## Episode Title:

3 Immediate Actions to Protect Your Privacy Today

## Episode Summary:

In this episode of Byte Sized Security, host Marc David outlines three practical, actionable steps to enhance your privacy protection immediately. With data breaches nearly doubling in 2024 and companies like AT&T and Ticketmaster experiencing massive exposures, these privacy protection measures aren't just theoretical—they're essential defenses against real threats.

## Key Discussion Points:

* The alarming state of data breaches in 2024: 10,626 confirmed breaches, nearly double from previous year

* Major breaches highlighted: AT&T (73M records), Ticketmaster (560M users), National Public Data (2.9B records)

* The average breach costs $4.88 million, or $165 per stolen record

* **Step 1**: Enable two-factor authentication everywhere

* 2FA stops 99.9% of automated attacks

* Use authentication apps instead of SMS

* Save backup codes in a safe place

* **Step 2**: Audit your privacy settings

* Detailed walkthrough for Facebook, Instagram, Twitter/X, and LinkedIn

* Phone settings review for both iOS and Android

* Revoking unnecessary app permissions

* **Step 3**: Protect your connection and digital footprint

* Using a VPN to encrypt connections and mask browsing

* Reviewing and cleaning your digital footprint

* Opting out of data broker sites

* Deleting old, unused accounts

* The importance of ongoing privacy maintenance

## Tools and Resources Mentioned:

* **Authentication Apps:**

* [Google Authenticator](https://googleauthenticator.net/)

* [Authy](https://authy.com/)

* **Recommended VPN Services:**

* [NordVPN](https://nordvpn.com/)

* [ExpressVPN](https://www.expressvpn.com/)

* [Surfshark](https://surfshark.com/)

* **Data Broker Removal Services:**

* [DeleteMe](https://joindeleteme.com/)

* [Privacy Bee](https://privacybee.com/)

* [Optery](https://optery.com/)

* **Data Broker Sites to Opt Out From:**

* [Whitepages](https://www.whitepages.com/)

* [PeopleFinder](https://www.peoplefinder.com/)

* [Spokeo](https://www.spokeo.com/)

In this episode, we explore the alarming discovery that many of the top-rated VPN apps on the App Store and Google Play are secretly owned by Chinese companies. These VPNs pose a serious risk to user privacy and security, as Chinese law requires them to hand over all user data to the government without justification.

Key Topics Covered:

- Chinese-owned VPN apps masquerading as legitimate services

- Lack of transparency and disclosure around company ownership

- Risks of user data being accessed by the Chinese government

- Failure of app stores to properly vet and regulate these VPN apps

- Importance of researching VPN providers before using them

Main Takeaways:

- Many popular VPN apps are secretly owned by Chinese companies, creating a significant risk to user privacy and security.

- App stores like the App Store and Google Play are not properly vetting and regulating these potentially compromised VPN apps.

- Users must do their own research to ensure the VPN they are using is trustworthy and not owned by a company with ties to the Chinese government.

Timestamps for Major Topics:

- 0:00 - Introduction to the issue of Chinese-owned VPN apps

- 1:30 - Examples of top-ranked VPN apps with hidden Chinese ownership

- 3:00 - Explanation of the legal requirements for Chinese companies to hand over user data

- 4:30 - Lack of action by app stores to remove or label these problematic VPN apps

- 6:00 - Importance of user research and caution when selecting a VPN provider

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

This episode highlights the alarming prediction by Dario Amodei, CEO of Anthropic, that AI could eliminate half of all entry-level white-collar jobs within the next one to five years, potentially raising U.S. unemployment to 20%. While major companies are quietly adopting advanced AI systems, the public and lawmakers remain largely unaware or in disbelief. The episode discusses the impacts of AI on various industries and jobs, stressing the need for urgent action such as an AI 'token tax,' real-time job replacement tracking, legislative briefings, and worker reskilling programs. The message is clear: the AI job crash is imminent, and proactive measures are essential to mitigate its effects.

00:00 The Impending Disappearance of White-Collar Jobs

00:37 Real-World Examples of AI-Induced Job Cuts

01:03 The Rise of AI Agents in the Workplace

01:30 The Alarming Capabilities of Advanced AI

01:48 Public Response and the Threat to Democracy

02:32 Proposed Solutions to the AI Job Crisis

02:57 The Urgency of Immediate Action

03:06 Conclusion: Preparing for the AI Job Crash

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Behind the Curtain: A white-collar bloodbath

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

AI has already impacted the job market significantly, particularly affecting entry-level positions. The script highlights that entry-level hiring has decreased due to the integration of AI, which automates routine tasks. Companies are reconsidering traditional roles and opting for more efficient AI solutions. Job seekers are faced with two choices: compete against AI or learn to leverage it to improve productivity. The script emphasizes the importance of mastering AI tools to stay relevant in the workforce and outlines steps to integrate AI proficiency into daily routines and resumes.

