Saturday, March 9, 2013

Protecting Your Identity in the Cyberwar Age

hacker

It used to be a rare thing to hear of a major online website being hacked.  But in 2013, its become a near-weekly event.  Here are a few sites that have been hacked recently: Evernote, LinkedIn, Twitter, Facebook, and Apple.  For every prominent website, there have surely been hundreds of smaller sites suffering a similar fate (or, worse, being hacked without realizing it!).

Some of the elite military cyberwarfare units from China, Russia, and the U.S. have been making headlines for gaining access to increasingly sensitive electronic systems. How do they do it?  Often, by hacking less-secure public websites first for user names and passwords that can then often be used to unlock the more-secure sites.  

See? You’re not the only one who reuses your passwords on more than one website application—people who work in our defense, finance, utility, healthcare, and government agencies (sadly) do too!

So, it seems that increased vigilance in managing our personal passwords is becoming not only an urgent need for our own identity protection, but in some cases, a matter of national security as well.

The good news is, there are free, easy, and excellent solutions to help you do just that!  One I’ve been using recently that’s been getting great reviews is called Dashlane.

dashlane

Here’s how Dashlane helped me when the recent Evernote hack was uncovered last week.  I had just started using Dashlane the week previously and had only done a simple import of all my existing online logins and passwords into Dashlane thus far.

Before getting an email from Evernote, it was actually Dashlane that first alerted to me to the security breach. Dashlane then navigated me to their excellent “Security Dashboard” screen, who’s “Compromised” tab quickly showed me all the other websites where I was currently using that same Evernote password (yep, as you can see, I had been using it on 11 other websites!)

security bar 
From that screen, I could easily click to each site to change my passwords, and when doing so, Dashlane provided a “Generate Strong Password” option to ensure my new password would be  unique and much more difficult for hackers to crack than the single memorized one I’d been using previously.

Once that urgent job was done, I spent the next few evenings using the Dashlane Security Dashboard to review and update all the rest of my unsafe/reused passwords.  The dashboard is quite intuitive and easy to follow—here’s a snipet of some of it’s key fields:

dashboard

Once you have your passwords all nicely unique and robust, you certainly don’t want to have to manually enter them.  No problem!  Dashlane will now automatically log you into each site (or you can tell Dashlane to just prompt you when you click a site’s user name or password field).

auto login

Dashlane also has a “Notes” feature to store non-website info, such as your insurance, banking, and credit card information, corporate application logins, WiFi passwords, and other key bits of information you need to store securely.  These notes can be categorized and color-coded for easy lookup later.

Notes

Additionally, Dashlane makes web form-filling and online shopping a fast and easy experience.  Sure, your web browser can store this kind of data as well, but it’s not always as safe (especially if your PC hard drive is unencrypted or you don’t lock it with an OS-level password). 

Web browsers often have a difficult time distinguishing between a “Street Address” and an “Address” field making you type the same information in each of these variously named fields.  Dashlane is much smarter— your single contact info data can auto-fill virtually any web page.

When making online shopping purchases, Dashlane lets you populate credit card fields automatically (if you’ve stored one in the application), and optionally creates a line-item receipt and screenshot of your purchase so you can easily search and recall it later within Dashlane.  Pretty cool!

online shopping

Finally, it has a nice-looking “freemium” mobile app for iOS, Android, etc to go with the Mac or Windows desktop apps and various web browser plug-ins. 

ios

Dashlane offers good import capabilities to bring your data in from other password management applications (such as 1Password, KeePass, and LastPass) and/or your web browser’s stored password vault.  It also exports data to either an encrypted Dashlane archive file or to an Excel or CSV text file (making it easy to keep a backup copy of your data or migrate to another app in the future).

Some folks are justifiably queasy with the notion of storing all your most-sensitive data in one application or syncing that data via the online “cloud”.  Dashlane’s website provides a wealth of information detailing exactly how they protect your data.  The key points:

  • They never store your “master password” (used to unlock your encrypted data file) on their servers nor do their employees have any way to retrieve it from your device.
  • A two-factor authentication key is used (the master password you create plus a device-specific code).  So, even if a hacker were to get your encrypted data file, they’d also need to get your local device and local master password in order to access it.
  • Your shopping history is never stored/saved where Dashlane can use it
  • You can optionally turn off cloud-syncing and simply use the app’s manual import/export features if desired to share “local-only” data between multiple devices. 

