Archive for April, 2012

Protect yourselves, stay vigilant

Posted by on Wednesday, 25 April, 2012

On Monday, I ran across a story on a local news station regarding a security breach of some DNS servers, how the FBI put a temporary safety net in place, and now how the servers will be shut down in July. This prompted a larger scale informational campaign to help computer users determine if their own systems were ‘infected’ and are using the DNS servers which are slated to go offline (when that happens, if your system isn’t using good DNS servers, you’re internet connection will be gone).

I posted this article to Facebook with the intent of spreading the word and helping people check their own systems to be sure we are all using good DNS servers. But as I went through my personal validation process to be sure that the information I am passing on is genuine, I realized there’s a lot stuff I just do and never really explain how/why. So in the spirit of knowledge sharing, here’s some tips to help you stay safe on the internet, avoid malware, and do more to protect your own privacy:

First and foremost: Lock down your privacy settings anywhere you may have an account so you can identify with whom you are sharing information. Take some time whenever you create new accounts to research and set privacy controls before doing anything else on a website.

Here’s a great write-up which explains some of the Facebook behaviours which may affect privacy, and what you can do to control it to some extent: http://www.hanselman.com/blog/FacebooksPrivacySettingsAreTooComplexForANYONEToUseChangeTheseSettingsToday.aspx

Think you’re safe if you only touch Facebook settings? Think again. Google tracks a plethora of information too. You can stop Google from tracking your history (which is tied to your Google account) and opt out of the Google ads with these three links:

  • https://www.google.com/history
    “Pause” will stop the tracking of your Google web history (searches and which links you followed from the results), while “Remove” will clear out the selected history.
  • https://www.google.com/settings/ads/
    After opting out, you’ll still see ads, but Google won’t use your personal information to target those ads specifically to you. Be sure to opt out for both Search/Gmail and ads on the web.

 

Now that I’ve touched on the two ‘biggies’, let’s focus in a bit more generally with some catch-all solutions:

I’ve personally had success with all three of these, though your mileage may vary depending on your preferences and system setup.

 

But you know what? Tools and settings aren’t enough. Sometimes it all comes down to what I called “wetware” when I was working for a content filtering company: your brain. Tools and options just don’t protect us from ourselves, which is why we need to be able to think critically and be ever vigilant (bordering on paranoid) as we surf the web.

Did a Facebook friend just read a really provocative looking article? Are you sure they did? Is that the kind of article you think your friend would spend time reading and “Like” on Facebook? Do yourself a favour and don’t click the link, it’s likely a phishing attempt to get you to allow an application access to your Facebook profile and post on your behalf; your friend is likely the latest in a long line of victims.

Before clicking links, stop and hover over it. If it goes to a known server  and is relatively ‘clean’ of characters like ? or & and doesn’t end in an active file extension (like .pl, .js.exe, etcetera) it is most likely a good link. But you need to be careful of embedded links which point somewhere other than the link text, as well as shortened links which don’t expand to show the full URL.

Which gets me closer to  the point: don’t trust links. Unless you absolutely trust the source posting the link, and the server for the link itself, don’t click it, just run a quick search instead and find the info outside of Facebook (here’s a GREAT Oatmeal cartoon which explains this without raising the spectre of malware as the reason for searching).

 

Let’s take the above article about the FBI and DNS servers as an example:

I originally saw the story posted by KPTV News on Facebook. Since I trust this account, and the story/link was consistent with other news they post, I clicked the link into the story. From there, however, I stopped trusting. Specifically, the story describes an FBI business partner in this case, and links to their site to ‘check’ your system to see if you are using the wrong DNS servers.

At this point small alarm bells start ringing in my head, but I head over to http://www.dcwg.org/ to check it out. Alarm bells are ringing even more since this site asks you to click a button to run a check, something you should never do unless you trust the source completely. Plus, I am a bit more dubious as the site runs WordPress as the engine. I should note here that while I adore WordPress as a platform, the fact that dcwg.org uses it made me immediate skeptical about the authenticity since anyone can build a WordPress site like that. Heck, I run 5 of my own WP installations, including this one; I KNOW anyone can do it!That all said, I’ll give credit to dcwg.org for acknowledging the need for trust and helping people validate the authenticity as well by pointing to FBI.gov hosted materials.

Rather than using the automated link in the original article (which was down due to heavy traffic anyway, but also because you should never trust sites that ‘fix’ your computer without doing your research), I used the following PDF from FBI.gov which outlines exactly how to check your system for this issue: http://www.fbi.gov/news/stories/2011/november/malware_110911/DNS-changer-malware.pdf

Since I trust the fbi.gov servers and pdf files to not auto-run malware on my system, I knew I’d be able to validate the issue by virtue of understanding the solution through text. I can happily say that I was indeed able to validate the authenticity of the problem, solution, and third-party business partner as trustworthy, but only after doing a little research before hand. (Now, you should all review the PDF file as well to understand how to correct your system, or at the very least, what the dcwg.org “fix” button will do to your system to correct the problem.)

While the above turned out to be a perfectly safe example, it really is the perfect scenario to explain how and why you need to check before you click, as similar tactics are exactly what caused people to click buttons and modify their DNS server settings in the first place.

Want to take privacy and protection to an even greater level? Check out the fine folks over at https://priv.ly/

This is a new tool being designed and developed by Oregon State scientists working on changing the paradigm of content sharing. Priv.ly is intended to take control away from the content hosts like Facebook and Twitter and put that control right back to the user, where it belongs. This works to remove companies’ rights to control and sell your data, putting your data privacy in your hands. If you are concerned with privacy you need to check these people out.

