JavaScript is required to use Bungie.net

Help
6
Bricypoo

Bricypoo

Edited: 8/27/2014 5:26:31 AM
Seventh Column, As you may be aware, identity theft has always been increasing since the early days of the internet, bungie.net is no exception. As [b][url=http://www.bungie.net/en/Groups/Detail?groupId=18405]The Welcoming Committee[/url][/b], we advise you to take precaution when submitting new information online, wherever you visit. So take a few minutes and make sure everything is set up the way you want to. Listed below are 10 tips for locking down your bungie.net account and gaming profiles. [quote]1.) [b]Google your name[/b] AND [b]your email address[/b]. Yes YOUR REAL name. Not your alias, your actual name along with your email address. Try it with "quotes" around it now. Make sure all the information that comes up is stuff you're comfortable with others seeing! 2.) [b]Go to your social media platforms of choice and crank down those privacy settings![/b] Facebook, Twitter, Google+, LinkedIn, etc. Being that these accounts can be used as your Authentication Methods to bungie.net, it's important to make sure they're locked up. 3.) [b]NEVER click on untrusted links![/b] Did you know you can actually hover your mouse over a link and it will display the true URL at the bottom of most major web browsers BEFORE clicking? [url=http://www.bungie.net/]Try it out[/url] - don't click, just hover. Sometimes the URLs can contain identifiable information such as region information, user identifiers, return addresses, and so on. A good example is a link to a photobucket image. For example,[quote]http://i1168.photobucket.com/albums/r498/joshua_himes/906e71f9.jpg[/quote]if you change the i to an s, you get redirected to the web page details for the image:[quote]http://s1168.photobucket.com/user/joshua_himes/media/906e71f9.jpg.html[/quote]From there it's just a matter of following links or manipulating the address bar and you can find a [url=http://s1168.photobucket.com/user/joshua_himes/profile/]person's profile[/url], which can be an even bigger problem for them if they haven't hidden their images. imgur is a little better, but you can still find the [url=https://imgur.com/izIQt8S]details page[/url] even with a [url=https://i.imgur.com/izIQt8S.png]directly-linked image's URL[/url]. 4.) [b]Check out your Xbox Live and PSN Friends list[/b]. Do some spring cleaning. Lock down your security settings and make sure the only people on your lists are people that you trust! 5.) [b]Did you know you can "hide" authentication methods from displaying on your bungie.net profile page?[/b] Do this by going to Settings > Account Settings and unchecking "Display on Public Profile". 6.) [b]Check out your IM services[/b]! Facebook, Skype, MSN, AOL, etc.. The more information that's posted about you on the web is more chances of someone getting information they shouldn't be! 7.) [b]Use two step authentication for your login methods![/b] More websites are adding this feature. [url=http://windows.microsoft.com/en-us/windows/two-step-verification-faq]Microsoft/Hotmail Accounts[/url], [url=https://www.google.com/landing/2step/]Google+[/url], [url=https://www.facebook.com/note.php?note_id=10150172618258920]Facebook[/url], [url=http://support.apple.com/kb/ht5570]Apple ID[/url], [url=http://help.linkedin.com/app/answers/detail/a_id/544/~/turning-two-step-verification-on-and-off]LinkedIn[/url] and [url=https://blog.twitter.com/2013/getting-started-with-login-verification]Twitter[/url] just to name a few. This requires another device to retrieve a PIN from (or through an authenticator app) like a smartphone or tablet. 8.) [b]Update your email preferences of your email accounts![/b] Add security questions and secondary/recovery email addresses. Make sure those accounts are ones ONLY YOU know for your gaming profiles! 9.) [b]Change your password![/b] One of the easiest steps. Has it been a year since your last change? Mix it up. Change it every month. Don't use the same password across multiple services! 10.) [b]Be Brave, it's a dangerous world out there.[/b] Be very particular on those you add to your friends list and give information to. If it's too good to be true, it probably is. We know this, but it should never be taken lightly. It can happen to anyone. 11.)[b]You can use [url=http://www.google.com/alerts]Google Alerts[/url][/b] to let you know if anything has been indexed containing a given query. I highly suggest using it to have Google automatically let you know if your email address(es) have been published anywhere. 12.)[b] I also highly suggest using a password manager![/b] Such as 1Password, KeePass, or LastPass. I'm not sure about the others, but LastPass performs encryption and decryption locally through a browser extension before sending off the ciphertext to LastPass to be stored. That's a very important detail to know about if you're considering using one. 13.)[b]Lookup any old aliases you use[/b] and see what you can find. If you come across an old account you might have used which is identifiable/related to you/your alias(es) now, try to either delete the account, or edit out as much information as possible and generate a new email/password combination (store it somewhere safe, preferably using a password manager). If you intend to delete an account, firstly edit out any information, because it's unlikely the actual record in the database for the account is deleted, just flagged as "inactive" or something similar. 14.)[b]Do use a sandboxing program[/b] (or even a VM) if you're going to do anything risky. 15.) [b]Do validate anything you download[/b]. Some sites provide checksums (MD5, SHA1, SHA256, SHA512) which you can match up with a checksum you generate for whatever it is you've downloaded. 16.)[b]Do try to stick to federated authentication methods[/b]. These are services like Google Account, Microsoft Account, Facebook, etc... which you use to sign in to third-party sites (like bungie.net). In my opinion, the major benefit they provide is to allow you to sign in to a site [i]without[/i] the site knowing your email address and password. Some sites might request additional details, but the service provider informs you of them. It's also one less email address/password combination you don't have to remember. [b]Craving MORE in-depth security tips? Check out Duardo's [/b][b][url=http://www.bungie.net/en/Forum/Post?id=3392981]Protect Yourself on The Internet Safety[/url][/b] [b]thread[/b].[/quote] So there you have it. We hope this helps you in protecting your Bungie.net account as well as your gaming profiles! If you need help or have any more tips to protect our identities, share them! [quote][b][url=http://www.bungie.net/en/Clan/Post/18405/65303361/0/0]Bungie.net Information Desk[/url][/b] See The above thread for more information and helpful threads.[/quote]

Edit Preview Cancel

View Entire Topic
preload icon
preload icon
preload icon
You are not allowed to view this content.