00:00 AI Isn't Coming for Your Job

00:02 The Impact of AI on Entry-Level Jobs

00:18 Automation and Workflow Changes

00:39 Adapting to the AI Revolution

00:46 The Future of Work: Competing with AI

01:07 Embracing AI Tools for Success

01:15 The Consequences of Ignoring AI

01:31 Final Thoughts: Adapt or Be Replaced

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

Marc David dives into the rapidly evolving world of deepfakes and digital deception, projecting forward to 2025. The episode explores the alarming growth in deepfake use, driven by accessible AI technology and user-friendly tools. Mark discusses the severe consequences for businesses (e.g., fraudulent CEO announcements, financial scams like the Polish bank incident), politics (e.g., election manipulation), and personal lives. The discussion also covers emerging solutions, including AI-powered detection tools like those from MIT's DeepTrace Lab, the role of regulations like GDPR, and practical steps listeners can take, such as using verification software like Truepic. The core message is the importance of vigilance and questioning the authenticity of digital content.

**Key Discussion Points:**

* **The Explosion of Deepfake Use (00:21):**

* A 900% increase in deepfake videos was found by Sensity researchers in 2021.

* The problem is projected to have quadrupled by 2025.

* **Drivers of the Deepfake Surge (00:35):**

* Accessible and user-friendly AI technology.

* Cheaper software accelerating spread.

* **Impact on Businesses (00:48):**

* Potential for CEO deepfakes to announce fraudulent mergers or layoffs.

* Real-world example: A Polish bank lost millions in 2023 due to a deepfake scam involving an urgent fake call to redirect funds.

* **Impact on Politics (01:10):**

* Deepfakes manipulating elections (e.g., doctored videos of candidates).

* Erosion of voter trust.

* **Current Preparedness & Solutions (01:21):**

* We are not yet fully equipped, but solutions are evolving.

* **Detection Tools (01:25):** AI systems learning to recognize deepfakes by detecting minute digital artifacts.

* MIT's DeepTrace Lab: Provides tools analyzing AI generation flaws.

* **Policy and Regulations (01:42):**

* Europe's GDPR now covers AI-generated media.

* The US is considering similar steps.

* **What You Can Do (01:52):**

* Stay informed.

* Report suspicious content.

* Support legislative actions against deepfakes.

* Use available verification tools.

* **Today's Takeaway (02:04):**

* Be vigilant.

* Question authenticity until trust is verifiable.

**Tools & Sites Mentioned:**

* **Sensity:** (Research mentioned from 2021 regarding the 900% increase in deepfake videos). Sensity was an AI threat intelligence company, later acquired. The research highlighted the scale of the problem.

* **MIT DeepTrace Lab:** A research initiative at MIT focusing on detecting deepfakes and manipulated media.

* Website: [https://deeptrace.csail.mit.edu/](https://deeptrace.csail.mit.edu/)

* **GDPR (General Data Protection Regulation):** Europe's privacy and data protection law, now addressing AI-generated media.

* Official Information: [https://gdpr-info.eu/](https://gdpr-info.eu/)

* **Truepic:** A company offering photo and video verification technology.

* Website: [https://truepic.com/](https://truepic.com/)

------

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

This episode delves into the controversy surrounding DeepSeek, a Chinese AI considered by some as a national security threat. It questions whether this stance is legitimate or merely a tactic by big tech to stifle competition. The episode highlights multiple security breaches across the AI industry, including OpenAI and Google, arguing that the core issue lies in how AI handles security rather than its origin. The discussion also explores the suspicious uniformity in the anti-DeepSeek narrative, the potential motivations of big AI corporations to maintain monopolies, and the necessity of reading AI privacy policies. Additionally, the episode critiques the U.S. response to AI competition, drawing parallels to historical moments like the Sputnik era, and advocates for stronger AI security regulations and more open-source innovation. Listeners are encouraged to reflect on whether the fear of DeepSeek is justified or manipulated by big tech interests.

00:00 Introduction: The DeepSeek Controversy

00:08 Data Leaks: A Global Issue

00:39 The Suspicious Narrative Against DeepSeek

01:24 Big AI's Fear of Open Source

01:35 Smart AI Usage Tips

02:29 The Real Issue: AI Governance

03:15 The AI Moat Playbook

04:08 Big Tech's Control Over AI

05:49 The Global AI Competition

09:45 Security and Privacy Concerns

17:22 Conclusion: The Future of AI

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• DeepSeek Privacy Policy - The DeekSeek Privacy Policy

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

This episode delves into the contrasting treatment of Facebook and TikTok concerning data manipulation and national security. It highlights the documented case of Facebook's data misuse with Cambridge Analytica, affecting 87 million Americans, and questions why similar scrutiny isn't applied to domestic companies. The script challenges the narrative around TikTok's possible threats, urging viewers to consider the double standards in regulatory actions against social media manipulation.

00:00 Introduction: The Manipulation Debate

00:02 The Facebook-Cambridge Analytica Scandal

00:43 The Double Standards in Social Media Manipulation

01:02 Questioning the Real Threat

01:30 Conclusion: Addressing Double Standards

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

The video discusses the controversy surrounding TikTok and the calls to ban it due to national security concerns. It questions the hypocrisy of other social media giants like Facebook and Twitter (now X) which have also manipulated users for profit. The script emphasizes that the issue isn't the country that owns TikTok, but rather the potential for manipulation by any corporation. The discussion highlights that banning social media isn't the solution and points out that corporate greed remains the true threat, affecting trust in these platforms.

