Cloud

Dont’ Miss an Opportunity to Talk about Security

CloudOne of the best ways to reach teens is to share with them a real world example. When talking to my kids I use a lot of stories from the news. For example when talking about digital reputation, I showed them “My Embarrassing Photo went Viral.” This weekend, we talked about the celebrity hacking scandal and what kids can do to keep their devices and accounts secure.

Last week, explicit photographs of 100 female celebrities were leaked online. These photographs came from a group of hackers who collected and traded nude pictures online. How they attained these pictures was by breaking into the celebrity’s Apple iCloud account. Reportedly, these hackers were able to access these personal accounts repeatedly and download pictures.

How did the hackers break in? According to Apple, “celebrity accounts were compromised by a very targeted attack on user names, passwords and security questions, a practice that has become all too common on the Internet.” In this case, hackers gained as much data as possible from public social media accounts and used it to find emails, guess passwords and security questions.

Most of these celebrities were probably unaware their pictures were even stored on iCloud. iCloud is a backup system which automatically saves digital photos, calendars etc. When someone takes a picture with their mobile phone it is automatically uploaded and stored in their iCloud account. Even if they deleted it off their phone, it could still be in iCloud. The benefit to an automatic backup is if someone loses their phone, they would not lose everything.

You can turn off these automatic backups. Without the automatic backup, if they lose their phone and haven’t downloaded their pictures, they could lose all their digital photos. I know many teens who have lost their phone or accidentally broken it. Given the likelihood of something happening to their phone, a better alternative may be to increase security.

Parents should share with their kids how to  improve security on their end by:

  • Setting a Strong Password – An easy password is like closing the door without locking it. Teens and kids should always use strong passwords for their accounts and devices. Never use common passwords like “password” or “1234”. Choose passwords that are hard to guess with both letters, numbers and symbols.
  • Choosing unique passwords – Once you have that strong password do not use it for every account. If someone happens to guess or sees your password they will now have access to all your accounts. Every account should have a unique password
  • Turning on 2 factor identification – Once this feature is turned on, a person trying to access an account has to enter a password plus a code before they can login to an iCloud or Google Account. This unique code is sent to a trusted device chosen in advance by the user. Some popular apps, such as facebook, twitter and tumblr  also offer 2 factor security.
  • Watching the oversharing – Keep answers to security questions off social media or don’t use real answers to your security questions. Let’s say your favorite singer is Taylor Swift, the answer to the security question “who is your favorite singer” could be Kanye West.

Finally, it is not bad idea to remind kids there is no such thing as a private digital photo. Even with apps like Snapchat, a photo doesn’t truly disappear. Nothing is 100% private in the digital world.

For more information:

Friday Rewind – In-app purchases, Passwords, Report it and the Daily Show

rewindHappy Friday!

Every Friday, I am answering your questions and sharing helpful blogs and resources. Today, we are talking about In-app purchases, passwords, reporting online abuse and the Daily Show.

In-app purchases

This week, Apple agreed to pay 32.5 million for allowing kids to rack of purchases of virtual items within an app without a parent’s permission. After parents entered their password and bought the app, their child had an open window of 15 minutes to buy stuff without reentering the password. If your one of these parents, Apple should be contacting you with how to get a refund for unauthorized purchases by kids. To prevent future unauthorized purchases, check out Commonsense Media’s 4 ways to prevent in app purchases for Apple devices.

Apple is not alone. Consumer Reports found that Google Play allows a child to spend for up to 30 minutes without having to re-enter a passwordFor us Android users, there is no way to turn off Google Play’s grace period. After purchasing an app or game on Google Play, you have 15 minutes for a full refund BUT this 15-minute refund period does not apply to in-app purchases. If you want a refund on the magical sword, you need to contact the developer. No word yet on if the FTC is investigating Google Play. For now, you may want to hang out with your kid for 30 minutes and talk with them about how not everything in a free app is free.

 Most Popular Passwords for 2013

Guess my Password Game is one of my most popular posts. When I first played it with my kid, I guessed her password right away. Yes, her password was one of the top 10 most popular passwords. This week, I updated my game to include the most popular passwords for 2013. It is almost identical to my original list except a bit longer. For instance, 1234 is now 123456. Passwords are getting longer; now we need to work on making them stronger.

 Reporting Online Abuse

The Cyberbullying Research Center has a list of popular apps and how to report online abuse for each one. This is a great resource for parents. It is important for us to let these companies know what is happening so they can address the problem and limit this harmful activity. Bookmark Report It.

Daily Show Privacy

Not often does one of my favorite TV shows and privacy collide, but it did this week. Check out Jon Stewart and Therese author Theresa Payton discussing her new book Privacy in the Age of Big Data.