Notes from the Chat for today's meetup:

=================
Presenter: 
=================
David Rhoades, CEO of Maven Security. 
Handouts for tonight are here: https://www.mavensecurity.com/resources


=====================================
Thoughts Summarized from the chat:
=====================================
If you want to move away from gmail, some members use ProtonMail and have very positive reviews. Proton mail offers a free VPN service as well as upgradable plans with more server locations and to your phone carrier who often has very insecure protocols such as 4G LTE.

ODoH prevents logging/tracking on  top of that.

Let's encrypt is amazing.
Encrypt your files with Boxcryptor!

Q: Opinions of Brave browser vs firefox?
As per chat, some members have found success with Brave Browser. 

1password is a good password manager that accesses haveibeenpwned. Brave automatically disables tracking I’m pretty sure and blocks ads

Some articles of interest:
https://securityintelligence.com/news/security-flaw-spawns-10-new-kinds-of-4g-lte-attacks-researchers-report/

Authentication:
SMS is the goto with most places, even if it is circumventable with social engineering.  Not easy to find consistent situations where SMS is also not the recovery method for lost authenticators. TOTP and FIDO2 are more secure for 2FA but not as user friendly. Yea, too much SMS. Especially if people don't have a SIM PIN



===================================================
Side note on CyberSecurity/ Ransomware insurance:
===================================================
Things like Funds Transfer Fraud and Business Email Compromise being common. Ransomware is also something that affects small businesses. No one can be 100% secure but having financial backing from insurance can help keep you open if you have a fraudulent funds transfer for $50,000
For more info, contact Dave Koston or visit https://coalitioninc.com