00:00 Introduction: The TikTok Controversy

00:16 The Hypocrisy of Social Media Giants

00:44 The Real Question: Who Controls TikTok?

01:01 Conclusion: The True Threat of Manipulation

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Cambridge Analytica - Wikipedia

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

In this episode, we debunk the myth that coding expertise, particularly in Python, is essential for success in cybersecurity engineering. While many claim that coding skills are a gatekeeper in this field, the reality showcases a wide array of roles such as governance, risk and compliance (GRC), security awareness, and SOC analysis, which do not require deep coding knowledge. The ability to write simple, logical instructions can be helpful, especially in application security or cloud engineering roles. However, mastering core cybersecurity skills like threat modeling, vulnerability assessment, and incident response often has a greater impact. Additionally, AI tools are making coding tasks more accessible. We encourage you to focus on the skills that matter most for your desired cybersecurity role and not be deterred by the myth of mandatory coding expertise.

00:00 Introduction: Do You Need to Know Python for Cybersecurity?

00:06 Debunking the Coding Myth in Cybersecurity

00:26 The Role of Coding in Specific Security Roles

00:59 Core Skills Beyond Coding

01:07 Non-Coding Roles in Cybersecurity

01:34 The Impact of AI on Coding in Cybersecurity

02:12 Essential Skills for Cybersecurity Professionals

02:38 Encouragement for Aspiring Security Engineers

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

The episode discusses the need to move beyond gatekeeping in cybersecurity, which often prioritizes coding skills over diverse talents. It highlights the importance of embracing individuals who have strategic vision, risk management expertise, and effective communication abilities, even if they lack programming experience. The host argues that cybersecurity is a complex, multidisciplinary field that requires diverse teams to solve its challenges. The episode calls on hiring managers and leaders to recognize and nurture a variety of skills within their teams, aiming to dismantle barriers and create more inclusive opportunities in cybersecurity.

00:00 The Importance of Diverse Talents in Cybersecurity

00:06 The Problem with Gatekeeping Based on Coding Skills

00:24 A Story of Overlooked Talent

01:11 The Need for Visionaries and Strategists

01:38 The Human Aspect of Cybersecurity

02:35 The Power of Effective Communication

03:40 Encouraging Diverse Skillsets in Hiring

04:06 Broadening Skills Beyond Coding

04:31 A Message to Aspiring Cybersecurity Professionals

05:00 The Future of Cybersecurity

05:40 A Call to Action for the Cybersecurity Community

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

We're diving into the often daunting task of tailoring resumes for specific jobs and how an AI tool, Claude, made this process significantly easier. The presenter shares a detailed, step-by-step account of their experience using Claude to enhance their resume, highlighting the tool's deep analysis, actionable feedback, and authentic improvement suggestions. They discuss the importance of presenting one's true skills and value in a competitive job market while emphasizing that quality and customization in job applications matter more than quantity. The episode wraps up by encouraging viewers to be genuine, strategic, and thoughtful in their job search efforts.

00:00 Introduction: The Dreaded Resume Tailoring

00:38 Discovering Claude AI: A Game Changer

01:22 How Claude AI Works: Step-by-Step Guide

02:15 Real-World Application: Matching Job Descriptions

03:04 Addressing the Experience Gap with Confidence

04:27 The Importance of Authenticity in Job Applications

05:20 Final Thoughts and Practical Advice

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Claude - Your Career Coach - My step by step experience using Claude Projects as a Career Coach

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

In this special episode recorded outdoors, Marc answers listener questions about breaking into the cybersecurity field. Topics include gaining practical experience without an IT background, the importance of certifications, essential soft skills, networking strategies, handling job rejections, and making a career transition into cybersecurity. Marc provides practical advice on how to stand out in interviews, tailor your resume, and continuously improve your chances of landing a cybersecurity job. Resources and contact information are available in the show notes.

00:00 Introduction and Format Change

00:29 Question 1: Gaining Practical Experience in Cybersecurity

03:31 Question 2: Importance of Certifications

06:46 Question 3: Crucial Soft Skills

09:26 Question 4: Standing Out in Job Interviews

12:33 Question 5: Networking in Cybersecurity

15:59 Question 6: Handling Rejection and Improving Applications

22:35 Conclusion and Final Thoughts

---

I do hope you enjoyed this episode of the podcast. Here are some helpful resources, including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Cybersecurity Conferences - Our cybersecurity conference directory is meticulously updated and checked manually to prevent spam, ensuring it remains the community’s premier resource for discovering top cybersecurity conferences, events, meetings, and seminars for 2024, 2025, and beyond.
• The Hire Drive Podcast Series - Apple Podcasts
• Zero to Hired: Job Hunting in the AI Age - "Zero to Hired: Job Hunting in the AI Age" demystifies the complex world of job searching and hiring practices, providing job seekers with a comprehensive step-by-step guide to leverage artificial intelligence and modern digital tools to land their dream job.

