keeping 'em safe: ways to protect your clients online

32
Keeping 'em Safe: 8 More Ways to Help Your Clients

Upload: kate-bladow

Post on 24-Jan-2015

295 views

Category:

Technology


2 download

DESCRIPTION

A presentation for the 2011 Virginia Annual Statewide Legal Aid Conference. You need to protect yourself and your clients' data online. We'll look at using social network sites, downloading viruses, leaving metadata in documents, having bad password practices, putting information in the cloud.

TRANSCRIPT

Page 1: Keeping 'Em Safe: Ways to Protect Your Clients Online

Keeping 'em Safe:8 More Ways to Help Your Clients

Page 2: Keeping 'Em Safe: Ways to Protect Your Clients Online

More than 8 in 10 US small businesses believe their firms are safe from cyber threats yet

almost 80% have no formal security policies in place.

You can be attacked and not even know it. Even worse, your system could be used to attack

other people, and you may not know it.

Page 3: Keeping 'Em Safe: Ways to Protect Your Clients Online

What Is Cyber Crime?● Spam● Fraud● Obscene or offensive content● Harassment● Child pornography● Drug trafficking● Cyber terrorism● Cyber warfare

Page 4: Keeping 'Em Safe: Ways to Protect Your Clients Online

Who Is Behind Cyber Crime?

● Script kiddies● Hacktivists● Individual miscreants● National & transnational organized criminal

enterprises● Nation states

Page 5: Keeping 'Em Safe: Ways to Protect Your Clients Online

Why Should You Care?● Your clients trust you with very sensitive data. ● If they become victims, your clients have less of

an ability to bounce back.● Systems that are used to commit crimes often

support the same organized networks that are behind human trafficking, identity theft, child pornography, and other issues you battle against daily.

Page 6: Keeping 'Em Safe: Ways to Protect Your Clients Online

Biggest Threat?

You

Page 7: Keeping 'Em Safe: Ways to Protect Your Clients Online

What? No Way!● Acting maliciously● Forgetting to log off● Losing laptops, USB keys, or smartphones● Storing client data in questionable places● Downloading viruses and malware● Using social network sites carelessly● Leaving metadata in documents● Having bad password practices● Getting tricked

Page 8: Keeping 'Em Safe: Ways to Protect Your Clients Online

Acting maliciously

Page 9: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Put policies in place and enforce them● Trust your gut

Page 10: Keeping 'Em Safe: Ways to Protect Your Clients Online

Forgetting to log off

Page 11: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Log off when you leave your computer● Shut down your computer at the end of the

day● Set up your computer to automatically lock

when the screensaver comes on

Page 12: Keeping 'Em Safe: Ways to Protect Your Clients Online

Losing laptops, USB keys, or smartphones

Page 13: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Pay special attention and be careful● Store only the client data you absolutely need● Encrypt your data● Set up phones so you can erase them remotely● Use strong passwords● Back up the data before you leave

Page 14: Keeping 'Em Safe: Ways to Protect Your Clients Online

Storing client data in questionable places

Page 15: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Read privacy policies● Develop a set of approved sites that client

information can be stored on and train staff to not store data on any other sites

● Don't include identifiable client information in emails

Page 16: Keeping 'Em Safe: Ways to Protect Your Clients Online

Downloading viruses and malware

Page 17: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Patch software and systems religiously● Read before you click● Ask if the email or attachment seems “funny”● Avoid downloading screensavers, fonts, & porn● Use your anti-virus software● Ignore any website that pops up a virus warning

Page 18: Keeping 'Em Safe: Ways to Protect Your Clients Online

Using social network sites carelessly

Page 19: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Be careful what you click● Don't friend people you don't know● Use strong passwords● Avoid playing games and installing applications● Be very careful about what you post

Page 20: Keeping 'Em Safe: Ways to Protect Your Clients Online

Leaving metadata in documents

Page 21: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Clean metadata from documents before sending

electronic copies● Use the Document Inspector tool in Office● Download and use Metadata Removal tool for

WordPerfect

Page 22: Keeping 'Em Safe: Ways to Protect Your Clients Online

Having bad password practices

Page 23: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Use strong passwords● Change passwords quarterly● Don't use a password for more than one site● Don't share passwords● Establish password guidelines for the

organization and follow them● Try a password manager

Page 24: Keeping 'Em Safe: Ways to Protect Your Clients Online

Getting tricked

Page 25: Keeping 'Em Safe: Ways to Protect Your Clients Online

What You Can Do● Be skeptical● Don't give anyone your passwords● Don't click a link to your bank website

Page 26: Keeping 'Em Safe: Ways to Protect Your Clients Online

What If?● Tell your supervisor immediately● Be prepared to help figure out what happened● Notify the proper authorities

Page 27: Keeping 'Em Safe: Ways to Protect Your Clients Online

Who Are the Proper Authorities?

Computer Intrusion Local FBI OfficeUS Secret ServiceInternet Crime Complaint Center

Password trafficking Local FBI OfficeUS Secret ServiceInternet Crime Complaint Center

Counterfeiting of currency US Secret Service

Page 28: Keeping 'Em Safe: Ways to Protect Your Clients Online

Who Are the Proper Authorities?

Child pornography or exploitation

Local FBI OfficeUS Customs and Enforcement (if imported)Internet Crime Complaint Center

Internet fraud & SPAM Local FBI OfficeUS Secret Service (Financial Crimes Division)Federal Trade CommissionSecurities & Exchange Commission (if securities/investment-related)Internet Crime Complaint Center

Internet harassment Local FBI Office

Page 29: Keeping 'Em Safe: Ways to Protect Your Clients Online

Resources● Cybercrime Reporting

http://www.cybercrime.gov/reporting.htm

● Stay Safe Onlinehttp://www.staysafeonline.org/

● US CERThttp://www.us-cert.gov/nav/nt01/

Page 30: Keeping 'Em Safe: Ways to Protect Your Clients Online

Resources● US CERT

http://www.us-cert.gov/cas/tips/

● OnGuard Onlinehttp://www.onguardonline.gov/topics/computer-security.aspx

Page 31: Keeping 'Em Safe: Ways to Protect Your Clients Online

Picture AttributionsIn orderhttp://www.flickr.com/photos/jesseshapins/3788641411/http://commons.wikimedia.org/wiki/File:Harry_Potter_Lightning.gifhttp://commons.wikimedia.org/wiki/File:Computer_n_screen.svghttp://www.flickr.com/photos/dunechaser/385847284/sizes/l/http://www.flickr.com/photos/sravi_in/3623242288/sizes/z/http://www.flickr.com/photos/stukjefotogebeuren/2081170312/http://www.flickr.com/photos/librarianbyday/3983719036/http://www.flickr.com/photos/booleansplit/4650422195/http://www.flickr.com/photos/the-icing-on-the-cake/2424326595/http://www.flickr.com/photos/sshb/3619977273/http://www.flickr.com/photos/esm723/4377802647/http://www.flickr.com/photos/stevendepolo/4027405671/

Page 32: Keeping 'Em Safe: Ways to Protect Your Clients Online

Contact Information

Kate BladowFounder & [email protected]