Tweet
Originally posted by Fishindude77
View Post
Any other best practices people implement?
-
We had the same happen several years ago. And we seem to get at least an annual notice that we were involved in some merchant's data breach. We have credit freezes in place. Also, 2FA on all of our accounts. We also use a separate email address for all of our banking/investment accounts. And, we get a text notification whenever a credit card transaction is made.
Any other best practices people implement?“Compound interest is the eighth wonder of the world. He who understands it, earns it … he who doesn’t … pays it.” -
I got this email to click on the link but no way. BTW, my name is not Jeremy.
Comment
-
First step is always to check the sender's email address. I guarantee it was not from chase.com.Originally posted by QuarterMillionMan View Post
Second step is to go directly to their site, not using the link in the email, and see if there is actually anything wrong. That's assuming that you even actually have a Chase account. I get notices like this periodically from companies I don't even do business with.Steve
* Despite the high cost of living, it remains very popular.
* Why should I pay for my daughter's education when she already knows everything?
* There are no shortcuts to anywhere worth going.Comment
-
Good advice, in addition, I forwarded the scam email to Chase's customer service email. This is the scammers email, noreply@qemailserver.com, dead give away that it's not from Chase.Comment
-
I put security freezes on all 3 of my credit bureau accounts. However, I learned there is a 4th but not well-known credit bureau which I just freezed and got in the mail my PIN to unlock it.Comment
-
FBI warns against 2-factor text authentications.
FBI warns against using two-factor text authentication
I've been changing to either email authentications or using Google authenticator.Comment
-
I think the article needs a little more context...two-factor authentication (password plus information gained from another device owned by you) even if it's over SMS, still works really, really well for most people. Authenticating over email is just as vulnerable, maybe even more vulnerable than SMS. Some sevices are using apps with push notifications to authenticate, which is good. My opinion is that most people with good online hygiene don't need to instantly switch their 2FA methodology.Originally posted by QuarterMillionMan View Post
Good online hygiene can be things like using virus scanners with online traffic defenders. Don't click on unknown links, don't visit shadowy areas of the internet..) Don't connect to open/public wifi, and if you do, don't pass sensitive information (i.e. don't log into your bank account ,or send a form with your SSN and other PII). Secure your home wifi access points with strong unique passwords and encryption. Encrypt your hard drive (iOS, it's very easy to do this). Use unique usernames across sites and always unique passwords. And you can vary your 2FA authentication methods.
History will judge the complicit.Comment
-
Since the last time I've posted I've added a password manager and an IRS pin. For those not familiar, each year the IRS provides a new pin number to the taxpayer that you're required to enter in order to e-file tax returns. I've also added a password manager to create/store non-duplicative & complex passwords.
And in perhaps an "over the top" moment, I deleted apps related to my investment accounts from my mobile devices. Going forward, these will only be accessed from my home computer (too many examples of phones being stolen while they were unlocked). I've also added a "face id" requirement to many apps (in addition to needing face id to unlock the phone) - including all email apps which might be used to reset a forgotten password.“Compound interest is the eighth wonder of the world. He who understands it, earns it … he who doesn’t … pays it.”Comment
-
All of your banking apps and password managers require a login even if your phone is unlocked and stolen. Not sure how someone would access those accounts either way.Originally posted by srblanco7 View Post
Now, since people set up a face Id to unlock phone and apps, you could be murdered and someone could hold up the phone to your face. Same with a finger print unlocking. We all use it, but it's not secure at all. Just an FYI.
The most secure way is to not use apps. If you must, a 6 digit pin is more secure than face recognition or finger prints. Not many crooks will torture someone until they unlock a phone. Although a keylogger could be installed i suppose. Then there's pegasus. The newest version only requires a phone number to install...v1 required touching the phone. I know no one here believes in these secret programs or operations, but Jeff bezos is a believer. Google it.Last edited by EasyMoney00; 12-24-2024, 04:09 AM.Comment
-
-
My local news did stories on SIM swapping scams where a man lost $30,000 and another woman lost $17,000. It works something like this. The scammer somehow gets ahold of the SIM number and contacts Verizon, AT & T, or T-mobile to transfer it to the scammers phone. Anyone know how to prevent this?Comment
-
-
Nice ua_guy. My line was unlocked and just locked it. Holy moly I could have gotten hacked.
Comment
-
After selling my dead laptop which is currently in transit to the eBay buyer it crossed my mind that if the buyer can revive the broken laptop, maybe the buyer can even access some of my bank accounts even though I have the M.2 NVME SSD hard drive. I doubt that my passwords are stored on the motherboard but I'm not taking any risks. All this morning I've changed my passwords on my banks, brokerage accounts, credit cards, SSA, Treasury Direct, cyrpto accounts, etc. Later will have to change passwords for Amazon, eBay, Walmart, Temu, etc. Had to take care of important stuff first.Comment
-
I think the lesson learned here is...maybe wipe the hard drive before selling a computer?Originally posted by QuarterMillionMan View Postjames.c.hendrickson@gmail.com
202.468.6043Comment
Comment