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

This episode focuses on the increasing dangers of data breaches and the various steps individuals can take to protect their personal information. Highlighting the threats posed by data breaches and data brokers, the discussion provides detailed reviews of free resources such as OperationPrivacy.com and Google’s 'Results About You' feature. These tools help users remove their data from major brokers and search engines. Additionally, the episode covers the importance and process of freezing your credit to prevent identity theft, emphasizing the use of password managers and two-factor authentication (2FA) for enhanced security.

00:00 Introduction: The Reality of Data Breaches

00:22 Understanding the Risks: How Your Data is Compromised

01:29 Adopting a Breach Mentality: Protecting Your Information

02:27 Operation Privacy: A Free Tool for Data Removal

06:41 Google Results About You: Managing Your Online Presence

10:15 Freezing Your Credit: An Essential Step

13:34 Conclusion: Taking Control of Your Data Security

---

I do hope you enjoyed this episode of the podcast. Here are some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Google Take Controls of Results About You
• Operation Privacy

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

In this hilarious and eye-opening episode of ByteSizedSecurity, we're flipping the script on the age-old IT vs. Security debate. Prepare for a rollercoaster ride through the corporate tech landscape as we challenge the notion that security is just IT's sidekick. From debunking myths to exposing organizational chart failures, this episode serves up hard truths with a side of laughter. Whether you're an IT pro, a security guru, or just someone who enjoys a good tech tussle, tune in for a fresh perspective on why security should be in the driver's seat. Warning: This episode may cause uncontrollable giggles and a sudden urge to redesign your company's org chart!

Keywords: IT, Security, Cybersecurity, Corporate Structure, CIA Triad, CISO, CIO, Tech Humor

This podcast addresses the issue of misinformation in the cybersecurity community, especially among influencers on platforms such as TikTok. The narrator emphasizes the importance of influencers conducting thorough research and providing accurate, evidence-based information rather than spreading myths or fear-mongering. They argue that cybersecurity influencers have an obligation to their audience to be reliable sources of information, citing examples such as unfounded fears about iOS updates and privacy. The podcast critiques the current state of cybersecurity discourse, where ease of content creation has led to an abundance of unverified information, comparing it unfavorably to the medical field where expertise is rigorously vetted. The narrator calls on influencers to improve their practices by doing proper research, citing sources, and understanding the real-world impact of their advice on data protection and security. Lastly, the importance of being discerning about the motives behind the information provided by influencers, including financial incentives, is highlighted as crucial for the audience's ability to trust the content they consume.

00:00 The Call for Cybersecurity Influencers to Step Up

00:45 The Dangers of Misinformation in Cybersecurity

02:09 The Responsibility of Influencers: Research and Truth

03:52 The Importance of Credibility and Trust in Cybersecurity Advice

05:57 The Role of Influencers in Educating the Public Responsibly

09:59 The Obligation of Cybersecurity Influencers to Provide Accurate Information

12:46 Final Thoughts: The Impact of Responsible Influence

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

The speaker discusses the Google Cybersecurity Certificate Program and its benefits for both experienced and new cybersecurity enthusiasts. The speaker discusses how you can get the program for free through libraries that offer Coursera, like the California state public library. No matter if you're already in the field and looking for a refresher course or entirely new to cybersecurity, the speaker finds the program commendable. They add that while it won't guarantee you a job, it does provide a structured learning path and a certificate that you can mention on your resume.

Timeline:

00:00 Introduction to Google Cybersecurity Certificate Program

00:16 Who Should Consider the Program

00:51 Benefits of the Program

01:12 Comparing with Other Certifications

02:32 How to Access the Program for Free

03:11 Personal Experience with the Program

03:26 Benefits for Existing Certification Holders

05:31 Value of the Certificate for Job Seekers

07:02 Final Thoughts and Recommendations

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Google Cybersecurity Certificate - The Google Cybersecurity Certificate program on Coursera

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

Mentioned in this episode:

YouTube Byte-Sized Security Channel

Byte-Sized Security on YouTube

The Byte-Sized Security YouTube channel is a resource for everyone interested in cybersecurity. The channel features a mix of insights, expert talks and in-depth discussions that elaborate on the concepts of cybersecurity. Viewers can subscribe to join a community of both professional and budding cybersecurity enthusiasts, staying updated in the digital world.

00:00 Introduction to Byte-Sized Security

00:04 Invitation to the Byte-Sized Security Podcast

00:10 Discover the Byte-Sized Security YouTube Channel

00:13 What to Expect from Our YouTube Channel

00:26 How to Access Our YouTube Channel

00:35 Join Our Cybersecurity Community

00:40 Stay Ahead in the Digital World

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Coursera partners with the California State Library to launch free statewide job training program  - Coursera Blog - Check your local library's eLearning or Digital areas. Ask them if they can join if it's not listed. Coursera is free for the California State Library partner libraries including New York, Tennessee, Missouri, and the city of Chicago.

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

In this podcast, I will tell you how to access premium online learning resources like LinkedIn Learning, Udemy, and Coursera for free, simply by utilizing your public library card. Most people don't know that library cards can open doors to various resources, varying from library to library. However, most libraries in the U.S provide free access to LinkedIn's premium content. Plus you can gain access to Libby, an app allowing users to borrow a selection of audiobooks and ebooks. I want to stress the importance of taking advantage of available resources paid through taxes rather than spending additional money on courses and online platforms.