Dashlane’s main competitors to offer a similar mix of features are LastPass and 1Password.   1Password has a more-traditional “pay upfront” model that can run upwards of $70-90 to buy the app for each of your desktop and mobile devices.  LastPass offers a free desktop web app, but then charges $12/year for their mobile app.  Dashlane takes a “freemium” approach too, but also provides users a way to get those premium mobile features for free.

Their reward points system encourages users to use all features of the application more robustly (for instance, the more unsafe passwords you fix or more logins you save, the more points you earn).  It’s also an ingenious way to grow the relatively young Dashlane community quickly by encouraging friends to recommend the app to other friends.

Speaking of which—here’s a way you can help me!  If one of you signs up via this link below, I’ll get enough points for a free year of mobile app premium features, and you’ll get 10,000 points deposited to your Dashlane account (to get you some free premium features as well).

https://www.dashlane.com/en/cs/3b9d7a9d

If you find Dashlane as useful and cool a tool as I have, when you refer your friends to use it, you’ll get the same great deal for yourself and your friends! 

So give it a try, and let me know how you like Dashlane!

Saturday, March 2, 2013

Winter Adieu at Bluff Spring Fen & Heading Back to School!

IMG_2006-Edit

Now that it’s March, and Daylight Savings Time is just around the corner, I have every confidence that this will be our last weekend of snow on the ground here in Chicago…you hear that, weather gods?!!

Well, after making that pronouncement from my armchair this morning, I decided I had better get out and finally do some winter photography before the last of the snow had melted.  So, I headed out to a favorite tiny patch of nature to try out my new camera and a new lens.

IMG_1998-Edit

Elgin’s Bluff Spring Fen is an Illinois Nature Preserve, and one of the few remaining calcareous fens in Illinois.  Unlike a bog (which gets its water supply mainly by containing rainwater), a fen’s water source comes from beneath the ground—in this case, a spring that remains a constant 50-degrees  throughout the year to nourish an amazing variety of flora and fauna within its small 100 acres.

IMG_2010-Edit

True to it’s word, the spring-fed stream was flowing like clockwork.  No ice here!

IMG_2015-Edit

While most of Illinois is flat as a pancake and stripped of it’s natural habitat, this mighty little fen with it’s hilly kames and tall oak savannah endures.  Perhaps because you must drive through a big, old creepy cemetery to get to it’s only access point, or maybe because the park is surrounded by an industrial park and a gravel pit, Bluff Spring Fen doesn’t roll out the welcome mat very easily so it’s rare to find other more than 1 or 2 visitors to the park at the same time…and that seems to suit it’s delicately preserved ecosystem just fine.

IMG_2025-Edit  

I finally upgraded my beloved old Canon 5D full-frame digital SLR with the new Canon 6D, and today was it’s first field trip.  Still trying to get the hang of all the new controls and wiz-bang features, but so far, I’m really liking it’s lightweight body and great image quality.  The new lens is a fully manual Samyang (Rokinon) 14mm f/2.8. Really quite impressed at how sharp it is—don’t think I’ll be needing to buy the Canon version (that costs $2000 more)!

I hope to spend much more time at the Fen this Spring and Summer (and a few other local parks as well) doing volunteer work as I’ve just been accepted into the Illinois Master Naturalist training program that starts in April…ya-HOO!!!!! I can’t wait!

 Screenshot_3_2_13_8_46_PM

In return for committing 60 hrs of volunteer service, we’ll receive 2 months of classroom and field training from the University of Illinois Extension in a wide range of natural science subjects to better prepare us as park volunteers and stewards.

mzl.iusdefwa.320x480-75

To gear up for my training, I’ve been downloading some nature reference field guides onto my iPad and iPhone.  So far, I’ve gathered the full set of Audubon Mobile Field Guides (really great stuff!).   Are there any others that you kind readers might recommend?  I’d like to stick with just e-books and mobile apps if possible.  I’m also thinking it’s time for a proper set of binoculars.  Any avid birders out there with some good recommendations?

It’s fun getting ready for school again!  Now if Spring would just hurry up and get here!!!

Shop Amazon With Us

Gear We Love

Join Us On Facebook