access an account. However, if the criminal can intercept your text messages, or if they control your phone, the protection offered by 2FA is rendered useless. “Setup 2FA everywhere you can, don’t make it easy for bad guys to get into your stuff,” Tentler explained. “Consider setting up a Google voice number, and using that Google voice number for SMS-based 2FA. Do not share this Google voice number with anybody. Use it only for your own, private two-factor authentication.” Not every website you have an account on offers 2FA, but some do. At Turn On 2FA (turnon2fa.com), you can get step-by-step instructions for enabling this layer of security on most of the larger, more popular websites.
Check your statements Check your credit card and bank statements. You should be doing this all year long, not just during the holidays Tentler said, so you can “watch for shady things appearing on that list.” Look for charges you don’t know, or smaller charges at places you normally shop. When testing a card, criminals sometimes make a small purchase, usually less than £10, as such things aren’t flagged, and people usually don’t notice them. Common purchases for testing include fuel, fast food, grocery items, and gift cards.
RFID protection RFID cards, sometimes branded with the name PayPass, Blink, ExpressPay or PayWave, allow you to charge things with a quick tap of the card on the 66 MACWORLD • JANUARY 2017 MWJAN17.indd 66