00:00 Introduction to Free Access to LinkedIn Learning

00:37 The Secret: Public Library Card

00:57 How to Use Your Library Card for Online Learning

01:33 Accessing LinkedIn Premium Content with Library Card

02:12 Why Collect Multiple Library Cards

02:27 Examples of Different Libraries and Their Offers

02:49 Accessing Coursera with Library Card

03:53 Additional Benefits of Public Library Card

00:40 Steps to Accessing Online Learning Resources

05:48 The Value of Public Library Resources

07:23 Conclusion and Call to Action

08:08 Accessing Mobile Hotspots with Library Card

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

Mentioned in this episode:

YouTube Byte-Sized Security Channel

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

In this eye-opening episode, host Marc David takes a critical look at the proliferation of self-proclaimed cybersecurity 'experts' on YouTube. We delve into the mechanics of content creation, the business model behind it, and the glaring gap of practical experience. Ready for a reality check? Tune in!

📌 Timestamps

• 00:00 - Introduction: The Fluff & Stuff of Cybersecurity YouTube Videos
• 01:46 - Core Argument 1: The Content Mill
• 03:25 - Core Argument 2: The Business of YouTube
• 05:28 - Core Argument 3: Missing Practical Experience
• 07:15 - Counter-Arguments: The Other Side of the Coin
• 08:58 - Conclusion: A Byte-Sized Reality Check
• 10:15 - Call to Action & Community Poll: How Do You Vet YouTube Cybersecurity Experts?

🎯 Key Takeaways

1. Expertise ≠ Popularity: A large subscriber count doesn't necessarily make someone an authority in cybersecurity.
2. Content Mills: The alarming rate at which some YouTubers churn out content may impact the quality and depth of their advice.
3. Business Over Authenticity: Learn why monetization models can clash with the ethical considerations of cybersecurity.
4. The Importance of Practical Experience: There's no substitute for hands-on, in-the-field know-how.

🗳️ Community Poll

Don't forget to participate in our YouTube community poll: "How do you vet the credibility of a cybersecurity expert on YouTube?" Click here to vote!

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• AI in Cyber Security: Pros and Cons | Terranova Security
• Humans and AI: The double-edged sword of cybersecurity | Cyber Magazine

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Securing Your Meetings

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

--

If you have questions for the show, feedback or topics you want covered. Please send a short email to marc@bytesizedsecurity.show with the Subject line of "Byte-Sized Security" so I know it's about the podcast.

Connect with me on TikTok: https://www.tiktok.com/@bytesizedsecurity

1. Education and Certifications: Obtain foundational certifications like CompTIA Security+ and consider advancing to others like CISSP, CEH, or Cisco's CCNA Cyber Ops.
2. Network: Attend cybersecurity conferences, seminars, and meetups. Engage with professionals and peers in events like DEFCON or platforms like Meetup.com.
3. Internships and Entry-Level Positions: Pursue internships or related entry-level positions, such as IT support roles, to gain relevant industry experience.
4. Projects and Portfolio: Establish a home lab, explore security tools, or conduct ethical hacking on systems where you have permission. Document and showcase your endeavors.
5. Online Platforms: Engage in platforms like Hack The Box, TryHackMe, or participate in Capture The Flag (CTF) challenges to hone practical skills.
6. Blogs and Publications: Write about cybersecurity topics to demonstrate your knowledge and passion for the field.
7. Additional Training: Use platforms like Cybrary, Udemy, and Coursera to take courses in cybersecurity and further develop your skills.
8. Soft Skills: Highlight your analytical, problem-solving abilities, and other vital soft skills that are in demand in cybersecurity roles.
9. Transferrable Skills: Emphasize skills from previous roles or experiences that can be applied to a cybersecurity position.
10. Stay Updated: Regularly update your knowledge on the latest trends, news, and threats in the cybersecurity domain.
11. Further Education: Depending on your aspirations, consider pursuing degrees in cybersecurity or related disciplines.
12. Seek Mentorship: Connect with industry professionals who can provide guidance, insights, and potential introductions.
13. Volunteer Opportunities:

• Contribute to local non-profits, schools, or community centers by offering cybersecurity services or training.
• Use the experience to develop practical skills and expand your professional network.
• Highlight your dedication to the industry and community on your resume.

Starting Your Own Business:

• Demonstrate your entrepreneurial spirit, initiative, and proactive approach.
• Gain hands-on experience by tackling real-world cybersecurity challenges for clients.
• Develop and hone both technical and business skills, such as client relations and project management.
• Establish credibility through success stories, case studies, or client testimonials.

With a combination of these strategies, you can build a robust resume and gain valuable experience, positioning yourself effectively for a career in cybersecurity, even if you're starting without direct experience in the field.

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

In this episode, I had the pleasure of sitting down with Dr. Lillian Hartfield to discuss the transformative approach to authentication: Passkeys. We delved deep into what passkeys are, how they differ from traditional passwords, and the reasons behind their rising popularity.

