Get started

Security

The FULL Security Guide to keep your money SAFEEmail: - Email Providers - Any reputable email provider with 2FA will do - If you want to get more into privacy and encrypting emails there is Protonmail or Preveil - You can alternatively also hook up your current email with the Thunderbird email client (use to be managed by Mozilla Firefox) it is overseen by a volunteer board of contributors. - 2FA - This is important, activating 2FA on your email is just as important as having it on exchanges. - Create an email specifically for Crypto, but also avoid using crypto keywords / personal information in the email, treat your email address like its public information. - Be on the lookout for Phishing emails, I made a post on how to identify phishing emails along with some useful tools here | How to spot a phishing email | - Quick tips for emails: - Don't trust email links - Double check the address bar of login pages - Know the levels of a domain - Check to see if your crypto sites allow a anti-phish banner that displays a code with their emails that you set. - Tracking pixels are also a thing, there not malicious in themselves, but they can potentially let attackers know if you have open an email / let them know the email exist and is active. Passwords / PINs: - Don't reuse them EVER - Use strong secure passwords, passwords managers make these easy to manage and generate passwords. - This includes your phone and 2FA app, if you have a weak pin (1234) for your phone and someone takes it, remember your 2FA app is then available (if same pin, or no pin/pass set), your email is automatically signed in (same for other accounts auto signed-in), and they can access your text messages. - Don't use words relating to crypto or personal information in your passwords (or email), if they are compromised in a breach, assume they will search for these terms to target crypto users and try the same combo against crypto sites or figure who you based on the information (email & password) and pivot to finding public information that could lead to them answering challenge questions for password resets. (Your first pet, is it posted on Facebook? How about your car? Your first girlfriend/boyfriend?) - Password Managers: These work wonders when managing passwords securely. They generate random strong passwords which can be adjusted, and its all kept in an encrypted database file, so even if a attacker gets access to it, they won't be able to access it without the password. - KeePass - BitWarden - LastPass - 1Password - Don't save passwords in your browser - Does it require verification for you to use the password? Also I tend to find extensions being more buggy as they have to interact with more 'moving' parts and changing configurations, and generally more people try to target and exploit browsers. 2 Factor Authentications (2FA): - Enable on everything possible - Use 2FA Apps instead of SMS whenever possible, SIM Swap attacks are real, and more common than you think. - 2FA Apps - Authy (Linux | Windows | macOS | Iphone | Android) - Google Authenticator (iOS | Android) - Microsoft Authenticator ( iOS | Android) - LastPass Authenticator (Browser Extension | iOS | Android | Windows Phone) -Hardware Keys - These are physical 2FA device - Backup codes: - When you activate 2FA on any account you should have the ability to generate backup codes, these are used incase you lose access to your authenticator, TREAT these like your seed phrases. Use them by logging in with your user and pass, and use these backup codes in place of the 2FA code you usually enter. - DO NOT take pictures of your QR codes, if you screenshot it, might end up syncing somewhere you don't want it to and if it ever gets compromised they have the ability to continually receive your 2FA code. - Also, DO NOT sign up for your 2FA app or any crypto service for that matter using your work or school email address. You lose access to that email, then consider all accounts gone as you won't be able to access the codes if you switch devices. Wallets - Learn the difference between the different wallets - Cold wallets will always be more secure than any hot wallets as they aren't connected to the internet - Top trusted hardware wallets: - Ledger - Trezor - Verify the details you are confirming on your hardware wallet device. the wallet app interacting with your cold wallet device could be compromised, but you would still be safe using it, as long as you verify each action on the cold wallet device, and reject the transaction if anything seems off. Seed Phrases : Treat these as they are the keys to the kingdom (Keep offline and out of your notes app) - Less Secure: - Write down on paper and either break up the phrase and place in separate secure locations or hide them like the the FBI is going to come search your house - Secure on USB - Get a file shredder (securely deletes data, and overwrites it) - Download password manager (optional) - Disconnect device from internet - Enter seed phrase into password manager / create encrypted file - Put on a freshly reformatted USB / datalocker (Worms like to spread by USB) - Save to USB, and shred the original using the file shredder software - Hide USB - Another device / old phone - Factory reset - Set Pin / Pass - Download 2FA app and password manager / file encryption tool - Disconnect from internet FOR GOOD (Treat this like a cold wallet) - Back up 2FA and seed phrases - Hide device VPNs / TOR: - Privacy vs Anonymity - Privacy is the ability to keep your data and information about yourself exclusive to you (They know who you are, but not what you do). - Anonymity is about hiding and concealing your identity, but not your actions. (They know what you do, but not who you are) - Think about what your goal is, I commonly associate privacy with VPN and anonymity with TOR - Both encrypt your data before leaving your device, then routes it through proxy servers to mask your IP/Location. VPNs you have to trust the provider (ensure they state there is a no log policy) while TOR runs through servers ran by volunteers (don't think governments don't run their own) and lets you access the dark web. Here is a more in-depth comparison on VPN vs TOR. - Personally Its worth paying the few bucks a month for a paid tier of the VPN service. - VPN Providers - Zero log VPN services: - ProtonVPN - Nord - Mullvad - TOR - Brave offers TOR, but I would treat this more like a VPN - If being anonymous is your goal the only real way to achieve this is running Tails off a USB. Browsers (Excluding TOR): - Top 3 Browsers built for privacy - Firefox - Epic - Brave (I know Brave draws criticism but I made a technical post showing how the trackers didn't show up within the metamask extension through brave compared to Google Chrome.) - Search Engine for privacy: DuckDuckGo - Extensions - One of the most dangerous threats I think that aren't taken seriously are extensions. These can start out legitimate, then through an update turn malicious. These will then be removed from the webstore, but not your browser. - Some will be removed the store due to not being supported anymore which = no more updates, and no more updates = vulnerabilities that won't be fixed - If you have Google Sync activated, these extensions will also sync to all those devices - Remove any extensions you don't need, check to see there still available on the store, and even search them to see if some security article like this pops up about it. - Check the privacy practice tab of the extension to see what data it collects. Other General Safety Tips for PC and Phone: - Harden your PC (Guide is for Windows 10, but can translate to other OS) - Update OS and any software // turn on automatic updates - Everything you download is an attack vector - Set firewall rules - Default deny, open only p855orts you need, disable rules you don't need - disable remote access - Install AV // Malwarebytes for removing malware - Turn on encryption - Setup user accounts // privileges' - Strong password - Whitelist addresses if possible (Some exchanges allow you to designate a address as 'safe' any other transactions besides those won't go through) - If you use a encrypted messaging service, I highly recommend Signal, if you haven't seen their reply regarding a subpoena you should - Lock down your social media accounts (go to security settings, turn off being able to be found via search engine, ad related settings, change who can view your posts, etc) - Don't disclose your holdings and earnings - Don't access your crypto on your work computer - Don't answer PMs about winning some contest or some amazing opportunity Phone: - Unique pin / password for the phone - download a password manager - email account purely for crypto - pin / password (different than getting into your phone) for your 2FA app. - Don't lend phone out - Avoid apps you don't need, read the 3 star reviews as they are the most honest) - Download VPN / be aware of the wifi your connecting to - Be aware of phishing - Call your service provider and see if they can lock your SIM card and prevent SIM swapping.
Education
by SoftKill21
2
Didi Suspended from App Stores in China Over Data ProtectionOn July 4, the Cyberspace Administration of China (CAC) ordered app stores to stop offering the Didi app. China's cyberspace regulator banned Didi from app stores on July 4, owing to the illegal collection of users' personal data. The CAC had requested Didi to rectify the existing problems in strict accordance with the legal requirements, protecting users' information security. Didi responded that it had implemented the relevant requirements of the national departments, stopped registering new users and removed its app from app stores on July 3, with no effect on the current users, including both passengers and drivers. Meanwhile, the company said it would "improve risk prevention awareness and technical capability, protect users' rights and data security, and provide safe and convenient services." On June 30, Didi listed its shares on the New York Stock Exchange at an offering price of USD 14 apiece. The price rose by more than 28%, with a market value of about USD 67.8 billion. The volatility continued on July 1 when the company's share price grew nearly 16% to USD 16.4 per share, increasing its market cap to USD 78.6 billion. On July 2, the firm's share price plummeted over 10% owing to the news, with its market cap losing in excess of USD 3 billion within one trading day.
