Social Online Safety Guide

Quick Facts

While social networking sites can increase your circle of friends, they also can increase your exposure to people with less-than-friendly intentions. Here are some things you can do to socialize safely online:

Think about how different sites work before deciding to join a site. Some sites allow only a defined community of users to access posted content; others allow anyone and everyone to view postings.
Keep some control over the information you post by restricting access to your page.
Keep your full name, Social Security number, address, phone number, and bank or credit card account numbers to yourself.
Make sure your screen name doesn't say too much about you. Even if you think it makes you anonymous, it doesn't take a genius to combine clues to figure out who you are and where you can be found.
Post only information that you are comfortable with others seeing and knowing.
Consider not posting your photo. It can be altered or broadcast in ways you may not be happy about.
Flirting with strangers online could have serious consequences. Some people lie about who they really are.
Be wary if a new friend wants to meet you in person. If you decide to meet them, meet in a public place, during the day, with friends you trust. And tell a responsible adult where you're going.
Trust your gut if you have suspicions. If you feel threatened by someone or uncomfortable because of something online, tell an adult you trust, and then report it to the police.

You've probably learned a long list of important safety and privacy lessons already: Look both ways before crossing the street; buckle up; hide your diary where your nosy brother can't find it; don't talk to strangers.

Add one more lesson to the list: Don't post information about yourself online that you don't want the whole world to know. The Internet is the world's biggest information exchange: many more people could see your information than you intend, including your parents, your teachers, your employer, the police — and strangers, some of whom could be dangerous.

Social networking sites have added a new factor to the "friends of friends" equation. By providing information about yourself and using blogs, chat rooms, email, or instant messaging, you can communicate, either within a limited community, or with the world at large. But while the sites can increase your circle of friends, they also can increase your exposure to people who have less-than-friendly intentions. You've heard the stories about people who were stalked by someone they met online, had their identity stolen, or had their computer hacked.

Think about how different sites work before deciding to join a site. Some sites will allow only a defined community of users to access posted content; others allow anyone and everyone to view postings.

Think about keeping some control over the information you post. Consider restricting access to your page to a select group of people, for example, your friends from school, your club, your team, your community groups, or your family.

Keep your information to yourself. Don't post your full name, Social Security number, address, phone number, or bank and credit card account numbers — and don't post other people's information, either.

Be cautious about posting information that could be used to identify you or locate you offline. This could include the name of your school, sports team, clubs, and where you work or hang out.

Make sure your screen name doesn't say too much about you. Don't use your name, your age, or your hometown. Even if you think your screen name makes you anonymous, it doesn't take a genius to combine clues to figure out who you are and where you can be found.

Post only information that you are comfortable with others seeing — and knowing — about you. Many people can see your page, including your parents, your teachers, the police, the college you might want to apply to next year, or the job you might want to apply for in five years.

Remember that once you post information online, you can't take it back. Even if you delete the information from a site, older versions exist on other people's computers.

Consider not posting your photo. It can be altered and broadcast in ways you may not be happy about. If you do post one, ask yourself whether it's one your mom would display in the living room.

Flirting with strangers online could have serious consequences. Because some people lie about who they really are, you never really know who you're dealing with.

Be wary if a new online friend wants to meet you in person. Before you decide to meet someone, do your research: Ask whether any of your friends know the person, and see what background you can dig up through online search engines. If you decide to meet them, be smart about it: Meet in a public place, during the day, with friends you trust. Tell an adult or a responsible sibling where you're going, and when you expect to be back.

Trust your gut if you have suspicions. If you feel threatened by someone or uncomfortable because of something online, tell an adult you trust and report it to the police and the social networking site. You could end up preventing someone else from becoming a victim.

Quick Facts

Peer-to-peer (P2P) file-sharing allows users to share files online through an informal network of computers running the same software. File-sharing can give you access to a wealth of information, but it also has a number of risks. You could download copyright-protected material, pornography, or viruses without meaning to. Or you could mistakenly allow other people to copy files you don’t mean to share.

If you’re considering P2P file-sharing:

Install file-sharing software carefully, so that you know what’s being shared. Changes you make to the default settings of the “save” or “shared” folder might cause you to share folders and subfolders you don’t want to share. Check the proper settings so that other users of the file-sharing network won’t have access to your private files, folders, or sub-folders.
Use a security program from a vendor you know and trust; keep that software and your operating system up-to-date. Some file-sharing software may install malware or adware, and some files may include unwanted content.
You may want to adjust the file-sharing program’s controls so that it is not connected to the P2P network all the time. Some file-sharing programs automatically open every time you turn on your computer and continue to operate even when you “close” them.
Consider setting up separate user accounts, in addition to the administrator’s account, if your computer has multiple users. Limiting rights on user accounts may help protect your computer from unwanted software and your data from unwelcome sharing.
Back up data you don’t want to lose in case of a computer crash, and use a password to protect any files that contain sensitive information.

Quick Facts

Phishing is a scam where Internet fraudsters send spam or pop-up messages to lure personal and financial information from unsuspecting victims. To avoid getting hooked:

Don't reply to email or pop-up messages that ask for personal or financial information, and don't click on links in the message. Don't cut and paste a link from the message into your Web browser — phishers can make links look like they go one place, but that actually send you to a different site.
Some scammers send an email that appears to be from a legitimate business and ask you to call a phone number to update your account or access a "refund." Because they use Voice over Internet Protocol technology, the area code you call does not reflect where the scammers really are. If you need to reach an organization you do business with, call the number on your financial statements or on the back of your credit card.
Use anti-virus and anti-spyware software, as well as a firewall, and update them all regularly.
Don't email personal or financial information.
Review credit card and bank account statements as soon as you receive them to check for unauthorized charges.
Be cautious about opening any attachment or downloading any files from emails you receive, regardless of who sent them.
Forward phishing emails to spam@uce.gov – and to the company, bank, or organization impersonated in the phishing email. You also may report phishing email to reportphishing@antiphishing.org. The Anti-Phishing Working Group, a consortium of ISPs, security vendors, financial institutions and law enforcement agencies, uses these reports to fight phishing.
If you've been scammed, visit the Federal Trade Commission's Identity Theft website at ftc.gov/idtheft.

Forward spam that is phishing for information to spam@uce.gov and to the company, bank, or organization impersonated in the phishing email. Most organizations have information on their websites about where to report problems.

If you believe you've been scammed, file your complaint at ftc.gov, and then visit the FTC's Identity Theft website at ftc.gov/idtheft. Victims of phishing can become victims of identity theft.

You also may report phishing email to reportphishing@antiphishing.org. The Anti-Phishing Working Group, a consortium of ISPs, security vendors, financial institutions and law enforcement agencies, uses these reports to fight phishing.