Presentation is loading. Please wait.

Presentation is loading. Please wait.

OWASP CONSUMER TOP TEN SAFE WEB HABITS

Published byClarissa McKenzie Modified over 5 years ago

Similar presentations

Presentation on theme: "OWASP CONSUMER TOP TEN SAFE WEB HABITS"— Presentation transcript:

1 OWASP CONSUMER TOP TEN SAFE WEB HABITS
SAFE PRACTICES FOR CONSUMERS ON THE WEB

2 INTRODUCTION Today, more and more of our personal lives is spent connected to the Internet. We spend a significant amount of time checking , looking at social media, logging into our financial accounts, shopping, and more.

3 01 PROTECT YOUR SECRETS

4 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Use different passwords for each site Use long passwords not based on a dictionary word Don’t share your password Use a password manager Enable 2 factor authentication Select fake and/or random answers for security questions

5 02 GUARD YOUR PRIVACY

6 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Limit information shared on social media, including online “quizzes”, location, vacation plans, etc. Use HTTPS; check your browser’s address bar for the secure icon Check your privacy settings on all social media and mobile apps Delete/shred information which is no longer needed Encrypt important information Use Internet search engines which do not collect/retain search information for sensitive searches Encrypt all your communications when browsing by using a VPN or browsers that have built-in proxy or VPN feature.

7 USE SECURITY SOFTWARE AND SERVICES
03 USE SECURITY SOFTWARE AND SERVICES

8 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Enable the firewall on your personal computer and WiFi/Router Install anti-virus software and IDS and regularly scan your computer Use VPN Use browser's plugins which enforce security Use encrypted s and messaging services

9 SECURE YOUR ENVIRONMENT
04 SECURE YOUR ENVIRONMENT

10 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Change all default passwords Disable guest accounts Set your devices to ask before connecting to WiFi networks and remove networks no longer being used Configure your home devices (WiFi access points, Routers, TVs, etc.) to be secure (i.e., change default passwords, update firmware, rename routers and SSID’s, turn off uPnP, etc.) Configure your system to only use Whitelisted applications Don’t use administrator or system accounts for routine tasks/work

11 PERFORM ROUTINE MAINTENANCE
05 PERFORM ROUTINE MAINTENANCE

12 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Use current version of software and enable auto-updates where possible Regularly patch your systems – Computers, phones, routers, WiFi, etc. Use modern browsers Uninstall unsafe software, including Java, Shockwave, Flash Uninstall software you don’t use Regularly run external port scans to check for unused services

13 06 THINK TWICE BEFORE TRUSTING

14 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Password protect your systems, devices, accounts, etc. Question s, even from friends and family and do not click on links from unknown users If something doesn’t seem right, ask the source directly or do some research (via Google or some other means) before taking any action Don’t leave your systems unattended, use lockout screens Use software from official web sites and app stores, do not give applications excessive permissions Verify downloads against checksums

15 07 PLAN FOR THE WORST

16 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Backup important data, including passwords and encryption keys, and store in a safe place, offsite Configure your devices to be secure, for example to use disk encryption, in the event they are stolen or lost Use surge protectors Use online services and storage to backup data. Encrypt sensitive data Print off account recovery sheets (i.e. Google 10 passwords) and store offsite at a friend's place or at the bank Have backup Internet access

17 08 CLEANUP YOUR DEVICES AND ACCOUNTS

18 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Logout of accounts when you are done using them Periodically review and delete online accounts no longer needed or used Delete files no longer needed, including temporary files, text messages and chat logs, (don’t forget sent mail), recycle bins, and old SSH keys Periodically review and delete system accounts no longer needed or used Periodically clean your browser cache Properly clean and sanitize computer equipment before discarding

19 AVOID UNNECESSARY RISKS
09 AVOID UNNECESSARY RISKS

20 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Avoid malicious/underground websites Avoid creating accounts for “shady” and sites you do not use regularly Do not do important tasks (pay bills, trade stocks, etc) on unprotected networks Use non-persistent virtual machines for riskier sites When creating DNS domains, use a privacy service to hide your home address if you have an unlisted telephone number Understand the risks of unsigned and side-loaded applications. Do not use them on your primary phone or system

21 BE VIGILANT AND ON ALERT
10 BE VIGILANT AND ON ALERT

22 Recommendations: CONSUMERS SHOULD FOCUS ON:
TECH SAVVY USERS SHOULD ALSO: Think through online/digital activities and compare them to what you would do in the “real world” Use account monitoring services Review online account activity Beware of tech-support scammers Be savvy on client-side and social engineering attacks Use credit monitoring and freeze, and similar services to protect your credit

23 SUMMARY

Download ppt "OWASP CONSUMER TOP TEN SAFE WEB HABITS"

Similar presentations

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
Smartphone and Mobile Device Security IT Communication Liaisons Meeting October 11, 2012 Theresa Semmens, CITSO.

Smartphone and Mobile Device Security IT Communication Liaisons Meeting October 11, 2012 Theresa Semmens, CITSO.
Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.
1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.

1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.
Operating System Customization

Operating System Customization
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.

Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.
Data Security Issues in IR Eileen Driscoll Institutional Planning and Research Cornell University

Data Security Issues in IR Eileen Driscoll Institutional Planning and Research Cornell University
MS System Setup Securing A System. Use Automatic Updates For a workstation or server, schedule the updates to occur regularly. –Control panel click on.

MS System Setup Securing A System. Use Automatic Updates For a workstation or server, schedule the updates to occur regularly. –Control panel click on.
11 SUPPORTING INTERNET EXPLORER IN WINDOWS XP Chapter 11.

11 SUPPORTING INTERNET EXPLORER IN WINDOWS XP Chapter 11.
CHC DI Group. What We Will Cover Securing your devices and computers. Passwords. Emails. Safe browsing for shopping and online banks. Social media.

CHC DI Group. What We Will Cover Securing your devices and computers. Passwords. s. Safe browsing for shopping and online banks. Social media.
Security Awareness ITS SECURITY TRAINING. Why am I here ? Isn’t security an IT problem ?  Technology can address only a small fraction of security risks.

Security Awareness ITS SECURITY TRAINING. Why am I here ? Isn’t security an IT problem ?  Technology can address only a small fraction of security risks.
Staying Safe Online Keep your Information Secure.

Staying Safe Online Keep your Information Secure.
PLUG IT IN 7 Protecting Your Information Assets. 1.How to Protect Your Assets: The Basics 2.Behavioral Actions to Protect Your Information Assets 3.Computer-Based.

PLUG IT IN 7 Protecting Your Information Assets. 1.How to Protect Your Assets: The Basics 2.Behavioral Actions to Protect Your Information Assets 3.Computer-Based.
Troubleshooting Windows Vista Security Chapter 4.

Troubleshooting Windows Vista Security Chapter 4.
Internet of Things Top Ten. Agenda -Introduction -Misconception -Considerations -The OWASP Internet of Things Top 10 Project -The Top 10 Walkthrough.

Internet of Things Top Ten. Agenda -Introduction -Misconception -Considerations -The OWASP Internet of Things Top 10 Project -The Top 10 Walkthrough.
TECHNOLOGY GUIDE THREE Protecting Your Information Assets.

TECHNOLOGY GUIDE THREE Protecting Your Information Assets.
Internet and Social Media Security. Outline Statistics Facebook Hacking and Security Data Encryption Cell Phone Hacking.

Internet and Social Media Security. Outline Statistics Facebook Hacking and Security Data Encryption Cell Phone Hacking.

Similar presentations

Ads by Google