Cybersecurity Tips, Tools and Best Practices | City Update

December 4, 2019 posted by


[SHOW THEME MUSIC]>>HELLO, AND WELCOME TO ANOTHER
“CITY UPDATE.” I’M DEBORAH SEDILLO DUGAN. IN THE TIME IT TOOK ME TO SAY
HELLO, THERE IS A HACKER OUT THERE GETTING INTO SOMEONE’S
COMPUTER AND STEALING THEIR INFORMATION. TODAY WE’RE HERE TO TALK ABOUT
CYBER SECURITY. JOINING ME TODAY IS ILENE KLEIN. SHE IS A CYBER SECURITY PROGRAM
COORDINATOR FOR PHOENIX’S HOMELAND SECURITY AND
EMERGENCY MANAGEMENT. ILENE, THANK YOU SO MUCH FOR
JOINING US. THAT IS A MOUTHFUL, BUT A VERY,
VERY IMPORTANT JOB AND POSITION.>>IT IS, AND DEBORAH, THANK YOU
VERY MUCH FOR HAVING HE. I LOVE CYBER SECURITY.>>OH, MY GOODNESS, WELL, GOOD. I’M GLAD THAT WE HAVE YOU IN
THIS POSITION. TALK ABOUT EXACTLY WHAT YOU DO
FOR THE CITY OF PHOENIX.>>MY ROLE IS TO ACTUALLY HELP
IMPROVE ARIZONA’S CYBER RESILIENCY. EVERYBODY KNOWS THAT HACKERS AND
BAD GUYS ARE ATTACKING US THROUGH THEIR COMPUTERS AND
NETWORKS. MY ROLE IS TO MAKE SURE THAT,
YES, WE KNOW WE’RE GETTING ATTACKED. LET’S SEE HOW WE CAN PREVENT IT. LET’S SEE HOW WE CAN DETECT
THOSE ATTACKS, AND THEN RESPOND QUICKLY TO MINIMIZE HARM.>>THAT’S GREAT. BUT YOU KNOW WHAT? IT’S HAPPENING, AND IT’S
HAPPENING EVERY SINGLE DAY, EVERY SINGLE MOMENT. JUST LIKE I SAID HELLO,
SOMEBODY’S HACKING INTO YOUR SMART PHONE, YOUR COMPUTER,
YOUR iPAD, WHATEVER. GIVE US SOME POINTERS OR SOME
TIPS, IF YOU WILL, THAT VIEWERS CAN SAY, “OH, I NEVER THOUGHT
ABOUT THAT. I SHOULD BE DOING THAT.”>>YES, SOME OF THE BASIC CYBER
HYGIENE THINGS. WE ALL KNOW, USE A STRONG
PASSWORD. BUT NOW, BECAUSE PROCESSING
SPEEDS OF COMPUTERS HAS INCREASED SO MUCH, THE LONGER
YOUR PASSWORD, THE BETTER. A 12-CHARACTER PASSWORD IS
ACTUALLY STRONGER THAN AN 8-CHARACTER WITH ALL THE UPPER,
LOWER, SPECIAL CHARACTERS, NUMBERS. BUT IF YOU NEED A PASSWORD,
SOMETHING LIKE “I HATE PASSWORDS,” ALL LOWER CASE,
THAT’S ACTUALLY STRONGER THAN THAT OLD PASSWORD WE USED
TO USE. FOR THOSE WHO CAN’T REMEMBER
PASSWORDS, LIKE –>>Dugan: ME.>>YES, I’M HUMAN, TOO. MY TRICK IS TO STICK IN WHAT
TYPE OF PASSWORD IT IS. FOR EXAMPLE, “I HATE BANK
PASSWORDS. I HATE E-MAIL PASSWORDS. I HATE WORK PASSWORDS.”>>Dugan: EXCLAMATION,
EXCLAMATION, EXCLAMATION, QUESTION MARK.>>YES, MAKE THE PASSWORD
REALLY, REALLY STRONG. ANOTHER THING IS A LOT OF
ORGANIZATIONS ARE NOW OFFERING WHAT’S CALLED TWO-FACTOR
AUTHENTICATION, OR STRONG AUTHENTICATION. WHAT THAT MEANS, AND YOU’VE
PROBABLY SEEN WHERE AFTER YOU TYPE IN YOUR PASSWORD. YOU GET A LITTLE CODE TEXTED TO
YOUR SMART PHONE, AND YOU HAVE TO ENTER THAT CODE. WELL, THAT’S SOMETHING YOU KNOW,
YOUR PASSWORD. WELL, PASSWORDS ARE CRACKED ALL
