verb (used without object)
- to try to obtain financial or other confidential information from Internet users, typically by sending an email that looks as if it is from a legitimate organization, usually a financial institution, but contains a link to a fake website that replicates the real one. (Source: https://www.dictionary.com/browse/phishing)
Steve Dotto has identified another phishing scam. In it, they attempt to lure you into clicking a link to cancel a payment to PayPal. Pretty sneaky!
Be careful before you click. Watch the video for more information.
Evidently Facebook uses our phone number to more effectively target advertising to us!
Two days ago, I suggested that you check out Steve Dotto’s video on using Google Authenticator for Facebook. Well… Steve added a follow-up video that you should watch!
Well, by now, you are probably aware of the latest breach of Facebook that affects 50 MILLION users.
Yes, it’s time to update your security on that Social Media platform, regardless of whether or not you were notified that you were affected.
Steve Dotto released a really good video a couple of days ago that discusses this breach what to do about it. He suggests changing your password and setting up 2-Factor Authentication. I wholeheartedly agree! And when you change your password PLEASE don’t use a password you have ever used on any other service or form.
There are some really good tools that will generate a “strong” password for you; you only need to have a way to retrieve the password the next time you log in. The tool I use is LastPass. Yes, LastPass has had its own security issues, but because passwords stored in LastPass are encrypted – and the way they are encrypted – no one’s passwords have been stolen. LastPass is one of the best options for managing passwords.
So watch Steve Dotto’s video and change your password!
For more information about the breach, please check out CNet’s report.
In somewhat related news, on May 25, the European Union will begin enforcing the General Data Protocol Regulation (GDPR). The goal of the GDPR is to protect the privacy of residents of the European Union. That’s good, right? So what does that mean for a small organization operating in the United States… like yours?
According to the GDPR, any company (regardless of national origin) that processes data of EU residents must implement measures to protect privacy *by default*. As it applies to you and me, if your website requests any information from website visitors (including tracking analytics and Contact Forms), they must be alerted to how that information will be used and how long the data will be retained. Even if you don’t serve EU residents directly, if your website is visited by a European resident, you are affected by this new law.
I have been looking into the issue and will put measures in place before May 25 to make sure that we’re in compliance. Note: I am not charging my clients for this “service after the sale”.
Please see https://en.wikipedia.org/wiki/General_Data_Protection_Regulation or contact your attorney for more information about how the GDPR affects your organization.