 76tgbnm,lo98. The smiley face adds ui (the eyes) and hjk for the smile.

If you want additional information about creating safe passwords, check out:

Now you’re ready to create your own strong, long, mixed-character passwords that people will have a hard time guessing without you needing to break out in a sweat. Have fun and be Safer!

Linda

Comments Off | Linda's Blog | Tagged: , , | Permalink
Posted by Linda Criddle

« Previous Entries
Follow

Get every new post delivered to your Inbox.