Even for the technically minded, weighing all the potential threats to your digital privacy can be a headache. But especially for non-techies who take it for granted, the need to think about privacy has never been so urgent.
“The greatest threat is our own ignorance,” security expert Tony Gambacorta said on the latest episode of Too Embarrassed to Ask. “You can get really deep in the weeds, you can really geek out on this stuff, but even just a high-level understanding of it will help people become more educated, make some more informed decisions about it.”
On the new podcast, Gambacorta — a longtime security researcher who recently founded a firm called 1585 Security — explained some of the steps all consumers can take to better protect themselves. For example: Think carefully about whether you need that smart home gadget.
“These are devices,” he said. “They don’t know what they’re ‘for.’ If you have something that’s got a camera and a microphone on it, and it’s running some embedded software, you could use it as a toy or you could use it as a weapon. It’s all about the context of what’s happening.”
He noted that his own house is very “low-tech.”
“I don’t need a camera and the convenience it provides — it doesn’t balance out for me with ‘and someone else could look at it,’” Gambacorta said. “And I know what I’m doing, I know how to configure these things. People who put these cameras in their house rarely know how they work.”
Gambacorta also shared advice around password managers, VPNs (he recommends this one) and why you probably shouldn’t use that public Wi-Fi network at the airport. He said consumers should take any opportunity they get to use two-factor authentication or a password manager such as 1Password, which throw more roadblocks in the way of “opportunistic” hackers.
“If you don’t have two-factor authentication, it’s a lot easier to get you,” he said. “If I’m in organized crime and my boss has told me, ‘Go get 1,000 accounts,’ you’re going to be one of the thousand that I get. I’m not going to expend the extra calories to catch the person that’s got the hard password because I don’t need to. There’s so much low-hanging fruit out there.”
However, don’t trick yourself into believing that you know what a “hard password” is, Gambacorta added.
“Everyone thinks they’re creative, but once you start playing with some of these things, running a horizontal password-guessing attack, you start to realize that everybody uses a date from their lifetime, 1900 to today,” he said. “We don’t have many different names for our dogs; a lot of the things we think are creative are just not.”
Have questions about protecting your privacy that we didn’t get to in this episode? Tweet them to @Recode with the hashtag #TooEmbarrassed, or email them to TooEmbarrassed@recode.net. And don’t miss last week’s episode, in which Recode’s Tony Romm demystified just how the rules governing internet privacy are changing in the U.S.
If you like this show, you should also check out our other podcasts:
- Recode Decode, hosted by Kara Swisher, is a weekly show featuring in-depth interviews with the movers and shakers in tech and media every Monday. You can subscribe on Apple Podcasts, Google Play Music, TuneIn, Stitcher and SoundCloud.
- Recode Media with Peter Kafka features no-nonsense conversations with the smartest and most interesting people in the media world, with new episodes every Thursday. Use these links to subscribe on Apple Podcasts, Google Play Music, TuneIn, Stitcher and SoundCloud.
- And finally, Recode Replay has all the audio from our live events, such as the Code Conference, Code Media and the Code Commerce Series. Subscribe today on Apple Podcasts, Google Play Music, TuneIn and Stitcher.
This article originally appeared on Recode.net.