D
by EqualOcean
Strong Buy Now: The best setup digital AI company on the CSEBoy, I scan companies for a living and although this ones balance sheet (as I write this) may not be the best pick for VALUE today, it is certainly setup well for an earnings surprise going into Q2. The CEO has said they have realized over $1.5M USD of top line revenue with an entire MONTH left in the quarter. Not to mention - he even said he fully expects to see $15M annually in the near to medium term. They closed HUGE contracts - one of which is for 50k retail locations and even have partnered with Intel; their own app RADAR is on Intel's DOMAIN . That is huge material news that's stayed under the radar on the *little volume* CSE. This is my number 1 pick right now; this one will turn a lot of heads super quick. Also the chart is setup nicely for a long. Trade it, hold it, long term hold it whatever you chose to do just BUY it.
CSE:VSBYLong
by GK-Trades
Price rise as volatility drops?Hi. The Volatility of the Symbol MAGS has for the first time since the turn of the year lowered from a high level down to a center level. At the same time the MACD is currently crossing its signal while below the MACD 0 value. The price has also had steady highest lows since the start of the year. It could be construed that the lowest highs since the spike at the start of February create a triangle together with its corresponding bottom line, but the top line in this triangle is not as clear or strong as its bottom. The price is currently dancing over the MA 56 after dipping below since the start of March but as the price approaches the tip of the triangle and if the price breaks out of the triangle top line it will also stay above the MA more consistently. The RSI is currently high, at a value of around -30, but that value is consistent with past price increases which have held a high RSI even as the price has increased over a longer period. The example long trade shown has a TP that lies just below the high price of the 5th of February spike and a SL just below the low of the 8th of March and a buy line at the crossing of the triangles lines. Oh, and MAGS is a company that deals with security installations at borders, airports and other sensitive installations. As passage of travelers is increasingly allowed throughout the coming year demand and interaction with systems like these will increase and be amplified by the needs of increased security screenings in both areas of transportation and governmental institutions. Just a thought. Thank you. Please, if you have any thoughts or comments do leave them below and I would gladly discuss or adjust my interpretations and methods with you. This does not constitute financial advice. Any projected prices, even if explicitly stated, are made with intent to discuss the symbol and potential interpretations. Any trades shown or mentioned are examples and neither recommendations or mandates.
MLong
by Kabeldon
🔐 Allegion: ALLE - Starting up from demand zone Hi mates another interesting idea with high Risk Reward!!! As you see by two trendlines, uptrend in ALLE is incrasing in momentum. Now its definetely nice entry sweet spot on demand zone in 106 - 109 area. Target area is next supply zone at 119.30 - 194.36 My setup is following: ------------------------Trade setup --------------------------- Entry: 109.80 Stop Loss: 106.23 Profit target: 120.01 ------------------------------------------------------------------ If you like the idea, do not forget to support with a 👍 like and follow. Leave a comment that is helpful or encouraging. Let's master the markets together.
NYSE:ALLELong
by Tomasgei
1
Safer Shot Inc SAFS 0.0009 OTC US Safer Shot Inc (SAFS) 0.0009 -0.0002 (-18.18%) 02/12/21 $SAFS otcbb.swingtradebot.com www.stockta.com ih.advfn.com www.google.com www.marketwatch.com seekingalpha.com www.barchart.com Avg Vol 119,329,039 Stochastic %K 59.31% Weighted Alpha +157.63 5-Day Change+0.0004 (+80.00%) 52-Week Range0.0001 - 0.0016 Safer Shot, Inc. is a development stage company, which develops, patents, and markets a line of non-lethal weapons that utilize a proprietary kinetic projectile cartridge and security products. Its products include Safer Shot Bouncer Cartridge System, Safer Shot Bouncer M-22, Safer Shot Mini, and Safer Shot Bouncer M-11. The company was founded on September 16, 1997 and is headquartered in Annapolis, MD.
OTC:SAFS
by razykar123
1
6.1.2021 - Ripple (XRP / USD)Hi Traders! Today we will look at the XRP / USD analysis and take a closer look at the Ripple case. XRP has flooded newsfeeds in recent days with reports of a lawsuit filed by the SEC (US Securities and Exchange Commission). The SEC filed a lawsuit against Ripple , which created cryptocurrency XRP. T he lawsuit alleges that Ripple was involved in the sale of the securities - meaning their XRP cryptocurrency. It should be added that this action has been pending for a longer time. At the moment, it is difficult to say how it will turn out. Ripple has capable lawyers and one of them is a former member of the SEC. Some exchanges have already suspended the trading of XRP or wanted to delist XRP . At the moment, therefore, we would avoid any investment in this cryptocurrency. But let's take a look at the XRP chart. From below, we have very strong support at the level of USD 0.1713, and from above, strong resistance at the level of USD 0.25. Although we do not know how the SEC lawsuit will turn out, the chart always reflects investors' expectations, so we can see the outcome of this lawsuit from the chart before it's in the news. If we break the support downwards, it looks very bad with XRP. Conversely, if we break through resistance, then XRP may be waiting for good times. However, while we are at the current level, we only monitor and do not buy XRP. May the crypto be with you!
