Get Real Sweepstakes: Week #5 – Win a Nokia N8

UPDATE: This sweepstakes is now closed. The winner will be contacted and then announced via our Facebook page.

Facebook recently announced a new feature: One-time passwords sent to users via text message.

[To use this feature, go to “Account “> “Account Settings”. Under “My Account”, click “Mobile”. If you already have a mobile activated, you’re ready to go. If not, you need to “Sign up for Facebook Mobile.” Facebook will text you a code to activate your phone.  Now, whenever you need a One-time password, just text “otp” to 32665 (FBOOK).]

Does Facebook just want access to more mobile phones, as security expert Larry Zeltser has suggested? Probably.  But Facebook has looked at its user base and attempted to solve a serious security problem.

If you’ve ever taken a look at the screen on the public computers in libraries, Internet cafes and schools, you see that nearly everyone has Facebook open. And the problem with public computers is that you have no idea what has been installed on them—including a keylogger.

A keylogger can track every key you hit, possibly revealing your most intimate credentials to a cybercriminal. That’s why entering your Facebook password on an unsecured public PC is risky. And shopping or banking on an unsecured PC is like shouting your credit card number through a megaphone. You would never do that. People do things online that they would never in the real world.

So here’s this week’s question. Have you ever shopped or banked on a public computer? Yes or no will do. But we’d love to hear your story.

Read the rules and post your answer in the comments for your chance to win a brand new Nokia N8 plus F-Secure Internet Security 2011.

Cheers,

Sandra

F-Secure Internet Security 2011
GET REAL SWEEPSTAKES WEEK #5- COMPETITION RULES AND PRIZES

By entering the Get Real promotion you accept the Official Competition Rules and the Privacy Policy (http://www.f-secure.com/en_US/privacy.html).

If you do not accept these rules, please do not enter this promotion.

1. The sponsor of this promotion is F-Secure Corporation, located at Tammasaarenkatu 7, Po. Box 24, 00181 Helsinki, Finland (“Sponsor”).
2. The promotion will begin at 6:00 PM PDT on October 17, 2010 and end at 6:00 PM PDT October 24, 2010.
3. This promotion is void where prohibited or restricted by law. No purchase is necessary to enter.
4. 3 prizes a Nokia N8 with a retail value of $549 and 2 F-Secure Internet Security licenses with a retail value of $119.98 will be given as prizes in this promotion at the close of the competition.
5. Only one (1) entry, per person per Sweepstakes will be accepted.  Each comment posted constitutes an entry. Further attempts made by the same person and entries generated by a script, computer programs, macro, programmed, robotic or other automated means will be disqualified.
6. The winner will be chosen randomly from the people who participated in the competition by commenting on the “Get Real Sweepstakes Week #5“. Sponsor will notify the winner via email. If the winner does not respond within seven (7) days, he or she will forfeit the prize and another winner will be randomly chosen. This prize is shipped to the winner within 30 days of the promotion closing date.
7. The winners are responsible for any taxes associated with receipt of the prizes. Sponsor reserves the right to substitute the prizes with other prizes of equal or greater value if the prize is not available for any reason.
8. Odds of winning the prizes depend upon the total number of eligible entries received.
9. No purchase or software download is necessary to enter or win. Purchase or software download will not increase your chances of winning.
10. To enter, visit http://safeandsavvy.f-secure.com/2010/10/15/get-sweepstakes-week-5/ and comment on the post. To comment you must provide your email address, which will not be made public. Entries are the property of Sponsor and will not be acknowledged or returned. Comments made be edited by F-Secure without explanation.
11. Any entrant who attempts to cheat or tamper with the Get Real Sweepstakes shall be disqualified by the Sponsor’s sole discretion.
12. The name of the winner will be announced via the F-Secure Twitter channel http://twitter.com/FSecure, F-Secure Facebook page http://www.facebook.com/FSecure and F-Secure’s Safe and Savvy blog http://safeandsavvy.f-secure.com/ once the winner has been contacted. By entering, the entrant agrees that his/her name, country and/or picture can be published at F-Secure’s aforementioned channels if he/she wins.
13. By entering, entrants agree to release and hold harmless Sponsor and all of its representatives from and against any and all costs, expenses, claims, demands, proceedings, suits, actions and/or liabilities for any injuries, death, loss or damage of any kind arising from or in connection with accidents, terrorism, theft, natural disaster, the promotion of the Get Real Sweepstakes, the distribution of any prize, entrants’ participation in and/or entry into the Get Real Sweepstakes, acceptance or use of any prize or unavailability of any prize. Prizes are provided “AS IS” without warranty of any kind from the sponsor.
14.  Employees of Sponsor and family members of such employees are not eligible to enter.

