Friday, September 12, 2014

TWC disconnect

Time Warner Cable (TWC) cable went out today. I took a couple of hours to diagnose the problem to ensure the problem was with the service and not my equipment. I know how to do this, as I’m a professional at doing that.

The people at TWC customer service offered an upgrade to my service so that I could enjoy higher speeds.

It was, of course, a terribly inappropriate time to talk to me about upgrading my service when I’m calling to say I’m not even getting what I’m paying for.

This point was entirely lost on them, until the first one abruptly hung up on me. I asked him they deliberately interrupted my service in order to get me to call and ask for the upgrade? Then, click.

The second one was willing to help, and I had to tell him how inappropriate it was, and it didn’t really sink in.

I think these customer service agents have some kind of incentive to sell instead of repair. And it’s even conceivable that they are using software tools to send signals to customers’ modems to wedge them. The service goes down, people complain, some of them go for the upgrade which, gee, just so happens to take a non-working connection and make it a working connection.

Maybe this isn’t policy at TWC, but I think it’s going on anyway, and upper management may be blissfully ignorant of it.

Has anyone else seen a pattern like this with their internet service providers?

As I was complaining to the second person, my connection came back up. I do know that it is possible to send a modem a signal or reconfiguration, so this agent just might have “done the needful” as some of my colleagues so eloquently say.

So it’s entirely conceivable that they act like this, earning bonuses by disserving us. If the tools are there to make such a scheme, it’s a safe bet that some people would eventually build it, for the same reason a dog licks his testicles, because he can.

Wednesday, May 21, 2014

Change your eBay password, even if you are not active on eBay



The password problem will continue to be a problem for a while, until companies and individuals change their practices. In the meantime, if you have an eBay account, even if you haven't bought or sold anything recently, change your password today. Don't use a password you have used before. In fact, you can set it to something you know you will forget if you don't use your eBay account currently. You can change it later when you need to.

Here is the news story.

Friday, April 11, 2014

Keeping your accounts safe

With the Heartbleed bug in the news, people are concerned about their login accounts being compromised. Some have called Heartbleed the worst security bug in internet history. Unfortunately, this is true. Fortunately, it does not mean a lot of heartache for you or me. Companies who have to modify their systems have a daunting amount of work to do, but we don't.

Here is an article about Heartbleed that most people will be able to follow. It covers the topic well.

Should you change your passwords now or later or never? I'm sorry, but that's hard to say. It's better to change your passwords after a site's system is brought up to date, but we can't keep track of when that happens. Honestly, just take a guess and change your passwords when you want to. I suggest doing it some time between now (mid April 2014) and early May.

Remember, your bank has an interest in protecting your account and your assets. If your account is compromised and you can attest to this, they will restore things. Other companies may not be as willing to help, but they also matter less than your bank account.

One thing that really does matter is your email account. You might say that your email doesn't contain valuable information, but it probably holds more than you remember. Also, the bad guys can glean a lot by piecing together information. So do protect your email account.

One important and useful feature that Google Mail (aka gmail) offers is 2-step authentication. Please read this article about it. There are sections on why you need it, how it works, and how it protects you. You might find it cumbersome to use at first, but I promise, you will get used to it. The benefit is very big. If you have a smartphone, an app will tell you your password of the minute. If you use a dumb cell phone, google will text you with a password of the minute.

One person heard about this and said, "They are the last people I want to hand my cell number to." Well, OK, the impulse to distrust big companies is well founded, but this is exactly where more trust of this sort is better than less trust. It is an authentication system. They want to make sure it's you, and you have a way of proving it's you that's better than just a password. You want the authentication to be strong, which is to say, you want it to be hard for the wrong people to get into your account. You have a mutual interest in this.
They take our data and use it for aggregate statistics, not for individual prying. They could conceivably draw conclusions about the number of people who have 973 area codes, but I doubt it. There is nothing to be lost and plenty to gain from using your cell phone to help with authentication. But you only have to do this if you have a dumbphone. If you have a smartphone, you'll install the app, and you won't use texts. The app will provide the password of the minute magically, and you will type it into gmail.

One reason 2-step authentication is better than 1-step is that it relies on two types of things. Your password is something you know, whereas your cell phone is something you have. Using either as a key to open a lock is secure to a degree, but needing both is more secure than using either one alone.

I highly recommend this. I've been using it for years, and I feel pretty confident that no one has broken into my account, and I feel confident it won't happen soon.