https://bit.ly/informationsecurityfornomads
How to protect your gear and data (aka your livelihood) while travelling the world?
- Use strong passwords. Here is why
- Use a password manager
- Dashlane: Never forget another password | Dashlane
- 1password: Password Manager for Families, Businesses, Teams | 1Password
- BitWarden: BitWarden Open Source Password Manager
-
LastPass(don't use LastPass anymore, they have been hacked real bad, use this tutorial to migrate from LastPass to 1Password
- Synchronize your password manager between devices
- Change passwords for all your accounts
- start with email accounts
- then all connecting accounts (Facebook, Twitter, etc.)
- then all accounts where your credit card is registered (iTunes, etc.)
- then change all the other
- Use 2-factor authentication on email and other accounts (whenever possible) and don't trust SMS 2FA, especially for Americans
- Google Authenticator for Android: Google Authenticator – Applications sur Google Play
- Google Authenticator for iOS: https://itunes.apple.com/us/app/google-authenticator/id388497605?mt=8
- Yubikey
- You can also use your password manager to generate those 2FA codes but I would recommend using a separate system for that, to really have 2 separate systems for your two factors
- The password manager in your browser does not easily synchronize with all your devices, and its security is relative.
- remote backup
- encrypt hard drive
- antivirus
- Avira
- Kaspersky looks like a good alternative
- Bitdefender
- use a VPN
- High-Speed, Secure & Anonymous VPN Service | ExpressVPN
- NordVPN
- ProtonVPN: Secure and Free VPN service for protecting your privacy
- if VPN is blocked, you need to use OpenVPN with Tunnelblick: Tunnelblick | Free open source OpenVPN VPN client server software for Mac OS X and macOS
- laptop finder
- use a webcam cover, it’s useful: https://www.amazon.com/EYSOFT-Webcam-Cover-0-7Mm-Thin/dp/B075FCNF4B/ref=sr_1_3?s=pc&ie=UTF8&qid=1551155460&sr=1-3&keywords=webcam+cover
- Lock your devices
- Biometric is best
- At least 6-digit PIN
- You need a PIN, really!
- AirTags
- Theft-proof backpack: XD Design Bobby
- Credit cards
- Never share your credit card details over the phone, or at least use a virtual one
- Crypto-currencies
- Ledger sells an excellent Bluetooth hardware wallet that you can use with your smartphone, the Ledger Nano X, that I use personally. And here is a video that explains how to set up and use a Ledger Nano X.
- Trezor
- CryptoSteel: to back up your mnemonic in the safest way possible, or create a cold wallet
- Exodus
- Coinbase Wallet
- Do not share your social network info with customs
- Lock your phone with your PIN before crossing the border (disable biometrics)
- Avoid giving away your IMEI
- keep your software up-to-date! Apart from the "miscellaneous improvements and bug fixes", software updates often contain security patches. And if you don't apply those patches, you leave big security holes open and hackers love to exploit those. This is especially important for your operating systems, but also for other software. Want an example?
- if you create a new account, use your password manager’s browser extension to generate a unique random password systematically
- you can use your password manager to store your credit card numbers, it’s much safer than inputting them manually in a public place where there might be security cameras around, or people watching over your shoulder
- never open an attachment you receive from somebody you don’t trust, even what appears to be an image or a movie
- never answer an email that asks you for your password or some other secret info, it’s most likely phishing. Your bank or technical support will never ask you for that over email or even phone.
- avoid writing your credit card details in an email or on paper (rentals), and don't shout it over the phone (or use a virtual credit card)
- if you give your password to someone for help, change it right away after, even if you trust your friend not to use it themselves, you don’t know how they will protect it from others
- on public wifis, always use your VPN. Sometimes some wifis will prevent you from using your VPN application, but they can’t prevent you from using OpenVPN with Tunnelblick
- you can check if some of your accounts have been compromised and if your private data is circulating out there on this website: https://haveibeenpwned.com/
- one of the most common hacking techniques is social engineering: somebody calls you or sends you an email pretending to be someone else or some trusted service, and asks you for your login information or password or other personal info. Take into account that companies will never ask you for this kind of personal information over email or phone, and if they do, you should not work with them. Double check any email, any link, any phone call that asks you for your credentials or personal information.
- Beware of random USB keys!
- Never share a picture of your boarding passes, especially if they show the QRCode on it. It usually contains a lot of personal information, some of which can be used to impersonate you on airline websites, cancel your reservation, upgrade you with your miles without you knowing, see your other reservations, etc. For more information, see this article.
- If you are not sure about the wifi at your Airbnb or some other place, or if you want to make sure there are no hidden cameras, you can use Fing to scan your network