On the heels of the last podcast, I thought I’d open a conversation about calendaring security/privacy cleaning events. I love this idea. It’s something we should all be doing. I have a few things on my docket I do regularly, but I think I could improve my process. Things like what was mentioned on the episode: checking your Google permissions (if you have them) once a month. Or, if you’re an iOS user, rebooting your phone a few times a week. Checking HIBP for breaches you’ve been involved in. Regularly changing passwords to your personal, high-value targets. I’d love to hear from you all what you incorporate into your process, if you have one. Or what you’re going to incorporate. These ideas could be a great resource for people just starting their journey. Let’s hear 'em!
I compare and review my offline password manager and TOTP on my laptop and phone every few weeks. I use Warpinator to transfer my phone password file to my Laptop for comparing and updating. At the same time a make backups of the updated password file and place it on my usb drive. I keep a historical record of each backup.