PrivacyControl software product box

The online privacy tips compendium

Welcome to Anonymity.com's beginner to intermediary guide to protecting your privacy. This privacy guide is really an ever growing compendium of practical privacy tips that we find to be of benefit to the average internet user. And maybe a few for the pros, too.

Do you know of a privacy tip that we haven't written about? Please send it in and we'll get right to it.

Stay away from most widely used web browsers

Wean yourself off Internet Explorer and instead use a web browser that has a low market share but that is still solid. Almost all viruses and trojans that enter your computer through web browser vulnerabilities are specifically targeted and written for the most common browsers — that is to say Internet Explorer and FireFox. Writing malware to get through smaller web browsers such as Opera with its tiny 1% market share would be a very inefficient use of time that few bother to do.

Opera with classic skin and tabs

A typical view of Opera — a 1% market share web browser that has nevertheless pioneered many features we take for granted today. We recommend this browser if you want to make the switch away from Internet Explorer or FireFox.

Scrub files for hidden footprint data before sharing them

Unbeknowst to the average computer user is the fact that almost all files have a series of hidden tags containing information, often of a privacy-compromising nature. JPG pictures created by your cell phone or digital camera contain EXIF data revealing such things as the model of the camera used and in many instances even the registration name and address of its owner (YOU). Other files may contain your OS or software license data. Thought you shared those pictures and Word documents completely anonymously? You probably didn't.

However, it is possible to use software to erase these footprint data off of any file containing them. There is a lot of file format specific software out there which allows you to view, edit and/or delete hidden tags, but you will probably want an over-all solution such as PrivacyControl. PrivacyControl can detect and strip away privacy-breaching data from all common (and some uncommon) filetypes, and is very easy to use even for a novice computer user.

Keep browser plugins and file handlers updated

There have been a surge of severe security holes discovered lately within common file handling software such as Flash and Acrobat Reader. Before they got patched, people viewing infected PDF files or flash movies (such as on a web page) were infected with keyloggers and viruses. Now it is just a question of time before these and similar programs again are vulnerable, so it is very important to keep them updated. Acrobat Reader and Flash in particular both have auto-updating features now which you should turn on if they aren't already.

Understand file and web caching, and routinely erase it

Web browser caches, file histories, and other history-type "features" are a first priority of certain kinds of spyware and trojans, not to mention your curious colleague or friend who is slightly more capable with a computer than you. These histories also mean gold to identity hackers; they can find out when you have visited the bank online and when you will be checking back after that Ebay auction expires. A hacker sniffing through your visited files will be very interested in your search for cheap flights north for the weekend (they can use your credit card when you are airborne), hotel reservations (they'll know when you'll be out of town), and movie tickets (just enough time to steal your cellphone and lift the passwords and contact data). You have good reason to guard your online traffic and computer usage habits. Erasing your web history means there is no story to tell in the files left in the web browser cache. Software products to safeguard history and cache-related privacy like Evidence Smart can do a thorough job of cleaning every type of cache and history feature, and can even automate this necessary task for you.

Use removable media and account levels to your advantage

Anything that can be saved to a drive can be stolen. But if the user assigns the read rights to only one user name that it can save to a removeable media drive, this prompts an access violation if a scanner or virus tries to identify the material or copy it. USB devices and DVD media can restrict read rights to only one small set of users. Make a guest user account on your computer or laptop when browsing online and use anonymous surfing techniques to stay invisible. If a Starbucks wi-fi session is planned, using the guest account blocks file theft and involuntary "sharing."

Using removable devices allows for standalone work. If you work offline, online predators will have to sniff out other bait. If a hacker detects 500 megabytes of movie files on your drive, they will work hard to get them. Unplugging a portable hard drive kills that temptation. Avoid keeping your work profile for access resident and only use your security key via a removable media device like a flash drive. Keep in mind desktop shortcuts with your company name will also attract curious or malicious hackers.

Removable media takes the premium material with you in case your netbook or laptop gets stolen or damaged. Built-in programming such as with an on-device file protector software solution can make it password secure.

Stay off the Internet at work

There is no proof the people who monitor your computer and network at work can be trusted not to save and abuse your password or private e-mails, because there are certainly people whose job it is to monitor your digital behaviour in the average company nowadays. IT staff are under the gun to show productivity for their time, just like you. Don't give them a target to hit. Your boss knows who the big hitters on surfing the web in your department are. Don't let any hint of personal matters, family problems, sexual habits or financial dealings flow through your company computer or network. Company employees are not entitled to privacy when they are on the clock.

Stay away from FaceBook

Facebook was designed to promote visibiity of one's facial appearance to college students meant to get together but who had no idea what the other people looked like. Now by searching the name of an old friend or high school enemy, you can find out where they work, what their kids' names are, and where they will be vacationing this weekend. That is not a lot of privacy. Friends brag about their new big screen TV and road trips online. What their house looks like and even when they do laundry is vividly communicated.

You know those emails that claim to be from an old friend in an emergency? Friend details are everywhere. FaceBook farms them out like crazy to savvy users. Mining for identity data has made FaceBook a hackers' dream target. Where you grew up, what high school you went to, where you live now. These are demographic privacy details concerning your identity anyone can browse. Coincidentally these are the same details an online credit card application forms. These details are overshared largely on trust on FaceBook profiles. But pictures and people can now be tracked by strangers who access anyone in your Friends or user groups.

Today the quizzes and contact emails on FaceBook promote sharing your entire network to take a random and not very relevant quiz or survey. Consider that a Facebook Friend is notified when a birthday occurs, you are advertising both your married and maiden name, and that credit card applications generally include elementary school and relative's name and phone numbers. If identity thieves can get a Social Security number and a blank check or your debit card imprint, they're off to the races.