Key Discussion Points:

1. Introduction to Passkeys
2. Dr. Hartfield provided a comprehensive overview of passkeys and their advantages over traditional passwords.
3. The Problem with Current Password Systems
4. We discussed the challenges users face with complex passwords and the security risks associated with password reuse.
5. Enhanced Security with Passkeys
6. Dr. Hartfield shed light on how passkeys leverage public-key cryptography to offer a more secure authentication method.
7. The Process of Creating and Using Passkeys
8. We walked through the user-friendly process of setting up and using passkeys for online authentication.
9. Device and Platform Support for Passkeys
10. Dr. Hartfield highlighted the widespread adoption of passkeys across various devices and platforms.
11. Password Managers and Passkeys
12. We touched upon the integration of passkeys in password managers, with a special mention of 1Password.
13. The Future of Passkeys
14. Dr. Hartfield shared her insights on the potential of passkeys to replace traditional passwords in the near future.

Episode Highlights:

• "Passkeys offer a more secure and user-friendly alternative to passwords." - Dr. Lillian Hartfield
• "Password managers like 1Password are evolving to support passkeys, ensuring users have a centralized, secure location for authentication." - Dr. Lillian Hartfield

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• What are passkeys? Everything you need to know about the death of passwords

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

In this extended episode, host Marc David and cybersecurity expert Savvy Sharma delve deep into the recent cyberattack on MGM Resorts International. They discuss the tactics used by the attackers, the vulnerabilities exploited, and the cascading impact of the breach on MGM's operations.

Key Discussion Points:

Introduction to the MGM Resorts Attack

• Overview of the attack and its significance in the cybersecurity landscape.

The Attackers and Their Tactics

• The role of Scattered Spider and their use of social engineering.
• The exploitation of password reuse and the significance of multi-factor authentication.

The Impact and Aftermath

• The deployment of BlackCat/ALPHV ransomware and its consequences.
• The financial and operational repercussions for MGM Resorts.

Lessons Learned and Mitigation Strategies

• The importance of privileged access management (PAM) solutions.
• Strategies for improving multi-factor authentication (MFA) control.
• The significance of protecting Tier 0 assets and adopting best Identity Provider (IdP) practices.

CyberArk Labs' Takeaways

• The commonality of attacking IAM platforms.
• The role of BlackCat/ALPHV in the attack.
• The importance of monitoring trust changes and staying updated on evolving cyber threats.

Episode Highlights:

• "A series of mistakes ultimately led to one of the most visible and brand-damaging attacks in years." - Savvy Sharma
• "It’s crucial for organizations to continuously improve their security measures and follow best practices to protect themselves in today’s digital landscape." - Savvy Sharma

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• The MGM Resorts Attack: Initial Analysis

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

• Tightening up default privacy settings to restrict who can see profile info
• Using strong unique passwords and enabling two-factor authentication
• Avoiding scams involving money transfers, malware links or fake prizes
• Not linking accounts across platforms or via third party apps
• Vetting friend requests and connections to avoid impersonation risks
• Monitoring children’s accounts and guiding them on security practices
• Having ongoing conversations about oversharing and permanent content
• Applying thoughtful precautions when interacting with strangers digitally

For more bite-sized cybersecurity tips, visit bytesizedsecurity.show or subscribe to the podcast. See you next time!

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

• Using VPNs and avoiding sensitive logins on public WiFi to prevent eavesdropping
• Enabling device tracking in case items are lost or stolen during transit
• Strengthening account login protections with multi-factor authentication
• Setting travel notices on financial accounts to prevent fraudulent transactions
• Avoiding phishing attempts by strangers when distracted in public spaces
• Updating devices and backing up data in case of damage or theft
• Carrying temporary “burner” phones devoid of personal data
• Using mobile device management for securely configured company phones
• Remaining vigilant about security while recognizing travel poses added risks

For more bite-sized cybersecurity tips, visit bytesizedsecurity.show or subscribe to the podcast. See you next time!

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• EFF Border Search Pocket Guide | Electronic Frontier Foundation
• Cyber-Safe Travel
• 5 Cyber Safety Tips for Travelers and Digital Nomads
• Cybersecurity Tips for International Travelers | Federal Communications Commission
• Cybersecurity While Traveling Tip Card
• 8 cybersecurity tips to keep you safe when travelling
• How To Keep Your Data Secure While Traveling | 1Password

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

1. The Flaws: The first vulnerability is associated with ImageIO, identified as CVE-2023-41064. This flaw could let attackers execute malicious code through a specially crafted image. The second vulnerability is linked to Apple's Wallet, labeled as CVE-2023-41061. This could allow attackers to execute code via a malicious attachment. Apple has confirmed that both these issues have been actively exploited.
2. Real-Life Implications: These vulnerabilities aren't just theoretical. They've been used in real-life attacks to deploy spyware without any user interaction. Notably, the infamous Pegasus spyware, which grants attackers full access to iPhones, has been linked to these flaws. Citizen Lab, a security research group, discovered an exploit named "BLASTPASS" that compromised iPhones running iOS 16.6 without any user interaction.
3. Why Update Now: Given the severity of these vulnerabilities, it's crucial to update to iOS 16.6.1 immediately. Even if you believe you're not a direct target, the more these flaws are known, the higher the risk of them being used maliciously. Independent security researcher, Sean Wright, emphasizes the importance of updating promptly. For those concerned about potential compromises, tools like iVerify can be used to check device security. Additionally, Apple's Lockdown Mode can be activated for those at higher risk, though it does limit device functionality.
4. Broader Impacts: It's not just iPhones. The Wallet vulnerability is also present in Apple Watch, and the ImageIO issue has been addressed in a new Mac update. Ensure all your Apple devices are updated for maximum security.
5. How to Update: Even if you've set your iPhone for automatic updates, it's recommended to manually check and update to ensure you have the latest protection. Navigate to iPhone Settings > General > Software Update and install iOS 16.6.1.

