Whether you’re a novice (or computer illiterate for those who still use the incorrect term) or an expert, it’s time to get serious about Computer Security. Those who know me, I do work in Information Technology for a IT security company. I thought I was doing great until my own Gmail account got hacked. Although I took precautions, I still also thought some things were a little, well, inconvenient.

I was wrong.

I’m starting a series on some basic steps to help protect yourself online. So step one today will be: Protecting your Gmail Account.

If you use Gmail, you have an option available to you to prevent your account from being hacked. It’s a simple 2-factor authentication you can setup on your Gmail account (and some Google Apps account if your admin has allowed this. If not, please ask him/her to turn it on for you). 2 factor authentication works by requiring you to not only enter a password, but also a security code. VPN users know this from either a keyfob they have on their keychain or a piece of software used to generate these codes. These secure your account as you must have both the code and the password to login.

 

Sounds cumbersome, but it’s really not. For Gmail, you just need your cell phone with you at all times (which it really should be anyway, and it should be password protected). Gmail’s 2-factor authentication works by sending a code to your phone via text message. If someone tries to get into  your account from a computer you haven’t authenticated on (and marked the box that says remember me for 30 days), they also have to have your phone.

This reduces the chances of someone logging on randomly from someplace and hacking your account and sending an exploit out. They physically have to hack your computer (which is possible, and something I will cover in a future post), or they have to physically find you, beat you over the head with a tire iron or some other blunt object, take your phone, hack your account, enter the code, and THEN they can send out the exploit.

Which is a LOT of messy work for just a single exploit.

So please, if you have a Gmail account, turn on 2 factor authentication, and learn how to use it (there are help documents). Being a novice is no excuse for not reading, learning, and securing yourself.

Tomorrow: More security tips.