THE TIME, SO THAT’S NOT THAT STRONG. BUT HAVING THAT EXTRA CODE
PROVES THAT YOU HAVE YOUR SMART PHONE. YOU’RE THE ONLY ONE WHO HAS
YOUR SMART PHONE. SO THAT REALLY PROVES THAT
YOU REALLY ARE YOU.>>THAT’S THAT OTHER LITTLE
LAYER.>>IT’S AN EXTRA LAYER.>>LET ME ASK YOU THIS. A LOT OF PEOPLE DO, IN FACT,
HAVE SMART PHONES, AND FOR ME, PERSONALLY, I PUT MY PASSWORDS
IN MY NOTES OF ALL MY PASSWORDS. IS THAT A BAD THING?>>IN GENERAL, YES, IF THEY’RE
STRAIGHT, “MY PASSWORD FOR THIS ACCOUNT IS I HATE PASSWORDS,”
YEAH, DON’T WRITE THAT DOWN. NOW, THERE ARE SOFTWARE PROGRAMS
CALLED PASSWORD MANAGERS, LIKE KEY PASS AND OTHERS, LAST PASS. THEY WILL COLLECT YOUR PASSWORDS
AND ALL YOU HAVE TO DO IS REMEMBER ONE MASTER PASSWORD
TO GET IN. BUT THE DOWNSIDE TO THOSE IS IF
THAT PASSWORD MANAGER IS CRACKED, WELL, THEN, THE BAD GUY
HAS ALL OF YOUR PASSWORDS. SO YOU HAVE TO WEIGH THE RISKS.>>Dugan: WHAT DO WE DO, WHAT DO
WE DO, WHAT DO WE DO.>>Klein: ONE THING THAT I DO IS
AGAIN, I USE ONE PHRASE AND THEN MODIFY IT SLIGHTLY.>>IT COULD BE A FAVORITE SONG,
YOUR FAVORITE MOVIE, YOUR FAVORITE ACTOR.>>FAVORITE BIBLICAL PHRASE,
IF YOU LIKE THOSE. ANY PHRASE.>>THOSE ARE PASSWORDS. LET’S TALK ABOUT THE PHISHING
AND THE E-MAILS. SOME OF THEM LOOK PRETTY REAL.>>THEY LOOK SO MUCH BETTER. IN THE OLD DAYS, TWO YEARS AGO,
ONE YEAR AGO, SCAM PHISHING E-MAILS WERE REALLY EASY TO
RECOGNIZE, BECAUSE THERE WERE A LOT OF GRAMMAR ERRORS,
SPELLING ERRORS. YOU COULD TELL IT WASN’T
WRITTEN BY –>>GRAMMATICALLY, IT’S WRONG. “PLEASE SEND ME MONEY.”>>OR, I’M A NIGERIAN PRINCE. HELP ME GET MONEY OUT OF THE
COUNTRY. WE ALL KNOW THOSE NOW. TODAY, THE BAD GUYS ARE USING
SOME REALLY INTERESTING TECHNIQUES. FIRST, THE GRAMMAR IS VERY GOOD. EVERYTHING IS SPELLED CORRECTLY. IN SOME EXTORTION-TYPE E-MAILS,
THEY ACTUALLY PUT PERSONAL INFORMATION ABOUT YOU IN THE
E-MAIL TO MAKE IT MORE CREDIBLE. FOR EXAMPLE, THERE’S ONE SCAM
THAT’S KIND OF RAMPANT RIGHT NOW. IT’S CALLED SEX-TORTION. BASICALLY, YOU GET AN E-MAIL
FROM A BAD GUY THAT SAYS, “HI, I KNOW YOUR NAME. HERE’S YOUR USER NAME,
HERE’S YOUR PASSWORD. I KNOW THAT YOU’VE BEEN WATCHING
PORN AT WORK, SO WHAT I’M GOING TO DO, IF YOU DON’T PAY ME SO
MUCH MONEY IN BITCOIN,” THAT CRYPTO CURRENCY, OR A GIFT CARD
OR iTUNES, SOMETHING, “I’M GOING TO SEND EVERYBODY YOU KNOW A
VIDEO OF YOU WATCHING PORN.” NOW, WHAT THE BAD GUY HAS DONE
IS THEY’VE GOTTEN THESE CRACKED PASSWORDS FROM OLD BREACHES,
LIKE YAHOO BREACH AND LINKED IN. SO THAT PASSWORD THAT’S IN THE
E-MAIL IS ACTUALLY YOUR OLD PASSWORD, AND PLEASE TELL ME
YOU’VE CHANGED IT BY NOW.>>HOW SCARY IS THAT?>>Klein: HOW SCARY IS IT,
BECAUSE IT LOOKS SO CREDIBLE, BUT IT’S A PURE SCAM, ABSOLUTELY
