04-21-2021, 08:47 PM
As a Security Analyst here are some tips I’ve learned from my line of work to keep
<!-- SC_OFF --><div class="md"><p>I currently work within a fortune 100 company’s Computer Security Incident Response Team as a security analyst. </p> <p>As more and more newbies jump in the field, I wanted to share some security tips outside the typical “not your keys, not your wallet” type security as there’s other ways to be hit</p> <p>1.) <a href="https://haveibeenpwned.com/">haveibeenpwned.com</a> enter your email and see what data breaches your email(s) have been apart of. I recently helped a fellow reddit user who said his account was hacked, turns out he was part of a breach where a crypto site was hacked and his password was exposed, he reused this password on another crypto site that the attacker crossed referenced with his email / pass from the other site and didn’t have 2FA activated.</p> <p>With that don’t reuse passwords, and use auto generated passwords / store them in a encrypted password manager (I use <a href="https://keepass.info/">KeePass</a>)</p> <p>2.) Every single program/software is essentially a attack vector, keep your OS updated, keep your software updated, and uninstall ANY thing you don’t use anymore. Just look up the SolarWinds hack and see how supply chain attacks work.</p> <p>3.) Don’t download random stuff from this site or any other. If you want to, check the hash of the software. This can be done using “Certutil -hashfile ‘filename’ sha256” in the windows cmd (Linux you can use “sha256sum ‘filename’”) you can then enter the hash into <a href="https://www.virustotal.com/gui/home/search">VirusTotal.com</a> to see if it comes back malicious.</p> <p>4.) Keeping your seed phrase safe, I personally store it in a KeePass database file (encrypted) then put that file on 2 USB drives and store it in 2 different secure locations.</p> <p>5.) typical advice: Don’t engage reddit messages, don’t disclose your portfolio, cold wallets, and activate 2FA on your reddit account to keep your moons safe.</p> <p>EDIT: </p> <p>6.) Don’t trust email links, I’ve actually worked with the owner of haveibeenpwned owned on a “breach” I found where I found over 12K emails that were entered into phishing sites, and reported it to him. Always go to the site directly through the url address (and double check it)</p> <p>7.) ALSO! Forgot one of the most important ones, chrome extensions, these can have keyloggers, take screenshots, and track you. It might not be malicious when you downloaded it, but attackers generally update them with malicious code with those capabilities or aren’t updated at all which leads to potential unfixed vulnerabilities. Double check the ones you have installed, and remove any you don’t need.</p> <p>8.) VPN / Browser, use a vpn with a no log policy to encrypt your network traffic. I personally use ProtonVPN and it’s worth the few bucks a month for a paid version, brave also allows you to use TOR in browser. Another option is hardening Firefox to use as a browser if brave doesn’t suite your needs which a guide can be found <a href="https://informinc.org/internet/how-to-harden-your-firefox-browser-for-security-and-privacy/">here</a></p> <p>EDIT EDIT: I’ve gotten a lot of messages regarding how to get into the Cybersecurity field and trying my best to respond to them, if there’s interest I could make a post about that at some point. </p> <p>If so please feel free to leave questions below, that you would like answered in case it doesn’t come to mind when writing it / trying my best to respond.</p> </div><!-- SC_ON --> submitted by <a href="https://www.reddit.com/user/xCryptoPandax"> /u/xCryptoPandax </a> <br/> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/mv3bqe/as_a_security_analyst_here_are_some_tips_ive/">[link]</a></span> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/mv3bqe/as_a_security_analyst_here_are_some_tips_ive/">[comments]</a></span>Kind Regards R
<!-- SC_OFF --><div class="md"><p>I currently work within a fortune 100 company’s Computer Security Incident Response Team as a security analyst. </p> <p>As more and more newbies jump in the field, I wanted to share some security tips outside the typical “not your keys, not your wallet” type security as there’s other ways to be hit</p> <p>1.) <a href="https://haveibeenpwned.com/">haveibeenpwned.com</a> enter your email and see what data breaches your email(s) have been apart of. I recently helped a fellow reddit user who said his account was hacked, turns out he was part of a breach where a crypto site was hacked and his password was exposed, he reused this password on another crypto site that the attacker crossed referenced with his email / pass from the other site and didn’t have 2FA activated.</p> <p>With that don’t reuse passwords, and use auto generated passwords / store them in a encrypted password manager (I use <a href="https://keepass.info/">KeePass</a>)</p> <p>2.) Every single program/software is essentially a attack vector, keep your OS updated, keep your software updated, and uninstall ANY thing you don’t use anymore. Just look up the SolarWinds hack and see how supply chain attacks work.</p> <p>3.) Don’t download random stuff from this site or any other. If you want to, check the hash of the software. This can be done using “Certutil -hashfile ‘filename’ sha256” in the windows cmd (Linux you can use “sha256sum ‘filename’”) you can then enter the hash into <a href="https://www.virustotal.com/gui/home/search">VirusTotal.com</a> to see if it comes back malicious.</p> <p>4.) Keeping your seed phrase safe, I personally store it in a KeePass database file (encrypted) then put that file on 2 USB drives and store it in 2 different secure locations.</p> <p>5.) typical advice: Don’t engage reddit messages, don’t disclose your portfolio, cold wallets, and activate 2FA on your reddit account to keep your moons safe.</p> <p>EDIT: </p> <p>6.) Don’t trust email links, I’ve actually worked with the owner of haveibeenpwned owned on a “breach” I found where I found over 12K emails that were entered into phishing sites, and reported it to him. Always go to the site directly through the url address (and double check it)</p> <p>7.) ALSO! Forgot one of the most important ones, chrome extensions, these can have keyloggers, take screenshots, and track you. It might not be malicious when you downloaded it, but attackers generally update them with malicious code with those capabilities or aren’t updated at all which leads to potential unfixed vulnerabilities. Double check the ones you have installed, and remove any you don’t need.</p> <p>8.) VPN / Browser, use a vpn with a no log policy to encrypt your network traffic. I personally use ProtonVPN and it’s worth the few bucks a month for a paid version, brave also allows you to use TOR in browser. Another option is hardening Firefox to use as a browser if brave doesn’t suite your needs which a guide can be found <a href="https://informinc.org/internet/how-to-harden-your-firefox-browser-for-security-and-privacy/">here</a></p> <p>EDIT EDIT: I’ve gotten a lot of messages regarding how to get into the Cybersecurity field and trying my best to respond to them, if there’s interest I could make a post about that at some point. </p> <p>If so please feel free to leave questions below, that you would like answered in case it doesn’t come to mind when writing it / trying my best to respond.</p> </div><!-- SC_ON --> submitted by <a href="https://www.reddit.com/user/xCryptoPandax"> /u/xCryptoPandax </a> <br/> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/mv3bqe/as_a_security_analyst_here_are_some_tips_ive/">[link]</a></span> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/mv3bqe/as_a_security_analyst_here_are_some_tips_ive/">[comments]</a></span>Kind Regards R