Itās easy to reveal more about yourself online than you realise ā and that could help scammers and hackers.
This week a couple of blogging friends shared one of those little games that are so popular on Facebook. This one used your answers to tell you āWho you areā. The month you were born decided the first part of the answer, and the second part depended on which four-day date range your birthday fell into. So someone born between 12th and 15th of February would be a āShort Princessā, whereas 24th to 27th June would be a āGiant Unicornā. Then youāre asked to post your answer in the comments below the picture.
Harmless fun right? Well, maybe not.
What those answers really reveal
Think about the information the quiz asks for.
By reading the comments posted for this game, I can work out the posterās birthday within four days.
Ok, you might be thinking āWhat can they with just part of my birthday?ā. Maybe nothing. But think about when youāve had to go through security on the phone and date of birth has been one of the questions ā particularly when asked for a four-digit memorable code.
People are rightly concerned when this kind of personal data is stolen in hacks like the ones on TalkTalk, Uber and Equifax, but theyāre happy to share similar information when itās presented as a bit of fun.
And this is done is in huge numbers. At the time of writing the game I mentioned above had 39,000 comments ā and thatās just on one Facebook page. There will be many, many more comments on threads where people have shared the image.
This isnāt the first time Iāve seen this kind of data harvesting. When Facebook first started a popular one was to find your āpornstar nameā. There were a few versions of this but the most common one was first petās name followed by motherās maiden name. Oh, how we all laughed. Go on, do it now. Itās either very funny or incredibly dull (which is also funny). But donāt share it. Because, surprise surprise, do that and youāve given away two key security questions.
Giving away access (and your data) to games and apps
You could also be giving away more information than you realise when you add extras to your Facebook account. By giving permission to apps, games and permissions you need to agree to what you share.
Some will just want your name and email address. But others will want your friends list, birthday and location.
The risk here is the game has only been created to get your data. And once youāve given permission for Facebook to share it, those scammers can use the info against you or sell it to others.
The personal information weāre not even tricked into revealing
Social media was named as such because itās about being social. And that means weāre likely to celebrate and share the things we love. Favourite bands and sports teams, pet names, family connections, anniversaries ā even where we went to school. You might even proudly display your full date of birth including the year.
Do these all sound familiar? Yup, theyāre all common security questions.
How to stop scammers finding your data on social media
As well as using the information you share to try to bypass security on your accounts, it could be used against you in other ways.
Often small parts of data can be merged with data found elsewhere to build up a bigger profile of you and your information. There could even be enough out there for people to steal your identity.
So how can you minimise this happening?
Well the first thing to do is make sure your social media accounts are locked down. Limit your Facebook page just to people you actually know, and then go through removing the obvious security risks such as your date of birth. You can remove your birthday on Twitter too.
Then just be careful about the games and quizzes you take part in. If any part of the question appears to reveal personal data, donāt take part. And only give access to any of your account data to brands you trust. On Facebook you can check which apps youāve given access to.
Other ways oversharing could affect you
Iāve written about how I never reveal on social media if Iām on holiday or away from my house if thereās no one at home. The danger is youāre effectively advertising to thiefās that thereās an empty home ripe for a break in.
It has also been known for employers and recruiters to check social media accounts of prospective employees. Anything dodgy and thereās little chance youāll get the job.
And sometimes old tweets and posts can come back to haunt you. It seems every month or so a footballer, politician or celebrity has to apologise for something they said online. To be fair most of these examples tend to be racist, homophobic or misogynistic and Iāve few issues with those people being exposed. But you might want to audit your accounts for anything you regret typing, and deleting as appropriate.
https://becleverwithyourcash.com/facebook-hacking-checklist-how-to-protect-your-data/
Iām careful with information on Facebook but do the games.
Now I know!!
I don’t share many personal details on my social anyway, I’ve managed to keep my surname off Instagram and Twitter (mostly) but I’d never even thought about those ‘Pornstar name’ generator before! Such a great point Andy
I hate scammers with a passion, it’s a smart way of getting information but just vile! Thanks for the warning š
I know, and it’s so easy to not realise that’s what is happening.