Listeners, in the ever-evolving world of technology, staying updated is not just about getting the latest features; it's about ensuring your personal security. Always prioritize updates, especially those addressing security concerns.

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• iOS 16.6.1—Update Now Warning Issued To All iPhone Users

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

Key Highlights:

• Introduction: Recap of Episode 1, emphasizing the importance of using a password manager in today's digital landscape.
• Guest Introduction: Dr. Emily Thompson, a cybersecurity expert with over a decade of experience, adjunct professor at MIT, and a frequent speaker at international conferences.
• Master Password Tips:
• Importance of a strong master password or passphrase.
• Tips sourced from NIST's Digital Identity Guidelines and the SP 800 63 series.
• Recommendations on password length, complexity, avoiding personal information, and more.

Top 10 Password Managers:

1. LastPass: Popular choice with user-friendly interface, cross-platform support, and unique “Security Challenge” feature.
2. Dashlane: Offers VPN integration, dark web monitoring, and an identity dashboard.
3. 1Password: Ideal for families, with features like travel mode and watchtower.
4. Keeper: Known for biometric login and a self-destruct feature.
5. Bitwarden: Open-source option with data import capabilities.
6. NordPass: From the makers of NordVPN, offers OCR scanning and password health checks.
7. RoboForm: Not just a password manager, but also a form filler.
8. Enpass: Offers offline access and a one-time purchase model.
9. Sticky Password: Known for USB portability and local Wi-Fi syncing.
10. Password Boss: Features a digital wallet, emergency access, and a security score.

Notable Mention:

• Proton Pass: From the Proton team, offers end-to-end encryption, hide-my-email aliases, and acts as an identity manager.

Closing Remarks:

A reminder of the importance of digital security and the role of password managers in safeguarding online identities. Please review the research links below for more information regarding the LastPass breach.

---

I do hope you enjoyed this episode of the podcast. Here are some helpful resources, including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• LastPass Review 2023: Is It Still Safe to Use? | Cybernews
• Proton Pass: Open Source Password Manager App | Proton - Not sure about LastPass? Check this one out.
• Security Incident March 2023 Update & Actions - LastPass
• Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach – Krebs on Security
• The Best Password Managers for 2023 | PCMag
• The 10 best password managers of 2023: Top choices tested by our experts - CBS News

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

• Placing credit freezes with Equifax, Experian and TransUnion to restrict new account openings
• Lifting freezes temporarily when applying for new credit using your PIN
• Freezing children’s credit reports until they are old enough to manage credit
• Checking your credit reports annually for signs of fraudulent activity
• Reviewing reports to verify personal info and watch for unauthorized accounts
• Disputing fraudulent charges, closing accounts and reporting identity theft
• Putting freezes and monitoring in place proactively even if not breach impacted
• Making credit protections part of your regular financial security regimen

For full episode recaps and cybersecurity tips, visit bytesizedsecurity.show or subscribe to the podcast. See you next time!

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• IdentityTheft.gov - Recovery Steps - Hopefully you won't need this resource but if you do or you know somebody who needs help with Identity Theft
• Annual Credit Report.com - Home Page - The free way to request your credit report, annually, from the big agencies
• Credit Freeze | Freeze My Credit | TransUnion
• Security Freeze | Freeze or Unfreeze Your Credit | Equifax
• How to Freeze Your Credit For Free - Experian
• Free credit freezes are here | Consumer Financial Protection Bureau
• What To Know About Credit Freezes and Fraud Alerts | Consumer Advice
• How To Freeze Your Credit With Experian, Equifax and TransUnion - This article from Clark Howard provides excellent guidance on how to freeze and unfreeze your credit with the three major credit bureaus to prevent identity theft.

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

• Using strong screen locks like fingerprints or facial recognition to prevent unauthorized access
• Backing up important data like contacts and photos to the cloud or external drives
• Only installing apps from official app stores and limiting unnecessary permissions
• Keeping devices updated and using mobile antivirus software as an added precaution
• Enabling private browsing and VPNs for secure connections on public WiFi
• Preparing for lost devices with remote wipe capabilities and location tracking
• Setting lock screen contact info in case an honest finder returns your phone
• Running advanced tools like VPNs and mobile device management for corporate security

For full episode recaps and more cybersecurity tips, visit bytesizedsecurity.show or subscribe on your favorite podcast app. See you next time!

