posts by author

Bored w/ Security warnings? You are not alone – MRIs show our brains shutting down when we see security prompts

Posted on March 30, 2015 in hntbh - 0 comments - 0

Anderson, et al imageEver find yourself just click click clicking through every message box that pops up? Most people click through a warning (which in the land of Web Browsers usually means STOP DON’T GO THERE!!) in less than 2 seconds. The facts seem to be due to be from habituation – basically, you are used to clicking, and now we have the brain scans to prove it!

What does this mean for you? Well specifically you won’t be able to re-wire your brain, but perhaps you can turn up the settings on your web browser to not allow you to connect to a site that has the issues your web browser is warning against. Simple – let the browser deal with it and take away one nuisance.

From the study:

The MRI images show a “precipitous drop” in visual processing after even one repeated exposure to a standard security warning and a “large overall drop” after 13 of them. Previously, such warning fatigue has been observed only indirectly, such as one study finding that only 14 percent of participants recognized content changes to confirmation dialog boxes or another that recorded users clicking through one-half of all SSL warnings in less than two seconds.

via MRIs show our brains shutting down when we see security prompts | Ars Technica. (photo credit Anderson, et al)

Don’t forget to check out – if you are looking for quick reminders. The book is coming along and chapter releases are (finally) coming in April!

Read more

18+ states report fake electronic tax returns…

Posted on February 9, 2015 in Uncategorized - 0 comments - 0

As tax season begins many are being hit by startling news about their tax returns being already submitted. Meaning someone voluntarily submitted their taxes, and took the liberty of cashing those refund checks. Please …

Follow these tips to begin defending yourself and our book, How not to be hacked to timely tips:

  1. Use two-factor authentication with your tax software
  2. Print out (yes on paper) and store each year’s tax return in a safe-deposit box in case you need to use it with a tax examiner to correct fraudulent filings
  3. Monitor your records, submissions, and returns carefully for errors
  4. Speed, snail mail (U.S. Postal service), and paper filings will not prevent these frauds

Here is a snapshot of today’s Google listings on the topic … startling and scary stuff:

  • Citing fraud concerns, Minn. won’t accept TurboTax returns – 2 days ago – Intuit has halted the transmission of all state e-filing tax returns on …. Then those got hacked and someone filed fake returns under those folks …
  • Citing Tax Fraud Spike, TurboTax Suspends State E-Filings ……/citing-tax-fraud-spike-turbota… –Brian Krebs – Customers who have already filed their state tax returns using Intuit … A seller of hacked accounts on the Dark Web community Evolution …
  • TurboTax account hacked and someone has filed 2014 Tax ……/2662218-turbotax-account-hacked-and-so… – TurboTax account hacked and someone has filed 2014 Tax Return with my secured information. Bank account … Shocking to see that the tax return is alreadyfiled for 2014. … 1) Go to
  • Utah flags 8,000 tax returns as possible fraud. TurboTax ……/-Utah-flags-8-000-taxreturns-as-possibl… Daily Kos – “Utah taxpayers who filed state-income tax returns electronically prior to 2014 through … Intuit also makes Quickbooks which would have a LOT of highly useful … If this a part of the same group that has hacked other big name …
  • TurboTax Temporarily Suspends E-Filings on Fraud Concerns…/turbotax-suspends-e-filings-on-fra…The Wall Street Journal – 2 days ago – Online Tax-Software Company Temporarily Halts Electronic Filing of State Returns … Intuit hasn’t said how many 2014 state tax returns have already been filed… At Anthem, hackers broke into a database containing personal …
  • Fake Tax Returns In 19 States Linked To Apparent ……/fraudulent-taxreturnsfiled-utah-… Crooks and Liars – Electronic filing has opened a whole new enterprise for hackers and … and TurboTax are both Intuit products that link to one another for tax …
Read more

Chipped Credit Cards coming soon, and expected fraud increase

Posted on January 19, 2015 in hntbh - 0 comments - 0

Credit cards with CHIPS!!!

The future is here in the U.S. all credit cards will soon have a bit of encryption magic to help prevent in-person credit card fraud & theft. You’ll have this little graphic somewhere on your card (if it is ready). The good news is this will help lower fraud, but as accurately shared by Brian Krebs (basically the online reporter/expert in this space):

In every country that has switched to EMV cards — and the United States is the last developed country to do so — online fraud has jumped, says online fraud expert Brian Krebs. “Fraud doesn’t go away, it just goes somewhere else, and that somewhere else is always online,” he says. “The thieves can still steal the card number and expiration date, which still can be used online. So that’s generally what will happen. We’ll see a pretty big uptick in card-not-present fraud.” – & Brian Krebs from his new book SPAM Nation


So, the tips for managing your online security are even more elevated in this new time. As cards become updated, practice your good tips and carry on.