Stay vigilant, my friends. Protect yourself. No one else will.

Command & Control

Posted by on Thursday, 19 April, 2012

You’ve likely heard of the show if you’re not already a devoted fan of it or its spin-off this season: Top Shot and Top Guns. Both shows are hosted by the three-time-Survivor-contestant and television actor Colby Donaldson. Both Jean and I have become fans of both the shows and Colby as a personality, to the point where we began following Colby’s twitter stream (@Colby_Donaldson) to watch his amusing commentary and chatter during the shows.

Over the past few weeks I’ve watched twitter on Tuesday and Wednesday nights to see Colby consistently and actively engage with a very enthusiastic audience. I’ve been impressed time and time again as he tweets replies to both silly and very interesting questions posed through Twitter with tact, humour, and a balance of mock-arrogance and humbleness. He really does “get” the social spaces and how to interact with his audience (if I didn’t know better, I’d think he was following IBM’s Social Computing Guidelines)…

Which is why I was surprised to see this tweet from Colby during Tuesday’s Top Shot episode:

 

Ok, perhaps not surprised, but a bit dismayed that History Channel executives seem to have a “Command & Control” attitude when it comes to social business. Not to say this was out of the blue or unexpected as “last week” refers to when Colby was tweeting during April 10th’s episode answering some questions about rumoured cancellations of Top Shot and Top Guns. In a few of his responses he noted that higher ratings were needed to pickup for season 5 which, as you’d expect, got the fan base on Twitter a bit active and tweeting to @HistoryChannel calling for renewal of the shows.

From my perspective (as someone who works in a social business role), it seems to me that the “Top Brass” has taken a reactive command and control position rather than embracing the openness and transparency which social interactions thrive on, and which have helped to drive even further interest in two of the shows running on their channel; shows which are heavily promoted on both History and H2 in advertisement spots appearing around once an hour (as an observational guesstimate, I don’t have the specific numbers).

So what happened this week after Colby ‘caught heat’ from the History Channel ‘TopBrass”? One single tweet from Colby noting his absence, and then radio silence. From a social business perspective what I saw was a lost opportunity to continue engaging the audience and building support; lost opportunities to listen to the audience and engage in conversations to improve on the channel’s investments. What I also saw was a turn of the audience from engaging in conversations relevant to the show’s content to conversations solely around the show’s potential cancellation (or renewal) and the few questions/conversation about the content there were go wholly unanswered.

The take away from all this is a real world example of how and why “command & control” mindsets won’t work in today’s social business economies. Conversations are happening regardless of your desires and policies; if you don’t engage, you’re missing out on opportunities to transform those conversations and people into real positive interactions and potentially loyal clients. Social business isn’t about pushing your ‘approved’ messaging to the masses, as it seems History Channel may believe, but rather the way to flourish is to embrace social business concepts and tools to allow for open, transparent conversations and collaboration surrounding your business. Just as critical, however, is allowing the flexibility in your organization to transform and grow, not only to identify the needs of your clients, but to proactively meet those needs and become the leader in your industry because of your ability to engage and work with your client base. That’s what social business is all about.

Serendipitously, my colleague and partner-in-crime, Kelly Smith, recently posted to her blog on “Knowledge is free- bring your own container“, in which she says:

… You can’t put this genie back in the bottle.  Knowledge is no longer in the hands of a privileged few to be doled out to the worthy. Knowledge is being openly shared and recorded, so that others may benefit…

She’s right, of course: You can’t put this genie back in the bottle, the social web has made certain of that fact. Gone are the days of successful “command & control” policies aimed to manage brand perception and hide or obfuscate poor business practices. Knowledge can’t be controlled or contained, and we are seeing evidence of this more and more everyday. The future ahead of us all (and specific to business success) is about sharing knowledge in open and transparent fashions to ensure shared successes; *being* the best at what you do, showing your clients you are agile and paying attention by engaging in these conversations rather than trying to control them and manage perception, this is the way to truly be a social business and find successes ahead…. Something I think the History Channel’s executives may not yet understand.

 

*** Updated 4-25-2012 ***

I am happy to report that last night’s Top Shot was again accompanied by Tweets from Colby. It seems some accord has been reached between he and the top brass, as his tweets had the same level of authenticity, information, and humour as they had in the past. I can’t find any specifics of what may have happened in the past week, but am pleased to see that the command & control mentality has been backed off. Good news, as it definitely shows that the History Channel is at least paying attention to its audience. Well done there.

Whiskies all around me!

Posted by on Thursday, 12 April, 2012

I’ve been busy lately, with whiskies on my mind!

First up are two posts on the 3DC site covering my results from round one of aging distillate on my own, followed closely by my notes from the in-progress round two tastes:

Then, of course, in between are my notes on the latest PDXWhisky tasting I was at last weekend:

And coming up this weekend is Stuart Ramsay’s Whisky Academy class on American whiskies being held at the Bull Run distillery in Portland… looking forward to learning more about American whiskies and what is an admittedly very new undertaking for me.

 

Then… as if I haven’t spent enough time around whiskies this month….

The weekend after is the annual Oregon Distiller’s Guild TOAST event where I’ll be enjoying some local drams, as well as craft distillers from around the nation. Always a fun event to discover new and exciting stuff going on… after all, it’s where I met Ted of Big Bottom Whiskey last year who just last month is able to boast a gold medal from the San Francisco World Spirits Competition! Great stuff to be found at TOAST indeed!

Rest assured, all of this activity means more whiskies related blog posts for the 3DC site, and likely more links over there from this blog 😉

Cheers!