BITSTAMP:XRPUSD
by DolleroTechnology
2
PLURILOCK SECURITYINC - Cyber SecurityLooking alright on a macro term - may possibly pull back but it most likely wont be more than a 5-6 cent pull back unless overall market sentiment changes if that does happen we would most likely see a massive drop - this is penny stock trading in the end. But the negative aside , the Cyber security market is supposedly to hit 1T by EOY , that being said this company and their tech is a fascinating one as using biometrics to be able to constantly tell if malicious activity is going on based on how the individual uses the computer through machine learning. cool stuff either way we had a break out and a test of that new 40 cent high area as support and seems to be holding ... for now... speculation , but they also do have a product they will sell, ties with govt as former NSA employee is on the board , good team could be a dark horse in a race for something that is a constant threat
TSXV:PLUR
by tor1n
Cyber Security has become essential for all"Because of the rise of remote working, cyberattacks have grown exponentially in recent months, with the FBI reporting a 400% increase in complaints in April versus March, as attackers hope to expose weaknesses in an organization's business continuity strategy" Fundamental difference between some of the biggest cyber-security companies: CrowdStrike's (CRWD) endpoint protection uses resource-friendly security agents to inform its crowdsourced cloud about any potential threat anomalies. All customers are protected based on a single threat found, and its technology is supported by having renowned threat remediation and hunting capabilities. OKTA disrupted the identity access and management market with its cloud-based technology that has a large number of application integrations that make controlling who has access to what much simpler for security teams. In a perimeterless security world, the importance of identity is becoming paramount. Zscaler's (ZS) secure web gateways delivered via its cloud locations provide customers a safe route to cloudbased resources. Branch and remote users can go directly to their applications instead of going through a centralized data center, decreasing lag for the end user and alleviating traffic bottlenecks for IT teams. Palo Alto Networks (PANW) is an attractive option for investors. In our view, its cloud transition springboarding growth off its firewall leadership, upselling and cross-selling prospects via its security platform, and strong cash flow and balance sheet are being overlooked for the pure cloud-based companies.
NASDAQ:ZS
by dorfmanmaster
COVID-19 pandemic and not epidemic, exponential ant not gaussianThe COVID-19 is pandemic and not epidemic because it touches all continents all around the world. It is exponential ant not gaussian because there is a second wave in a lot of countries. But maybe the first wave never stopped, and we are testing more and more people. Maybe the curve with continue to grow but start to flatten, nobody is able to predict the future. Just don't bet against the trend, apply the maximum security to yourselves and only yourselves (until it goes to 0 with 100% of recover and 0% of death ?). There is not plot, nobody is lying, governments and people have just no ideas of what will happen because we are facing something imprecise.
CLong
by Nugacity_Fracedinous
$CSPS Formerly Known as $QALB Announces MASSIVE Share Reduction$CSPS Is now on a clear breakout path with the announcement of a massive share reduction of the A/S from 700,000,000 to 250,000,000 and a cancellation of ALL Preferred shares!!! The company also stated it wishes to become fully SEC reporting and has filed the paperwork in order to do so and become OTCQB as soon as possible. It plans to be listed on the NASDAQ at some point next year. PPS Target $10 backend.otcmarkets.com
CLong
by StockGuild
$QALB Now Pink Current Will Become $CSPS Through CUSIP/Name Chg$QALB management has been moving at break neck speed, after having to amend their filings 3 times they are now fully reporting and pink current and have filed and gotten approved a name change to $CSPS which is due to happen by Friday or sooner. The company has secured all handles for its company on all social media and website alternative names to ensure the security of the company once its fully up and running. Management has already secured several contracts worth millions of dollars giving the company an immediate evaluation above $3 Many updates are on the way per the company and my PPS target remains at $10
QLong
by StockGuild