Our community:

Read more

Myth: Checking your credit score will harm you!

Posted on January 2, 2015 in Uncategorized - 0 comments - 0

A bit of advice I give in the Sony Breach survival (zombie!!) guide; on this site, and in the new book for Everyone is to Check and know your credit score. This is not just for the number, which is nice to track and manage, but to know what accounts are associated with your name and where inquiries occurred.

You will not be harmed if YOU check your score and pull a credit report, but if you constantly have retailers/businesses pull your credit you will be harmed in the end.  A nice article in December highlighted described it in this manner:

Myth No. 4: You’re penalized when you check your credit score. This mistake is easy to make because many people don’t understand the difference between a hard inquiry about your credit report and a soft inquiry.

When you check your credit score and credit report with one of the three major credit bureaus, that’s a soft inquiry and doesn’t affect your score. However, whenever an outside party checks your credit score — typically when you apply for a new line of credit — that’s a hard inquiry. In this case, you do receive a small nick to your credit score because you have the temporary appearance of not being able to meet your financial obligations.

Visit Huffington Post here to see the full article and all the myths about credit scores and best practices for having a high credit score.

Stay vigilant,



Read more

FREE 3 chapters online now! Sony data breach survival guide

Posted on December 29, 2014 in Uncategorized - 0 comments - 0

I think it is so important to get this content out that I wanted to share the first 3 chapters of the survival guide. The full Kindle version is available here! A few folks that have suffered breaches will find one or two very familiar, but the third I think will be pretty insightful for those part of this complete gutting of data. Please use the table to see what areas apply to you, and share any thoughts with me.

How not to be hacked: Sony data breach survival guide

Read more

Sony data breach 2014 survival guide is on Amazon Kindle!

Posted on December 23, 2014 in hntbh - 0 comments - 1

Sony survival guide online for Amazon Kindle!!

As I have been writing the main book on behavioral best practices to improve the state of security and resiliency in light of data breaches and criminal activity, a few major data breaches have occurred. Most recently has been the Sony breach. What pained me was seeing the situation unfold due to its magnitude, but I was more shocked that no one was helping the individual person that was harmed. The employees, ex-employees, contractors, actors, business partners, studios, and Deloitte employees are all open to fantastic attacks on their credit, finances, and medical trusts.

Thus I carved out specific content from the main book and after much customization published an emergency guide. Please find the Kindle book available online for purchase, a great value at $5!  The published version will be up soon. Sneak peek here.

Thank you for your time and be safe,


Read more

CBS 60 Minutes’ hosts data breach investigator – takeaways and video

Posted on December 22, 2014 in hntbh - 0 comments - 0

CBS‘ 60 minutes hosted Brian Krebs to discuss retailer data breaches and the effects on consumers. The show can is below, and if you missed it certainly take some time to enjoy it. You can find Brian reporting and uncovering similar crimes on his website. He regularly is first to report (before companies) of any data breaches hitting the wire.

CBS 60 minutes broadcast: (apologies for long advertisements, CBS places ads that match length of video)

Two key takeaways that matter to you:

  1. 2,000,000 of the Target breached credit cards were sold online (that is known) for an average price of $20 per card, or roughly $40 Million profits
  2. 97% of businesses have experienced a data breach, whether they are aware of it or not

Finally, a nice write-up of the 60 minutes video is available by Brian Carmen and worth going through if you have no time for the video.

*A bit of exciting news, a special release on how to protect yourself due to the Sony data breach is being released in the coming days! This is a specific mini-book on tasks with instructions to protect those consumers who were part of the breach (i.e., the Sony employees, the ex-employees, the contractors, actors, and partners). I aim to have it for sale on Amazon, Gumroad (pdf only version), and snippets on Scribd.

Be proactive,

@hntbh on twitter

Read more

Why Apple Pay should be your top 4 payment methods

Posted on December 2, 2014 in hntbh - 0 comments - 0

*Apply Pay should be your top 4 payment methods far above Debit Card, Cash, and Checks*

If you have an iOS device (newer models only at this point) you should use it. The basic reasons – if you have used itunes to buy music, than you have trusted Apple with your credit card. If you purchase ANYWHERE with Apple Pay, that retailer NEVER gets your credit card number, therefore you are only exposed at 1 retailer and not hundreds.

More tips? Sign-up for the more via email and receive book snippets!


Curious – check out this write-up which I find pretty informative:

#applypay #christmas #shopping #nofraud #itunes

Read more
1 / 2 / 3