About This Book

Foolish Assumptions

Icons Used in This Book

Beyond the Book

Where to Go from Here

Cybersecurity Means Different Things to Different Folks

Cybersecurity Is a Constantly Moving Target

Looking at the Risks Cybersecurity Mitigates

Attacks That Inflict Damage

Is That Really You? Impersonation

Messing around with Other People’s Stuff: Tampering

Captured in Transit: Interception

Taking What Isn’t Theirs: Data Theft

Cyberbombs That Sneak into Your Devices: Malware

Poisoned Web Service Attacks

Network Infrastructure Poisoning

Malvertising

Exploiting Maintenance Difficulties

Advanced Attacks

Some Technical Attack Techniques

Bad Guys and Good Guys Are Relative Terms

Bad Guys Up to No Good

Cyberattackers and Their Colored Hats

How Cybercriminals Monetize Their Actions

Not All Dangers Come From Attackers: Dealing with Nonmalicious Threats

Defending against These Attackers

Don’t be Achilles: Identifying Ways You May Be Less than Secure

Identifying Risks

Protecting against Risks

Evaluating Your Current Security Measures

Privacy 101

Banking Online Safely

Safely Using Smart Devices

Cryptocurrency Security 101

Understanding Why Physical Security Matters

Taking Inventory

Locating Your Vulnerable Data

Creating and Executing a Physical Security Plan

Implementing Physical Security

Security for Mobile Devices

Realizing That Insiders Pose the Greatest Risks

Network Security Concerns

Device Security Concerns

Location Cybersecurity

Video Conferencing Cybersecurity

Social Engineering Issues

Regulatory Issues

Realizing You’re a Target

Securing Your External Accounts

Securing Data Associated with User Accounts

Securing Data with Parties You’ve Interacted With

Securing Data at Parties You Haven’t Interacted With

Securing Data by Not Connecting Hardware with Unknown Pedigrees

Passwords: The Primary Form of Authentication

Avoiding Simplistic Passwords

Password Considerations

Creating Memorable, Strong Passwords

Knowing When to Change Passwords

Changing Passwords after a Breach

Providing Passwords to Humans

Storing Passwords

Transmitting Passwords

Discovering Alternatives to Passwords

Don’t Trust Technology More than You Would People

Types of Social Engineering Attacks

Six Principles Social Engineers Exploit

Don’t Overshare on Social Media

Leaking Data by Sharing Information as Part of Viral Trends

Identifying Fake Social Media Connections

Using Bogus Information

Using Security Software

General Cyberhygiene Can Help Prevent Social Engineering

Making Sure Someone Is In Charge

Watching Out for Employees

Dealing with a Remote Workforce

Considering Cybersecurity Insurance

Complying with Regulations and Compliance

Handling Internet Access

Managing Power Issues

Utilizing Technological Complexity

Managing Custom Systems

Continuity Planning and Disaster Recovery

Looking at Regulations

Deeper Pockets — and Insured

Considering Employees, Consultants, and Partners

Looking at the Chief Information Security Officer’s Role

Identifying Overt Breaches

Detecting Covert Breaches

An Ounce of Prevention Is Worth Many Tons of Response

Stay Calm and Act Now with Wisdom

Bring in a Pro

Recovering from a Breach without a Pro’s Help

Reinstall Damaged Software

Dealing with Stolen Information

Recovering When Your Data Is Compromised at a Third Party

Backing Up Is a Must

Backing Up Data from Apps and Online Accounts

Backing Up Data on Smartphones

Conducting Cryptocurrency Backups

Backing Up Passwords

Looking at the Different Types of Backups

Figuring Out How Often You Should Backup

Exploring Backup Tools

Creating a Boot Disk

Knowing Where to Back Up

Knowing Where Not to Store Backups

Encrypting Backups

Testing Backups

Disposing of Backups

Exploring Two Types of Resets

Rebuilding Your Device after a Hard Reset

Professional Roles in Cybersecurity

Exploring Career Paths

Starting Out in Information Security

Exploring Popular Certifications

Overcoming a Criminal Record

Overcoming Bad Credit

Looking at Other Professions with a Cybersecurity Focus

Relying on the Internet of Things

Using Cryptocurrencies and Blockchain

Cloud-Based Applications and Data

Optimizing Artificial Intelligence

Where Was This Laptop Really Made? Supply Chain Risks

Nothing Is Trustworthy: Zero Trust

Genius Computers Are Coming: Quantum Supremacy

Experiencing Virtual Reality

Transforming Experiences with Augmented Reality

Understand That You Are a Target

Use Security Software

Encrypt Sensitive Information

Back Up Often

Do Not Share Login Credentials

Use Proper Authentication

Use Social Media Wisely

Segregate Internet Access

Use Public Wi-Fi Safely (Or Better Yet, Don’t Use It!)

Hire a Pro

Marriott

Target

Sony Pictures

U.S. Office of Personnel Management

Anthem

Colonial Pipeline and JBS SA

Use Your Cellphone as a Mobile Hotspot

Turn Off Wi-Fi Connectivity When You’re Not Using Wi-Fi

Don’t Perform Sensitive Tasks over Public Wi-Fi

Don’t Reset Passwords When Using Public Wi-Fi

Use a VPN Service

Use Tor

Use Encryption

Turn Off Sharing

Have Information Security Software on Any Devices Connected to Public Wi-Fi Networks

Understand the Difference between True Public Wi-Fi and Shared Wi-Fi