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• How to Secure Your Mobile Device: 8 Tips
• Mobile Device Security Articles | Norton Blog
• Back up or restore data on your Android device - Android Help
• Update your iPhone or iPad - Apple Support
• How To Protect Your Phone From Hackers | Consumer Advice - Tips from the FTC on how to protect your mobile phone.
• Mobile Security Tip Card and Recommendations | CISA

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

• Creating strong, unique passwords - Using passphrases, password managers, proper length and complexity
• Enabling multi-factor authentication - Using authenticator apps, security keys, SMS codes, and other factors
• Securing MFA backup codes - Storing offline, not on your computer
• Using advanced authentication options - Like biometrics and video selfie verification when available
• Monitoring account activity - Setting up alerts for suspicious logins, transactions, and changes
• Revoking unnecessary third-party account access
• Turning on enhanced security settings - Like fraud monitoring and access restrictions
• Responding to account breaches - Changing passwords, contacting companies, freezing credit
• Maintaining good account hygiene - Signing out, updating credentials periodically, deleting unused accounts

For full episode recaps, subscribe to Byte Sized Security wherever you get your podcasts or visit bytesizedsecurity.show. See you next time!

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• More than a Password - Multifactor authentication (MFA) can make you much more secure. Taking the extra step beyond just a password can protect your business, online purchases, bank accounts, and even your identity from potential hackers.
• People Are Still Terrible at Creating Passwords
• How To Freeze Your Credit With Experian, Equifax and TransUnion - This article from Clark Howard provides excellent guidance on how to freeze and unfreeze your credit with the three major credit bureaus to prevent identity theft.
• Five things to do to protect yourself online | FTC Consumer Advice
• Threat Modeling: The First Step on Your Privacy Journey - Privacy Guides - An excellent resource to figure out how to balance security, privacy and usability.

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

• Protecting kids from online predators - Teaching them not to share personal info, limiting strangers, and monitoring communications
• Discussing inappropriate content - Using parental controls, having age-appropriate conversations about explicit material
• Addressing cyberbullying - Getting evidence, escalating to schools/authorities, providing emotional support
• Curbing oversharing - Advising kids on smart posting habits and privacy settings
• Fostering good digital citizenship - Setting family tech agreements and modeling positive behaviors
• Implementing parental controls - Using built-in device restrictions and monitoring apps judiciously
• Having ongoing conversations - Getting kids to open up about their online lives and habits
• Encouraging kids to come forward - So adults can help navigate issues like predators, bullying, and oversharing
• Balancing protection with privacy - Overseeing activity without invading their space

For full episode recaps, subscribe to Byte Sized Security wherever you get your podcasts or visit bytesizedsecurity.show. See you next time!

---

I do hope you enjoyed this episode of the podcast. Here's some helpful resources including any sites that were mentioned in this episode.

--

Sites Mentioned in this Episode

• Parent Guides from ConnectSafely - A growing collection of clearly written guidebooks that demystify apps, services and platforms popular with kids and teens
• Internet safety advice and information - Receive practical advice on the steps you can take as a parent to keep kids safe on social media, in online games and around the web
• Protecting Kids Online - How to talk to your kids about being online, and how to help them make good decisions and stay safe
• FBI Publications - A Parent's Guide to Internet Safety
• NetSmartz - Provides age-appropriate videos and activities to help teach children be safer online with the goal of helping children to become more aware of potential online risks
• Parenting, Media, and Everything in Between - Tips to promote healthy communication and development with kids

--

Find subscriber links on my site, add to your podcast player, or listen on the web players on my site:

Listen to Byte Sized Security

--

Support this Podcast with a Tip:

Support Byte Sized Security

• What phishing is and the major security risks it poses
• Common phishing techniques like fake login alerts and malicious links
• Red flags to watch out for like urgent requests for info and odd URLs
• Steps to take if you suspect a phishing attempt
• Safety measures like strong passwords, multi-factor authentication, and training
• How companies and institutions can help defend against phishing
• Why you should slow down and verify legitimacy before acting
• Key advice for individuals to thwart phishing attempts

For full episode recaps, subscribe to Byte Sized Security wherever you get your podcasts or visit our website bytesizedsecurity.show. See you next time!

• What 2FA is and how it requires both a password and a secondary code or factor to log in
• Real-world examples of using an authenticator app or text code as the second factor
• Benefits of 2FA like blocking hackers even if passwords are stolen
• Tips for enabling 2FA on email, banking, social media, and sensitive accounts
• Setting up backup codes and recovery options to avoid lockout
• Emerging authentication methods like biometrics and security keys
• Why adding 2FA is one of the top steps you can take to lock down accounts

To learn more about two-factor authentication and other practical online security techniques, visit The Byte-Sized Security Podcast website at bytesizedsecurity.show. See you next week when we cover how to spot and avoid phishing attacks. Thanks for listening!

2FA Directory:

https://2fa.directory/us/

• What a password manager is and how it works to store passwords and log into accounts
• Key advantages of a password manager like generating strong unique passwords, auto-fill, and secure encrypted storage
• Potential downsides like someone getting the master password and service outages
• Tips for choosing a password manager, like end-to-end encryption and ease of use
• Specific password manager recommendations like 1Password, LastPass, and Bitwarden
• Why using a password manager is critical for protecting your online accounts and data in today's world of prevalent data breaches

To learn more about improving your password security, visit the Byte-Sized Security Podcast website at bytesizedsecurity.show. Tune in next week when we dive into two-factor authentication. Thanks for listening!