© 2010 F-SECURE CORPORATION. ALL RIGHTS RESERVED.

CC image by Andres Rueda.

More posts from this topic

trust, internet, internet of things

A Brief History of the Trusted Internet

By Allen Scott, managing director of F-Secure UK and Ireland The internet and the industry which surrounds it is at a tipping point. The scramble to dominate in emerging product and service markets has led many organisations to lose sight of what the Internet should be. If things continue on this downward moral trajectory, we run the risk of breaching the rights of every person who uses it. As a general rule of thumb, violating customers and prospects is not a wise sales strategy. This is why the Trusted Internet is so important now, in 2015, to stem the tide. Half the world away The internet has morphed from a military funded academic computer network into the World Wide Web into what we know today. It has created new industries and billionaire business owners. It has made the world smaller by connecting people who would never otherwise have interacted. It has helped every person by making their life a little easier – from keeping in touch with family to being the number one resource for research on any given subject. It is hard to imagine life without it. Of course, not everyone is online…yet. Figures vary, but it is generally accepted that approximately 3 billion people are now connected to the internet. That is 42% of the world’s population. By 2018, it is estimated that half of the world’s population will be online. That means that every other person could have their human right to privacy (Article 12 of the Declaration of Human Rights) violated. It is unacceptable because it is avoidable. Personal data – the ultimate renewable resource The internet is now an extension of mankind. It is our marvellous creation and we are growing more and more dependent on it. The problem is that it is turning into a Frankenstein’s monster. We are so consumed with whether something (such as tracking people’s movements online) is possible, that the industry has forgotten to ask themselves whether they should. Morality has been pushed aside in the race to gain more personal data, for knowledge is power. Don’t believe how valuable data is? Just take a look at Google. A giant of the internet, it made over £11 billion in profit last year. Not bad for a company which gives away its services for free. Google collects so much data on its users that it is the fourth largest manufacturer of servers in the world. It doesn’t even sell servers! Personal data is big business. Advertisers pay a lot of money for profiles on people. What people like, where they live, who they are likely to vote for, whether they are left-handed – some marketing companies claim to have up to 1,500 points of interest on each individual’s profile. Are all of these ‘interesting points’ something which those people are happy to have shared? I doubt it.  What about the Internet of Things Next up is the Internet of Things (IoT). A concept whereby a vast number of objects, from toasters to bridges, will be connected to the internet where they will share the data they collect. The benefits of this emerging network is that analysis of the data will lead to efficiencies and will make life easier still for people. For example, I could combine the data collected from my smartphone pedometer, my diet app and my watch’s heart monitor to analyse my health and make informed improvements. So far, so good. The IoT waters get a little murkier when you start asking who else has access to that data about me. Maybe I don’t mind if my doctor sees it, but I’m not comfortable with marketing companies or health insurers seeing that data. It’s private. We are fortunate that we are still in the fledgling stage of the IoT and have the opportunity to shape how it impacts our private lives. This is a relatively small window in which to act though, so we must be outspoken in order to protect people’s civil liberties. The ethical solution The next stage of internet development needs to be the Trusted Internet. People have the right to privacy online and it is entirely possible. Not every business and organisation online is part of the data-collecting frenzy. Some, like F-Secure, simply don’t care what you want to look up in a search engine or which websites you visit (unless they are malicious, of course!). We believe that your data is exactly that – yours. Until now, the internet has developed a taste for the free in people. Users have been reluctant to pay for services which they could get for free elsewhere. But now people are realising that when they don’t pay for the product, they are the product. With F-Secure, our customers are just that – customers. Being the customer, their data is their own. Our job is to protect them and their data. We believe that the internet should be a place for people to learn and interact. There shouldn’t be a price on this in the form of our privacy. If there should be a price, it should be monetary, so that people have the chance to buy the services they wish to use, rather than gaining access to services in exchange for personal information. I would happily pay to use Google, Facebook, LinkedIn or one of the many other sites which stakes claim to me when I sign up. We are the generation which created the internet. Let’s not be the generation which disposed of decency, respect and privacy too. [Image by Timo Arnall | Flickr]

Feb 27, 2015
Apple

Which operating system is the most secure? Four points to remember.

