DEV Community: DMD

Title: Protect Your Data! Reading the Fine Print: How to Not Get Tricked Online

DMD — Tue, 16 Sep 2025 19:23:40 +0000

We all just click "I Agree" without reading those massive Terms of Service documents. I get it, they’re boring! But they hide important clues about what a company can do with your data.

Here’s what I do to protect myself:

1.Skim for the Big Three: I don't read every word, but I do a quick search (Ctrl+F) for three key terms: "data," "privacy," and "termination." This tells me what they collect, what they do with it, and how I can get my data back if I leave.

2· Check the Privacy Settings Immediately: The second I sign up, I go into the account's privacy and security settings. I turn off anything that shares my data for advertising or makes my profile public. I assume the default settings are designed to benefit the company, not me.

3· Use a Unique Password: This is the biggest one. I never use the same password for an online service that I use for my email. If that service gets hacked (in a data breach), I don't want the hackers to have the key to my entire digital life.

4· Enable 2FA (Two-Factor Authentication): If a site offers 2FA, I turn it on. It’s like needing your password (something you know) and a code from your phone (something you have) to get in. Even if someone steals my password, they can't get in without my phone.

In short, my strategy is: be skeptical, lock down the settings immediately, and use unique, strong passwords with 2FA everywhere.

What Do Hackers Want? It's Still Your Money.

DMD — Tue, 16 Sep 2025 19:22:07 +0000

We all know the answer: Hackers want your money. It’s the core goal behind most cyberattacks. But how does that actually play out in real life? It’s often less like a high tech heist movie and more like a digital pickpocket.

You’ve probably experienced a version of this yourself. Think about the last time you got a phishing email that felt a little too real.

Maybe it was a text message that seemed to be from your bank, urgently asking you to confirm your account details because of "suspicious activity." The link looked right, the logo was there everything felt legitimate. But something felt off. That was a cybercriminal trying to access your financial information. Their goal? To log into your actual bank account and drain it, or sell your login details to someone who will.

This is a classic example called phishing. The hacker’s goal is pure panic. They want you to be so worried about your money that you click without thinking. That link doesn’t go to your bank; it goes to a fake website designed to look like the real thing. The moment you type in your username, password, or God forbid, your social security number, they’ve got it. Now they have the keys to your actual bank account.

These aren’t targeted attacks on you, specifically. They’re a numbers game. Criminals cast a wide net, hoping even a few people will take the bait. And that’s all they need to turn your financial information into their profit.

First Steps: Securing Your New Company's Laptop.

DMD — Tue, 09 Sep 2025 08:00:04 +0000

Step 1: The Physical First Check Before I even power it on,I check the device itself. I look for any signs of tampering on the box or the laptop seals. I also note the serial number and register it with our IT department if that’s our policy. A secure laptop starts with knowing it’s the genuine article.

Step 2: For Initial Setup and Immediate Updates. I connect to a trusted,private network (not a public Wi-Fi) and go through the initial setup. The very first thing I do after getting to the desktop is run Windows Update (or Software Update for macOS). I check for updates repeatedly until it tells me there are none left. These updates often contain critical security patches for brand-new vulnerabilities, so this is non-negotiable.

Step 3: Enable the Firewall and Encryption.
I immediately verify that the built-in firewall is turned on.On Windows, this is Windows Defender Firewall; on macOS, it’s the firewall in Security & Privacy settings. Next, I enable full-disk encryption. For Windows, this means turning on BitLocker. This ensures that if my laptop is ever lost or stolen, no one can access my data by pulling out the hard drive.

Step 4: Install Centralized Endpoint Protection Since I’m at Apollo,we almost certainly have a preferred endpoint protection software that’s more robust than the built-in Windows Defender (which is good, but I want our corporate standard). I will install our company’s chosen antivirus/anti-malware solution immediately. I make sure it’s updated and run a full system scan to establish a clean baseline.

Step 5: Configure User Account Control & Admin Rights. I will not use my daily account as an administrator.I’ll create a standard user account for my everyday work such as Checking email, browsing, writing documents. I only use the administrator account for installing software or changing system settings. This simple step prevents most malware from being able to install itself or change critical system files.

Step 6: Set Up a Password Manager and Browser. I’ll install a trusted password manager(like Bitwarden, 1Password, or our company’s chosen tool). I will not let my browser save my passwords. This allows me to create strong, unique passwords for every service without having to remember them all. I’ll also configure our preferred secure web browser (like Brave or hardened Firefox) with privacy-focused extensions if allowed by IT.

Step 7: Review Privacy Settings and Bloatware I go deep into the system’s privacy settings and turn off everything I don’t need such as location tracking,tailored ads, and diagnostic data sharing. I also carefully uninstall any unnecessary pre-installed software that could pose a security risk or just slow the machine down.

Step 8: Connect to Company Systems Finally,I enroll the device into our company’s mobile device management (MDM) system if it isn’t already. This allows our IT team to push security policies, manage encryption, and remotely wipe the laptop if it’s ever lost. Then, I install any other mandated Apollo software, like our VPN client, for secure remote access.

Once all this is done, My new laptop is now a secure, trusted gateway for my work at Apollo.