Can you trust the privacy policy provided in Websites?

Recently, this question came into my mind, when I happen to receive certain survey mailers, and if I fill in the survey, I would be receiving a gift. But I had a doubt whether to participate in the survey or not. Then I made up my mind and participated in the survey, after reading the privacy policy which mentioned "Your details, such as name, email address, phone number, address or date of birth etc etc won't be shared with any third party." And then I just accepted the terms and conditions keeping in mind why does it require for a survey to get all my personal details, still I proceeded with the survey filling in my details as required.

After a few days I received 4 or 5 calls from different locations and phone number stating I have filled in a coupon in super market and have won a gift. To get the gift I need to come to particular location and attend a presentation. When I enquired, they said its regarding a MLM Business. Later I realized my information was shared / sold to some third party companies, who are trying to market their products.

This is no big surprise to me, because I know well that leading mobile companies, sell our data for a good cost/value to the marketing agencies and companies, who frequently use to call and SMS (Text Message) us in a regular basis to sell some product or service. In countries like india, though we opt out for a DND / DNC (Do Not Disturb / Do Not Call) we receive even more calls as the rules are strictly not followed, or before we opted itself or either the data is already with third parties. That goes one side, but on the other hand, they online survey mailers and website, they too have started getting our data from us for their business and for the growth of other business ;)

Between, you can trust some corporate companies, who ask for subscribing to newsletters if you unsubscribe and even you can provide confidential details if you are purchasing a product or opting for service. They tend to use these details only to remind you if the service/product is going to expire or update you some special offer if required. But this also if you wish they will provide, if you don’t they won’t. So your data is in safe hands. If you happen to register with some miscellaneous website, probably your data is No-More Safe. THINK & ACT.

After making this analysis, probably I will have to change my mobile number - so that I don't get irritated / frustrated with dump calls. :)

Don't forget to look in to this link - a guy frustrated with kotak mahindra bank marketing call, has shared the real experience.

Top Ten Protection Tips for Identity Theft

Identity theft has been substantially increasing day-by-day. It’s a MUST to know how to protection ourselves from identity theft, so that we don’t fall prey to identity thieves.

1. Protection from Phishing: DO NOT click on links which you receive via unsolicited emails

2. DO NOT share your bank a/c or loan a/c details to third persons.

3. DO NOT provide your confidential details to known or unknown people over phone

4. DO NOT carry your Social Security card in your wallet (if you are robbed, thieves might misuse them)

5. DO NOT share your personal / confidential details such as bank login and password over chat / instant messengers.

6. Monitor your credit report regularly. We offer reliable Credit Monitoring in Topeka, KS

7. Install an Computer Security Software and keep it updated

8. DO NOT visit untrusted websites and download any exes or software’s. (Hackers may add a script to monitor your computer)

9. Always check if the net banking site you visit starts with https (https states whether the site is secure or not)

10. Learn more about identity theft and get self educated as well as educate your known ones

Internet Environment - Energy Consumption - Is it Hurting?

Infographic by WordStream

2009 Identity Theft Statistics Country-wise

Home Security In Houston


[Via: CreditRepair.org ]

Un-Trusted Downloads May Crash Your PC

Cyber criminals may get into your PC via unsafe downloads online. So beware about such kind of downloads and ensure you are safe. Here is the full security awareness article for your reference, Just visit http://www.buzzle.com/articles/beware-about-hot-downloads-online.html

New Computer Security Forum Launched!

Recently Hermesmyth, an India based Online Marketing Services company has launched an new computer security forum “SafeScribble”. SafeScribble Computer Security Forum aims at discussing and solving computer virus related problems and, suggesting the best antivirus software for computer users.

SafeScribble PC Security Forum now invites antivirus technology experts to join the discussion and help grow the community by contributing security related articles and helping the forum users of their pc related questions. Also SafeScribble invites individuals and business users to share their virus related problems by registering in the discussion board for free and make use of it.

To register for free, please visit http://www.safescribble.com/

Web Server Security

Operating Systems still continue to be vulnerable to attacks if the security patches are not installed periodically, which gives way to malwares and massive internet worms. Sometime ago, the internet worm conficker, which is also known as downadup was creating big chaos over the internet, which lead to huge losses to the corporate and website owners. Meanwhile there was also number of buffer overflow attacks reported during the year 2009. It’s quite common that all the web servers do have vulnerability, but its good the website owner need to safeguard their valuable digital assets by periodically updating the security patches and by running quality server security software products, which would prevent from the web server being vulnerable i.e. accessible to the hackers.

Below are a few one-liner precautionary steps that will help you in securing your Web server.
1. Install the Security Patches whenever available
2. Check the client side of the website by running a Malware Scan to ensure the users are safe
3. Disable the unnecessary scripting languages in your web servers, as hacker may target them
4. Subscribe and Keep monitoring the security vendor's security alerts
5. Most importantly use a tough Alpha-numeric-Symbol based password
6. Check for vulnerabilities by running a vulnerability analyser to check your web server security holes
7. Set up permissions at different levels so that no one can access as an administrator, expect the person intended for.
8. DON'T test any new or unknown scripts in your main web server, because some untrusted scripts may inject a malware in your server

Also, now Google provides a free tool called "SkipFish" - a web application security reconnaissance tool, which can run a security audit to your website. Here is the link for your convenience http://code.google.com/p/skipfish/

Still wondering how the attack takes place, here is a pictorial representation of Top Cyber Security Risks by Sans.org http://www.sans.org/top-cyber-security-risks/tutorial.php