No, you are almost certainly wrong if you tried to guess. A recent study shows that products from Apple actually are at the top when counting vulnerabilities, and that means at the bottom security-wise. Just counting vulnerabilities is not a very scientific way to measure security, and there is a debate over how to interpret the figures. But this is anyway a welcome eye-opener that helps kill old myths. Apple did for a long time stubbornly deny security problems and their marketing succeeded in building an image of security. Meanwhile Windows was the biggest and most malware-targeted system. Microsoft rolled up the sleeves and fought at the frontline against viruses and vulnerabilities. Their reputation suffered but Microsoft gradually improved in security and built an efficient process for patching security holes. Microsoft had what is most important in security, the right attitude. Apple didn’t and the recent vulnerability study shows the result. Here’s four points for people who want to select a secure operating system. Forget reputation when thinking security. Windows used to be bad and nobody really cared to attack Apple’s computers before they became popular. The old belief that Windows is unsafe and Apple is safe is just a myth nowadays. There is malware on almost all commonly used platforms. Windows Phone is the only exception with practically zero risk. Windows and Android are the most common systems and malware authors are targeting them most. So the need for an anti-malware product is naturally bigger on these systems. But the so called antivirus products of today are actually broad security suites. They protect against spam and harmful web sites too, just to mention some examples. So changes are that you want a security product anyway even if your system isn’t one of the main malware targets. So which system is most secure? It’s the one that is patched regularly. All the major systems, Windows, OS X and Linux have sufficient security for a normal private user. But they will also all become unsafe if the security updates are neglected. So security is not really a selection criteria for ordinary people. Mobile devices, phones and tablets, generally have a more modern systems architecture and a safer software distribution process. Do you have to use a desktop or laptop, or can you switch to a tablet? Dumping the big old-school devices is a way to improve security. Could it work for you? So all this really boils down to the fact that you can select any operating system you like and still be reasonable safe. There are some differences though, but it is more about old-school versus new-school devices. Not about Apple versus Microsoft versus Linux. Also remember that your own behavior affects security more than your choice of device, and that you never are 100% safe no matter what you do.   Safe surfing, Micke   Added February 27th. Yes, this controversy study has indeed stirred a heated debate, which isn’t surprising at all. Here’s an article defending Apple. It has flaws and represent a very limited view on security, but one of its important points still stands. If someone still thinks Apple is immortal and invincible, it’s time to wake up. And naturally that this whole debate is totally meaningless for ordinary users. Just keep patching what you have and you will be fine. :) Thanks to Jussi (and others) for feedback.  

Feb 26, 2015
BY 
NSA, GCHQ, listening, mobile calls, privacy

Is the NSA listening to your mobile calls? Maybe. Here’s what you can do about it.​

The newest leak from Edward Snowden may be coming at a terrible time for the Obama White House but it's not particularly shocking news to security experts. The Intercept's report about the "Great SIM Heist" reveals American and British spies stole the keys that are "used to protect the privacy of cellphone communications across the globe" from Gemalto, the world's largest manufacturer of SIM cards. It goes on to report that "With these stolen encryption keys, intelligence agencies can monitor mobile communications without seeking or receiving approval from telecom companies and foreign governments," which sidesteps the needs for legal warrants that should be the foundation of ethical law enforcement. While this is certainly troubling and speaks to the agencies wanton regard for privacy and some amateurish procedures being used to transport keys, it likely won't alter the security landscape much. "The best summary is that an already unreliable communication method became even more unreliable," F-Secure Labs Senior Researcher Jarno Niemela, the holder of 20 security-related patents, explained. "Nobody in their right minds would assume GSM  [Global System for Mobile Communications --the digital cellular network used by mobile phones] to be private in the first place," he said. "Phone networks have never been really designed with privacy in mind." Mobile operators are much more concerned with being able to prevent their customers from avoiding billing. While a scope of such a breach does seem huge, Jarno points we're not sure how many of the billions of cards manufactured by Gemalto may be affected. Keys sent to and from operators via without encryption in email or via FTP servers that were not properly secured are almost certainly compromised. But according to The Intercept, GCHQ also penetrated “authentication servers,” which allow it to "decrypt data and voice communications between a targeted individual’s phone and his or her telecom provider’s network" regardless who made the cards. With the cracked keys, users' calls would be vulnerable but likely only in a limited manner. "I am told that these keys only expose the encryption and authentication between the mobile device and the local cell tower," F-Secure Security Advisor David Perry explained. "This means that the NSA or (whoever else) would have to be locally located within radio range of your phone." So could the NSA or GCHQ be listening to your calls without a warrant? Maybe. Here's what you can do about it. Add a layer of encryption of your own to any device you use to communicate. A VPN like our Freedome will protect your data traffic. This would not, however, protect your voice calls. "Maybe it’s time to stop making 'traditional' mobile phones calls," F-Secure Labs Senior Researcher Timo Hirvonen suggests. "Install Freedome, and start making your calls with apps like Signal." [Image by Julian Carvajal | Flickr]

Feb 23, 2015
BY