Personal Cyber Security for Millionaires
The things we don’t think about until something bad happens.
Stolen credit card numbers, your home address online, SSN exposed.
These are things we don’t think about until something bad happens. Cybersecurity Ventures expects global cybercrime costs to grow by 15 percent per year. Warren Buffet calls cybercrime the “number one problem with mankind.”
The unfortunate part is that this trend is only going to increase with AI and more advanced threats.
You have more to lose than the average Joe, so how do you protect yourself?
I recently listened to fellow Long Angle member Jared Ablon give a talk about improving your cybersecurity. He shared the practical steps to reduce the risk of stolen information.
In 2hrs, I executed everything he said to put myself in a better position security-wise. Some of this can seem daunting but makes it harder for a hacker to penetrate, thus encouraging them to move elsewhere.
Jared graciously offered his email, jaredablon@gmail.com for more information or for trusted security professionals to help you accomplish everything.
Here’s what I learned:
Mitigate Social Engineering Attacks
Minimize your data footprint online and off
Be paranoid: Zero trust by default.
Go through your Google Drive/Dropbox/Box account, delete old documents with PII (personally identifiable information).
Do not trust emails/attachments you receive; call the sender if you have a bad gut feeling.
Before sending wires, call the sender to verify information.
Do not click on unknown links; inform everyone in your household to do the same.
Use common sense (e.g., do not send Bitcoin to Joe Biden).
Be careful with what you post (e.g., don’t post your CDC vax card with your DoB)
Always hit the SPAM button for unsolicited emails
Do not “unsubscribe” because that validates that you have a valid email address
Never email anything you want confidential - “Email is like a postcard.”
Avoid using debit cards/bank information online in written form.
Delete old accounts you do not use – social, email, etc.
Have a trusted passphrase among family/friends to mitigate AI tools spoofing voices. (This is scary).
Mitigate Phishing and Ensure Privacy
Sign up for DeleteMe to remove content from the web and data brokers (Kanary and OneRep are other providers)
White Pages, Mylife, Spokeo, etc. are providers that buy and sell your data.
Ask the Wayback Machine to delete archived content.
Ask Google to remove PII.
Tip: If you’re in California, California’s Consumer Privacy Act (CCPA) allows the state’s residents to obtain copies of the information data brokers have collected on them. This act also permits California consumers to request the erasure of their information and opt out of having their data sold.
Mitigate Compromised Credentials
Use a password manager. I prefer 1password (others are Lastpass and Dashlane).
Each website you create an account or login, can now have a unique password that is stored in 1password.
This also allows for sharing passwords without divulging the actual password.
Enable 2-factor authentication on everything.
Preferably non-SMS-based 2-factor authentication, as SIM hacking can happen to your cell phone.
If you store information on a Dropbox-like service, go through 3rd party access. You’ll be surprised what still has access to your account.
Reduce Risk of Exploits
Only download apps from trusted sources (e.g. Google Play™ or the App Store®).
Do not use removable media (CDs, USBs, etc.) unless from a trusted source.
Avoid using airport USB charging ports.
Keep software up-to-date. Even better, enable auto update of apps and OS where applicable.
Run anti-virus software on Windows.
Avoid public wi-fi if possible.
If you must, use a VPN. I use NordVPN.
Never buy used computer equipment.
Change your home internet’s router default password.
Never ignore your browser warnings or go to non HTTPS websites.
Go through your computer/phone and remove applications you do not use.
When installing new software, only give applications the permissions they really need.
Lost and Stolen Asset Protection
Turn on Full Disk Encryption (Mac / Windows) on all devices.
Turn off laptops when traveling.
Turn on a password-protected lock screen for computers and mobile devices.
Have the lock screen auto-turn on after 3 minutes of inactivity.
Do not sell old computer equipment on marketplaces.
Securely dispose of computer equipment (phones, laptops).
Use pins when possible; TouchID/FaceID is not the most secure.
Turn off Bluetooth on all devices when not needed.
Share location services sparingly.
You can be tracked, and people can know when you are at home, work, etc.
Only share location services on certain apps and turn them off when not needed.
Use offsite secure backups. Backblaze has been a popular option.
Beyond the Fundamentals
Freeze credit with Equifax, Experian, and TransUnion.
Create a home guest wi-fi network.
Create an account for all online transactions (ACH, Wires, etc). Only keep the cash necessary for these transactions. Keep the bulk of your cash elsewhere.
Advanced
Have a banking-only laptop/computer. JPM has an option to only allow login to certain IP addresses.
Have an air-gapped laptop/computer that does not have internet access. This would be to store secure, PII-filed files.
Use hardware tokens to login to brokerages, etc.
Put a firewall in your home (with VPN capabilities).