According to Computerworld, Apple yanked a “controversial” support document from its website Tuesday, after it began a heated debate among the Apple faithful. What was the controversial advice? Apple suggested its users run anti-virus software.
security
Can I Change My Social Security Number?
By 11.3.08
Concerned about a recent incident in which his wife’s social security number may have been exposed (by a Bank of America employee, but that’s another story), Christian wants to know if you can change your social security number. In special circumstances, yes, the Social Security Administration will change your number. You need to show proof that 1) you’ve suffered harm from someone misusing your ss# and 2) you’ve made all reasonable efforts to otherwise solve the problem i.e. credit report freezes, closing accounts and changing account numbers, etc. If both of these apply, then you can simply visit your local SSA office, call, or visit www.ssa.gov/reach.htm.
500,000+ Banking Passwords Stolen By Sinowal Trojan Horse, So Far
By 11.1.08
Security researchers uncovered over half a million bank account logins stolen via a sophisticated trojan horse known as Sinowal. The data goes back to 2006, an unusual longevity for a trojan horse. Not mentioned in the news reports: who’s to say this is the only cache? [NYT] (Photo: Darcy McCarty)
Did Turkish Police Beat Information Out Of A Suspect In The TJ Maxx Credit Card Case?
By 10.24.08
Christopher Soghoian over at Cnet is reporting that Turkish police may have used violence to get the encryption keys of one of primary ringleaders in the TJ Maxx credit card theft investigation. The suspect, Maksym Yastremskiy, is apparently a “major figure in the international sale of stolen credit card information.”
Woman Says TSA Made Her Take Brace Off, Stand On Sprained Ankle
By 10.21.08
A Washington woman says the TSA made her take off her ankle brace before passing through security. Now her sprained ankle is fractured. “Then she made me lift up each foot individually and put all the weight on it. It was incredibly painful,” said Lona Dunlap. According to the TSA website, TSA agents don’t make you take off your brace. Rather, they’re supposed to swab the brace and look for trace explosive elements. The TSA is reviewing video footage and says it takes the allegation very seriously.
French President's Bank Account Hacked
By 10.20.08
While French President Nicolas Sarkozy has been posturing as an international leader during this time of global financial crisis, thieves have been raiding his online bank account, withdrawing small amounts over an extended period of time. Just goes to show that identity theft can happen to anyone, whether or not you’re important enough to have people Photoshop your love handles away. For best protection, install and keep up to date a good security program, like ESET. Only log into your bank from the main URL, never click on a link in an email that appears to be from your financial institutions. Use usernames and passwords that are a string of random letters and numbers. Write them down and hide it in a secure place, not inside of a fresh hot pain au chocolat.
Stop Payment Orders On Checks Only Last Six Months
By 10.8.08
Jennifer says National City Bank has contacted her fiance to inform him that the stop payment order he placed on a check is about to expire, and he’ll have to pay another $32 fee to renew it for six more months. She writes, “Have you heard of stop payment now only being ‘suspend payment for six months’? This seems to me to be extortion.” We’re going to come down on the side of the banks in this case—but because of the recurring nature of the fee, it might just be cheaper to close the account.
The Idiot-Proof Way To Securely Use Public Wi-Fi
By 10.6.08
We talk a lot on this blog about personal data and privacy, but not so much about how to secure that data on your own computer. That’s because a.) we’re not Lifehacker and b.) the solutions frequently bloat into crazy, jargon-filled recipes that scare away the non-IT crowd. Not this time! For all you novices, here is a single idea you should consider that will help keep your personal data personal, and make your identity that much harder to steal.
GMail's Achilles Heel: Terrible Customer Service
By 10.5.08
Losing access to your GMail account is tantamount to banishment from the internet, but Google’s non-existent customer support makes it nearly impossible for rightful owners to regain control of their accounts. The New York Times asked Google why they couldn’t afford to offer phone-based customer support, a simple question Google needed three people to answer.
7 Stupid Online Security Mistakes You're Probably Making
By 10.3.08
A new study National Cyber Security Alliance says that you’re probably making one of these 7 stupid mistakes when it comes to your own online security. The study shows that when Symantec, polled 3,000 online users and scanned the computers of 400 of them, 81 percent of respondents said they were using a firewall, but only 42 percent indeed had a firewall installed on their computer. Whoops.
Comcast Admits Error In Requiring SSN Under "Patriot Act"
By 9.24.08
Comcast’s customer service czar Frank responded to our post “Comcast: “The Patriot Act” Mandates We Need Your SSN” by saying it was an error on part of the agent. Via Twitter he said:
How To Get Utilities And Phone Service Without Giving Up Your SSN
By 9.23.08
As several readers discussed in yesterday’s post, utility, phone, and cable companies usually require your Social Security number in order to perform a credit check before activating service. You don’t have to provide it, but they don’t have to extend their services to you either. Here’s one reader’s explanation of how he was able to turn on water, electricity, gas, and an AT&T land line without turning over his SSN.
Online 'Security Questions' Can Be Too Easy To Crack
By 9.19.08
The ease with which a student was able to reset Sarah Palin’s Yahoo email password highlights a vulnerability of so-called “challenge questions” designed to verify your identity: if the questions are about personal details from your life, there’s a risk that somewhere out there on the web, that info is visible to the public. That might be a realistic risk only for public figures, but it’s also possible that friends or family members could answer your questions with a little guesswork. If you want better security, make up fake answers that you’ll remember.
By 9.19.08
../../../..//2008/09/19/this-saturday-september-20th-is/
This Saturday (September 20th) is the Better Business Bureau’s “Secure Your ID” day: in select cities, “bring up to three boxes or bags of paper documents that contain your personal information and we’ll shred them.” Or, you know, just do it yourself all year long. [BBB]
'Identity Theft-Proof' Wallet Blocks RFID, Goes In Front Pocket
By 9.18.08
If you’re concerned about your RFID-chipped credit cards being skimmed, you might want to consider shielding them. DIFRwear makes a wallet with the shielding already included, and now roguewallet in Maine has introduced its own RFID-shielded version, with a fin-shaped design so it fits better in your front pocket to thwart pickpockets. Unfortunately, it’s also $50, compared to $20 for the more conventional looking DIFRwear hip-pocket design. (Both are FIPS 201 compliant, if that means anything to you.)
Forever 21 Aftershocks? Citibank Cancels Cards Due To Retailer Security Breach
By 9.17.08
We’ve received queries from readers telling us that their Citibank cards have been replaced, and asking whether we’ve heard about any new security breach. Other than Forever 21 we haven’t, so we’re wondering whether they’re responsible for the stories below.
Capital One Mails Fraud Claim To The Person Committing Fraud
By 9.17.08
“Lisa” writes, “I recently found out that I was a victim of identity theft.” What shocked her, and us as well, is that after Capital One notified her that they’d approved the card with another address, they followed up by sending their fraud claim to the criminal’s address instead of Lisa’s.
98,930 Affected In Forever 21 Data Breach
By 9.15.08
Forever21 announced Friday that the Secret Service told it criminals had jacked 98,930 credit and debit card numbers from its computers. Based on their forensic analysis, your digits could be in the hands of unsavory individuals if you shopped there on…
