Security in the Cloud

Clouds of smoke, smokescreen – okay, I’m playing on the puns here but there is a serious issue to discuss: security – on your computer or device, online or up in the cloud.
The recent celebrity photograph leaks on iCloud has brought this matter to the attention of everyone. How could this have happened when we’re all so aware of the need for passwords and protection electronically? What went wrong and what can we do to protect ourselves further?
It is generally accepted that the passwords used were just too easy to guess. Also, according to iCloud, many of the victims had not used the two step security system provided to protect their data. The lesson for us here is to make use of any extra security measures that are available to us. I know they seem a pain when all you want to do is have a quick look at a photo but do you really want the whole world to check out your private information?
This latest security breach is by no means the sole preserve of iCloud. Recent websites that have had their user’s details compromised include EBay, Mumsnet and Barclays Bank. When this happens we are told to go in and change our details. All very well, we say, but it’s hard enough to remember those details in the first place, let alone decide on new ones and then, heaven help us, remember those new ones as well.
The worst thing to do is to use the same password for different sites. This is a catastrophic error. If a hacker works out your password then they will have access to all your accounts used with it.
I know two options for remembering passwords, neither of which are foolproof. One is to store all of your passwords in an extremely well protected file in the cloud somewhere. Again, this would be disastrous if anyone gained access to it.
The other method is to develop your own system which uses letters, numbers and other symbols but in a different order or sequence for each website or other area that needs one. I cannot tell you what to do here as you will need to work your own system out for yourself. Here, the problem would be if someone cracked your method. They could then attempt to access your accounts by guessing what you have used. So use the most complicated formula you can think of.
Difficult passwords are essential for everything now. It also covers all areas of your personal and business’ finances online, particularly banking and payments. Only make payments on websites with the “https” suffix. “Https” stands for Hypertext Transfer Protocol Secure and is for communicating sensitive information. Seeing this at the front of a website address (in the bar at the top of the page) ensures that the website you are using has signed up to certain security protocols. I would not enter my financial details on any site that does not display this extra “s” after the “http” that is usually present.
In addition to financial security, unique passwords should also go a long way to protect you from identity theft. Sussex Police recommend that you use only one credit card for online payments. In that way your potential for fraud and identity theft is narrowed.
Credit card issuers are governed by the Consumer Credit Directive which makes them jointly liable with suppliers of purchases you make should any fraudulent transactions occur. Debit cards do not provide the same level of legal protection that you would get from using a credit card. However, many debit card issuers do offer a similar level of service voluntarily.
It is also important to check your financial transactions carefully as identity theft may not be recognised by you for a long time unless you do so. On average it takes 18 months for someone to notice they’ve had fraudulent payments made from their accounts or had accounts or financial contracts opened up in their names. Do not let that happen to you. Make it a routine part of your working week to check your bank and credit card statements.
Be aware, be vigilant, be on the case and alert.

Leave a Reply

Your email address will not be published. Required fields are marked *