Remember how bad peer pressure was in high school? FaceBook employs those dynamics on another level visible to anyone who knows an operator's full name. Think about the last ten conversations or replies to messages you made to someone on FaceBook. Do they know when you are working late? What you do for a living? Where you will be taking yoga classes tomorrow? Start cutting down on the personal media and private details shared on FaceBook. Privacy software hits a wall defending privacy, security, and identity when you hand out details freely on Facebook.

Don't use "Save password" features

Never, ever, save passwords to frequently visited sites, no matter how much your browser insists this will save you time. The saving of passwords is the first assumed Internet privacy habit everyone needs to break. Hackers breaking into the admin account for a public network can access session data for the users. The privacy on unsecured public networks is notoriously poor. Searching user session by activity duration tells the hackers which devices have robust site visiting and processing power. This is typically a Web user with stored passwords hooked up to credit card banking. Even the best security suites can barely keep up with password stealing software.

Privacy intrusions don't just come through the wiring. Long cellphone calls, protracted bathroom visits, or meetups outside the coffee shop almost beg a hacker to teach you a lesson. Never leave a logged in or password protected computer or laptop in a live secure session. Anyone with access to your laptop for 90 seconds can copy your favorites and preferences and have access the moment you shut down. If they change your administrator password you can't even start up your computer anymore. Favorites and last used site lists also inform hackers where you'll likely be logging in again, and their keylogger intrusions will increase.

Keep tabs on running processes and resource usage

You should always keep tabs on what your system is up to at any given time; in fact, it may be your best privacy tip. This can be done by starting the Task Manager on Windows platforms, the keyboard shortcut being CTRL + ALT + DEL.

Learn how many processes you generally have running and what their names are. If your security software starts churning to life and performing unscheduled scans, you may spot the offender before the computer arrests. Get to know the memory and CPU usage of your computer during typical use and you will get to know when unfamiliar processes are running from the directory. A persistent process suddenly appearing out of nowhere is a major warning sign.

Use remailers for emails containing private info, or that are headed to an untrusted recipient

Emails contain a lot of tracking information that you may not think of when you click the send button. Your email software automatically embeds hidden information that identifies which computer and network the email originated from as well as the servers it has passed through to reach its destination. Additionally your email is stored in a simple file that can be intercepted and read by anyone who is properly motivated. One way to eliminate some of the privacy risks associated with emails is therefore to use an anonymous remailer service. This allows you to send your message safely ensured that all the tracking information has been stripped from the email. Some remailer services also allow you to encrypt your message so if it does happen to be intercepted, the contents cannot be read.

Understand Tor and web proxies, and use them appropriately

Tor is a free technology that enables total anonymity of online communications, in exchange for the comforts of speed and ease of use which are lacking. A web proxy is an easy to use web form that basically acts as a middleman between you and a site with which you are interacting, granting you anonymous communications as far as the end (and often the middle) point is concerned. We specifically mention 'web proxies' as the second best option because they are common, free and good enough for most needs. Other types of proxies do not allow the operator to earn a few bucks by injecting some ads, so they are rarer and are far more often a honeypot operation run by identity thieves. A big additional benefit of most web proxies that you can't find with other solutions is that they have options to strip away potentially privacy-reducing technologies and code before the web page you are accessing anonymously is even routed through to you.

Take control of your browser and file caches

Probably one of the most important steps in keeping your private data from falling in the wrong hands is to keep firm control of your cookies and Internet browsing history. Cookies store sensitive information on your computer that can help track your movements across the Internet. Whether you are completing online banking, checking your Facebook account or purchasing golf clubs on eBay, browser cookies are created and stored on your local hard drive. A history of all the websites that you've visited are also stored as well as a cache of files the browser stores in an effort to speed up the loading of particular webpages.

Deleting your history and cookies on a regular basis is a good first step in preventing this data from falling in the wrong hands. Disabling your internet cache and cookies all together is another option. The big issue with disabling cookies is that it will affect your overall browsing experience. Site preferences that are generally powered by cookies will be disabled so you won't be able to customize your favorite sites. Some e-commerce sites will not allow you to conduct online transactions unless you can authenticate your session with a cookie enabled browser.

Using third party software to maintain control over your sensitive data is the most safe and efficient option. One piece of software we've stumbled upon is a product called NetDuster. Not only will this piece of software maintain your cookies and browsing history in order to protect your privacy, it also handles stored information in applications such as Microsoft Office and your media player. It can delete sensitive information from your email and Instant Messengers. Lastly it can speed up your PC's performance and clean up the computer's registry. Click here to check out NetDuster.

Unplug your router when it's not needed

Stop leaving your router on when you leave home or go to bed. These networks can be cracked if someone tries hard enough, and if you are always detectable from another home or via a wireless router you do become a target eventually. If you live in an apartment complex and feel your bandwidth is lagging, shut down your router and see if people in the building suddenly run out of Internet juice. Many more people may be using your network router than just you without you even knowing it, especially if your router allows wireless connections. This is not just a privacy risk, as you could also become liable for their online activities.

Learn more

Want to learn more about internet privacy? Here's some recommended reading.

Privacy Lost: How Technology Is Endangering Your Privacy — This book by an Internet pioneer and former military code breaker outlines some very real privacy issues related to today's current technology, government and the Internet. It also gives information on how you can tackle these privacy concerns.

Privacy in Peril: How We Are Sacrificing a Fundamental Right in Exchange for Security and Convenience — Another fantastic book that outlines how we are sacrificing and exposing our right to privacy for the convenience of high-speed communications and Internet access.