- Use an email address specifically for your Facebook and don’t put that email address on your profile.
- When choosing a security question and answer, make it difficult. Make it so that no one can figure it out by simply going through your Facebook. No pet names, no anniversaries — not even third grade teacher’s names. It’s as easy as looking through a yearbook.
- Learn about recovering your account from friends. You can select the three friends you want the password sent to. That way you can protect yourself from a friend and other mutual friends ganging up on you to get into your account.
- Use a firewall. Keyloggers usually send information through the internet, so a firewall will monitor your computer’s online activity and sniff out anything suspicious.
- Install a password manager. Keyloggers can’t steal what you don’t type. Password mangers automatically fill out important forms without you having to type anything in.
- Update your software. Once a company knows of any exploits in their software, they work on an update. Stay behind and you could be susceptible.
- Change passwords. If you still don’t feel protected, you can change your password bi-weekly. It may seem drastic, but it renders any information a hacker stole useless.
- Don’t click on links through email. If an email tells you to login to Facebook through a link, be wary. If you’re still doubtful, go directly to the main website and login the way you usually do.
- Phishing isn’t only done through email. It can be any link on any website / chat room / text message / etc. Even ads that pop up can be malicious. Don’t click on any sketchy looking links that ask for your information.
- Use anti-virus & web security software, like Norton or McAfee.
- Don’t connect to any open (unencrypted) Wi-Fi Networks.
- Especially don’t connect to any Wi-Fi networks that are out of place. Why might you see a “Google Starbucks” when there’s no Starbucks for miles? Because hackers know your phone or computer will automatically connect to it if you have used a network with the same name before.
- If you have trouble connecting to your Wi-Fi, look at your list of nearby networks to see if there are any copies of your network name nearby.
- If your router asks you to enter the password for a firmware update to enable the internet or shows you a page with major spelling or grammar errors, it is likely you’re connected to a fake hotspot.
- On Facebook, go to your Account Settings and check under Security. Make sure Secure Browsing is enabled. Firesheep can’t sniff out cookies over encrypted connections like HTTPS, so try to steer away from HTTP.
- Full time SSL. Use Firefox add-ons such as HTTPS-Everywhere or Force-TLS.
- Log off a website when you’re done. Firesheep can’t stay logged in to your account if you log off.
- Use only trustworthy Wi-Fi networks. A hacker can be sitting across from you at Starbucks and looking through your email without you knowing it.
- Use a VPN. These protect against any sidejacking from the same WiFi network, no matter what website you’re on as all your network traffic will be encrypted all the way to your VPN provider.
