Skip to content
Laird Norton Wealth Management
  • Services
          • Wealth Planning
            • Business Owner
            • Equity Compensation
            • Estate Strategies
            • Philanthropic Giving
            • Tax Strategies
          • Investment Management
            • Tax-Aware Investing
            • Risk Management
            • Alternatives & Private Market
            • Impact Investing
          • Trust Services
            • Beneficiary Services
            • Family Legacy
            • Trust Administration
            • Trust Benefits
            • Understanding Trusts
          • NonProfit Clients
            • Request RFP Participation
  • About
          • About LNWM
            • Fiduciary Financial Advisor
            • How We Help
            • Our Team
            • Corporate Social Responsibility
            • Careers
            • Community
            • Board of Directors
            • FAQs
        • two people in a kayak on water
  • Insights
        • Blog

          Top-of-mind at LNWM and elsewhere.

          Papers

          Expert insights and analysis.

          Videos

          See what we're up to.

          Media

          Our published work and media coverage.

  • Contact
Search Icon
Client Login
mobile-login

Home » Insights » Financial and Business Planning » Internet Use: Playing It Safe

Internet Use: Playing It Safe

LNWM | Financial and Business Planning | November 20, 2014 (February 25, 2020)

Internet security – and privacy — are hot topics these days. Here at LNWM, we take great care to guard our online data network, as LNWM Technology Director Bill Frizzell pointed out earlier this year. But what about us as individuals? What can each one of us do to keep our personal online dealings private and secure? Here’s some really good advice from LNWM’s Kelly Clark.

Q&A with Kelly Clark
LNWM’s Senior Network/Database Administrator

Kelly, what type of email can people trust?
Kelly: None – seriously. Email is inherently suspicious. By that, I mean you should always be on the lookout for bogus incoming requests, especially emails that contain links and/or attachments, and even if the email seems to be from someone you know.

Why links and attachments?
Kelly:
Both of these “add-ons” are ways to get at your device. A link can take you to a malicious website. If you click on such a link, you may think that it’s not a big deal. You’ll just think you’ve been taken to the wrong website or a website that gets an error message. What may not be apparent is that the site you’ve linked to is capturing your browser info, including any passwords or log-in info you’ve told your web browser to remember.

Keep in mind that an email attachment is probably more dangerous than a link. If you download a malicious attachment to your electronic device, you could potentially wreak havoc on your computer system.

What kind of havoc?
Kelly:
There are two types of attacks that people often confuse. VIRUSES are computer programming attacks designed to disrupt how your electronic device operates. The goal is to disrupt or shut down your system. That’s very annoying but probably won’t lead to financial woes.

By contrast, MALWARE is software designed to capture sensitive information. It may seem like your computer is working as usual, but it could be that certain programs have been installed that are copying bank account and other sensitive info you may have had saved on your computer, including on your browser. The people behind “Game Over Zeus” and other nefarious malware are after information they can use to rob you.

How can you size up if a link is suspicious?
Kelly:
If you get an email that includes a link, ALWAYS hover over the link with your mouse. If you do that, the URL (website address for the link) will appear on the left bottom of your screen. If you do not recognize the address shown, or if it seems suspicious to you, do NOT click on the link.

What are some red flags?
Kelly:
If, for instance, you get an email from your bank that includes a link. You hover over that link and see that it starts with “Dropbox” or some other name instead of the bank name, followed eventually by your bank name. That is really, really suspicious. No bank will steer customers to an online-storage site like Dropbox.

What makes for a strong password?
Kelly: It has both upper and lower case letters; it has numbers and punctuation; it is at least 8 characters long, with 15 to 24 characters being ideal. A pass phrase of yours that is peppered with numbers and punctuation is a good place to start.

This is not just random advice. It’s based on testing how fast a hacker would take to figure out your password, based on what he/she knows about you from remotely accessing your desktop and browsing history. Internet-standards expert John Pozadzides estimates that adding just 1 capital letter and 1 asterisk to an 8-character password could change a hacker’s processing time from 2.4 days to 2 centuries!

Do you really need separate password for each website?
Kelly:
Yes. Definitely. In particular, make sure your email password is different from all your online financial accounts. If hackers figure out your email password, they’re likely to immediately start trying it at all major financial institutions to see if one of your accounts turns up.

How can you keep track of all the passwords that change over time?
Kelly:
Personally, I’ve installed a program called “LastPass” on the electronic devices I use most often; it stores the log-in info for the sites I visit, after I select to save this info. To access all my log-in info, someone would have to know the one master password I created (I’ve made it sufficiently complex and really hard even for even me to fully remember). I’ve stored this master password in a safe place that is accessible only to me. If the LastPass site is hacked, the intruders will also need my master password to access my info. So I feel pretty secure using this service.

