A Free Educational Resource Created by Carnegie Mellon University to Empower You to Secure Your Part of Cyberspace

Data Theft

The unauthorized taking or interception of computer-based information

Data theft is the act of stealing computer-based information from an unknowing victim with the intent of compromising privacy or obtaining confidential information

Protective Measures

Practices

  • Log out when you leave a computer, especially if you are done using a public computer: You need to completely log out of your email account to prevent anybody else from using your email account after you leave the computer.
  • Do not leave your mobile device unattended: Small mobile devices are easy to forget in public places, and they can be easily stolen by attackers who may use the information for malicious purposes. If the information stored in your cell phone or PDA is not encrypted or password-protected, anybody could easily read your email messages.
  • Enable password protection: Every cell phone and PDA provides some means of password protection so only you can see the information stored on it. Always use this feature to protect your information.
  • Disable wireless connection interfaces when you are not using them: Attackers may use flaws in wireless interfaces such as Bluetooth to steal information from your mobile device. To protect yourself, disable these interfaces when you are not using them.

Settings

  • Disable the auto-fill option: Some Web browsers, like Internet Explorer, have a built-in feature that allows you to store usernames and passwords when filling in forms on Web pages. You should not enable this option as it may allow other users to enter your account without even having to guess your password. This is especially important to remember when you are using a computer away from your home or office. If your web browser asks you to save usernames or passwords, click the No button.

    autofill

  • Delete the browser cache and history: After you access your email through a Web browser, you should delete the browser cache and history to keep anyone from knowing what sites you have visited. To do this in Internet Explorer:

    1. Select Tools > Internet Options from the menu.
    2. Click on the General tab.
    3. Click the Delete Files... and Clear History buttons.

    Delete Cache

Connect Safely from Different Places

Mobile

Advances in wireless technologies have made mobile devices more complex. Because they can now store great amounts of information in their memory, you should take protective measures to limit the risk of exposing this information.

Depending on your mobile device provider, your call logs, text messages, email and Internet activity may not be as private as you think. Someone could break into your account and steal that information or make it available to others. If you suspect that your data has been stolen, contact your mobile device provider for assistance.

On the road

When you use a public computer to access the Internet you leave behind a record of the Web sites you have visited. This information is stored in the local memory of the computer and stays there, where an attacker can easily retrieve it. Also, some operating systems encourage you to allow the Web browser to save usernames and passwords to avoid the hassle of entering them repeatedly.

Related case studies

Links

References

Filing a complaint

My home page