PURE SCAM.>>Dugan: HOW OFTEN SHOULD YOU
BE CHANGING YOUR PASSWORD?>>WELL, THE THING IS, IF YOU
HAVE ONE OF THESE REALLY LONG PASSWORDS, AS LONG AS IT HASN’T
BEEN CRACKED — YOU GET NOTIFIED IF THERE’S BEEN BREACH. THEY’RE GENERALLY IN MAINSTREAM
MEDIA, LIKE FACEBOOK VERY RECENTLY. YOU REALLY DON’T HAVE TO CHANGE
IT THAT OFTEN. OLD-STYLE RULES, EVERY 90 DAYS
MINIMUM.>>SO MANY THINGS YOU NEED
PASSWORDS FOR. AND NOW WITH SOCIAL MEDIA, I’M
GLAD YOU TOUCHED ON THAT. FACEBOOK, LINKED IN, INSTAGRAM,
ALL THOSE DIFFERENT PLATFORMS, THEY’RE HAVING PASSWORDS,
PASSWORDS, PASSWORDS. HACKERS ARE GETTING THAT
INFORMATION THROUGH THERE, TOO.>>THEY’VE ALL BEEN BREACHED. I HATE TO SAY IT. ANY DETERMINED BAD GUY WILL BE
ABLE TO ACCESS ANY SYSTEM THAT HE REALLY WANTS TO. AND SOMETIMES SYSTEMS ARE
MISCONFIGURED, SO BAD GUYS TAKE ADVANTAGE OF THAT. OR THEY DON’T HAVE THE
APPROPRIATE SAFEGUARDS. ONE OTHER THING ABOUT, YOU
MENTIONED ALL THE SOCIAL MEDIA, PLEASE USE UNIQUE PASSWORDS. “I HATE FACEBOOK” PASSWORD,
“I HATE LINKED IN” PASSWORD, “I HATE INSTAGRAM” PASSWORD.>>Dugan: DOGGIE NAMES,
POSSIBLY?>>Klein: NOT IF YOU POST
INFORMATION ABOUT YOUR DOGGIE ONLINE.>>I’VE READ THAT SOMEWHERE,
TOO, ABOUT ANIMALS. THIS IS ALL GREAT INFORMATION. I ALSO WANT TO POINT OUT THAT I
KNOW THAT OCTOBER IS, IN FACT, CYBER SECURITY MONTH. HOWEVER, IN SAYING THAT TO OUR
VIEWERS, IT’S YEAR-ROUND. IT’S EVERY SINGLE DAY, 365 DAYS
OUT OF THE YEAR, 24/7. WE LIVE IN A GLOBAL — OUR WORLD
JUST KEEPS SHRINKING AND SHRINKING. ALL THE CONNECTIVITY. WE JUST WANT TO MAKE SURE WE
KEEP PEOPLE SAFE.>>YES, AND ALL THE DEVICES
PEOPLE ARE USING.>>ABSOLUTELY, THERE’S SO MANY. I WANT TO TURN IT ALL OFF
ONE DAY. ILENE, THANK YOU SO MUCH FOR
SHARING THIS GREAT INFORMATION WITH US, AND DOING WHAT YOU DO
FOR THE CITY OF PHOENIX AND THE STATE OF ARIZONA.>>DEBORAH, THANK YOU AGAIN FOR
HAVING ME. IF ANYBODY HAS EVER ANY
QUESTIONS, THEY CAN REACH OUT TO A.C.T.I.C. CYBER SECURITY,
AT AZDPS.GOV.>>WE WILL PUT THAT ON THE
SCREEN FOR OUR VIEWERS AS WELL. IT’S GREAT SEEING YOU, AND
WELCOME BACK TO PHOENIX.>>THANK YOU.>>BEFORE WE WRAP UP, I WANT TO
REVIEW QUICKLY SOME TIPS TO REMEMBER TO KEEP YOU AND YOUR
FAMILY’S SECURITY SAFE. REMEMBER, CREATE STRONG AND LONG
PASSWORDS. LOCK UP YOUR DEVICES AT
ALL TIMES WHEN YOU’RE NOT USING THEM. BE AWARE OF PHISHING E-MAILS,
AND WATCH OUT FOR THOSE NASTY FAKE URLs OR WEBSITES. STAY INFORMED, STAY DILIGENT. CYBER ATTACKS ARE BECOMING MORE
AND MORE SOPHISTICATED. FOR “CITY UPDATE,”
I’M DEBORAH SEDILLO DUGAN. CLOSED CAPTION PRODUCTIONS
ccproductions.com
844-335-0911

No Comments

Leave a Comment

Your email address will not be published. Required fields are marked *