How safe is it to use the “free public Wi-Fi” at places like coffee shops and airports?
Kelly:
When you do that, you’re relinquishing your privacy. I suggest you don’t do any work while on a public Wi-Fi network that you don’t want to become public. Be especially wary of hoping on to public networks at airports or hotels, where hackers can hang out unnoticed. Before logging in via a public network, STOP to ask: Am I working on something that I wouldn’t mind being made public? While traveling, I actually have a laptop just for Internet access with no sensitive information on it.

  • Share:

LNWM

Activating wealth to serve life. From investing to legacy planning, we help you realize all that is possible, one choice at a time.

Sign Up For Navigator

Get our quarterly insights on investments, wealth planning, taxes and trusts.

Site Logo in footer footer logo
facebook Twitter Opens a news tab Linkedin Opens a news tab Youtube Opens a news tab

About

  • Board of Directors
  • Careers
  • Community
  • Contact
  • FAQs
  • Our Team
  • Sign up for Navigator

Services

  • Investment Management
  • Sustainable Investing
  • Tax Strategies
  • Trust Services
  • Understanding Trusts
  • Wealth Planning

Address

  • Laird Norton Wealth Management 801 Second Avenue, Suite 1600
    Seattle, WA 98104
    United States
  • 206.464.5100
  • 800.426.5105
© 2023 Laird Norton Wealth Management. All rights reserved.
Form CRSOpen PDF in a new tab Legal Terms and Conditions Privacy Policy
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept All”, you consent to the use of ALL the cookies. However, you may visit "Cookie Settings" to customize your settings.
Cookie SettingsAccept All
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-advertisement1 yearSet by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
CookieDurationDescription
__cf_bm30 minutesThis cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
bcookie2 yearsLinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
bscookie2 yearsLinkedIn sets this cookie to store performed actions on the website.
langsessionLinkedIn sets this cookie to remember a user's language setting.
lidc1 dayLinkedIn sets the lidc cookie to facilitate data center selection.
UserMatchHistory1 monthLinkedIn sets this cookie for LinkedIn Ads ID syncing.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
CookieDurationDescription
_uetsid1 dayBing Ads sets this cookie to engage with a user that has previously visited the website.
_uetvid1 year 24 daysBing Ads sets this cookie to engage with a user that has previously visited the website.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
CookieDurationDescription
_ga2 yearsThe _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gcl_au3 monthsProvided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid1 dayInstalled by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_hjAbsoluteSessionInProgress30 minutesHotjar sets this cookie to detect the first pageview session of a user. This is a True/False flag set by the cookie.
_hjFirstSeen30 minutesHotjar sets this cookie to identify a new user’s first session. It stores a true/false value, indicating whether it was the first time Hotjar saw this user.
_hjIncludedInPageviewSample2 minutesHotjar sets this cookie to know whether a user is included in the data sampling defined by the site's pageview limit.
_hjIncludedInSessionSample2 minutesHotjar sets this cookie to know whether a user is included in the data sampling defined by the site's daily session limit.
_hjTLDTestsessionTo determine the most generic cookie path that has to be used instead of the page hostname, Hotjar sets the _hjTLDTest cookie to store different URL substring alternatives until it fails.
_omappvp11 yearsThe _omappvp cookie is set to distinguish new and returning users and is used in conjunction with _omappvs cookie.
_omappvs20 minutesThe _omappvs cookie, used in conjunction with the _omappvp cookies, is used to determine if the visitor has visited the website before, or if it is a new visitor.
calltrk_session_id1 yearThis cookie is set by the Provider CallRail. This cookie is used for storing an unique identifier for a user browser session. It is used for tracking the number of phone calls generate from the website.
vuid2 yearsVimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
CookieDurationDescription
_fbp3 monthsThis cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
_mkto_trk2 yearsThis cookie, provided by Marketo, has information (such as a unique user ID) that is used to track the user's site usage. The cookies set by Marketo are readable only by Marketo.
fr3 monthsFacebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
MUID1 year 24 daysBing sets this cookie to recognize unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
test_cookie15 minutesThe test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
CookieDurationDescription
_ce.gtldsessionNo description
_dc_gtm_UA-41670453-11 minuteNo description
_hjSession_275188330 minutesNo description
_hjSessionUser_27518831 yearNo description
AnalyticsSyncHistory1 monthNo description
BIGipServerab10web-nginx-app_httpssessionNo description
BIGipServerab47web-nginx-app_httpssessionNo description
calltrk_landing1 yearThis is a functionality cookie set by the CallRail. This cookie is used to store the landing page URL. It helps to accurately attribute the visitor source when displaying a tracking phone number.
calltrk_nearest_tld9 years 10 months 8 daysNo description
calltrk_referrer1 yearThis is a functionality cookie set by the CallRail. This cookie is used to store the referring URL. It helps to accurately attribute the visitor source when displaying a tracking phone number.
CookieLawInfoConsent1 yearNo description
li_gc2 yearsNo description
SAVE & ACCEPT
Powered by CookieYes Logo