When Bruce pipes up about consumer security I listen. In this post, he digs into a particularly irksome list of security tips. What’s interesting isn’t the bad advice, but some of the security tips that Bruce gives a “meh”.
The most interesting might be using 2FA on everything. That’s kind of been my mindset, but Bruce gives some perspective on how effective it can be. When the second factor is a text or emailed code, it does nothing to prevent a SIM swapping attack, and just adds a layer of inconvenience.
Bruce is also not really that worried about using public Wi-Fi. I have to admit, I kind of take a “do what I say, not what I do” approach to it. I’ll be the first to chide my parents if they were to check their bank account at a coffee shop. But I’ve definitely done the same thing more than once.
I think the best approach to this isn’t to rely on a rote list of tips and practices, but to always be thinking about the security implications of behavior, and how you can limit your surface area for attack.
Bruce Schneier comments:
I wouldn’t think twice about using a wall jack at an airport. If you’re really worried, buy a USB condom.
Read more at: Bad Consumer Security Advice
- VARs are Useless – The On-Premise IT Roundtable - June 25, 2019
- The Raspberry Pi 4: Adding the Missing Piece - June 24, 2019
- Nvidia Arms Itself | Gestalt IT Rundown: June 19, 2019 - June 19, 2019
- Intel Caught Barefoot | Gestalt IT Rundown: June 12, 2019 - June 12, 2019
- IoT Is Making Society Less Secure – The On-Premise IT Roundtable - June 11, 2019
- Azure and Oracle Connect | Gestalt IT Rundown: June 5, 2019 - June 5, 2019
- Bad Week To Be A Standards Body | Gestalt IT Rundown: May 29, 2019 - May 29, 2019
- Multi-Cloud Is A Fad – The On-Premise IT Roundtable - May 28, 2019
- Dropping the Hammer on Huawei | Gestalt IT Rundown: May 22, 2019 - May 22, 2019
- Gestalt News for the Week of May 20, 2019 - May 20, 2019