Q&A responded to by:
Jeff Lanza
Jeff Lanza, Retired FBI Special Agent
Affiliated with Capital Group l American Funds
Patrick Chavez
Chief Privacy Officer and Associate General Counsel
Edward Jones
Alex Reed
Senior Reputation Management Specialist
Edward Jones
There is more indication the getting text message code is not secure, what do we use next to be secure.
Generally speaking, two-factor authentication using a text message is still more secure than not using two-factor authentication. That said, if you're not comfortable with using a text as two-factor authentication, consider using an authenticator app that will generate a one-time passcode.
If we have a very unique password, is it bad to use that same password on all our accounts?
Though unique passwords can provide better security, if someone gains access to that one password that can be compromising to all your accounts. Consider utilizing different passwords (or a passphrase), multi-factor authorization, and password manager. Changing passwords frequently can also better protect your sensitive information and accounts.
What is the safest and most secure way to keep track of passwords?
A high-quality password manager is generally the considered to be among the safest and most secure ways to keep track of passwords. A high-quality password manager will also make it relatively easy to have unique and secure passwords for each site/app you use.
Will you please recommend a particularly secure/safe password manager?
We can't recommend a particular password manager, but you can look for a third-party password manager that has had independent security reviews, and is recommended by reputable industry experts (Consumer Reports, Wirecutter, Wired, etc.)
Is freezing credit with all three agencies sufficient?
Generally speaking, freezing credit if you see an issue on your credit report or notice suspicious activity is a good idea. The three primary credit reporting companies are TransUnion, Experian, and Equifax.
Can you explain the difference between Ransomware and Cyber attacks and how each of those may affect our information?
A ransomware attack is a specific type of cyberattack (cyberattack is a broader term encompassing ransomware attacks as well as other types of attacks), and in general is where criminals encrypt files and demand payment before releasing them.
is credit karma ok to check your credit report?
It's generally recommended to check your credit report annually and/or prior to any large purchase, such as buying a home. Federal law gives you the right to get a free copy of your credit report every 12 months. Keep in mind that the more sites you visit and have an account for, the easier it may be for someone to access your personal financial information, particularly if you are using similar emails and/or passwords.
Why are credit cards safer than checks?
Credit cards offer the most financial and fraud protection, and you should consider using them over checks and debit cards. Even if all you have is a debit card, choose to use it as a credit card rather than debit.
On the computer screen it suggested using a password manager to better protect our sensitive information. Are there any downsides of using a password manager? (eg opportunity for hackers?)
A high-quality password manager will minimize the risk of being hacked, and you'll want to be especially careful with your password to your password manager. While there's some risk involved, many cybersecurity experts believe the risk of a password manager is lower than the risks associated with other common methods of keeping track of online passwords, especially when the password manager is used properly.
Do you have cybersecurity insurance?
Yes, we do have cyberinsurance.
Do you do vulnerabilty testing? Do you have third party penetration testing?
We also undergo multiple external assessments every year which include both vulnerability and penetration testing.
Can MFA be enabled for Edward Jones online access?
Yes, multi-factor authentication is available with Edward Jones Online Access through account settings.
Have you ever had a data breach? If so how was it resolve?
We have not had a breach of either client or associate data resulting from any type of cyber event.
Tips for traveling overseas with a credit card/ATM card.
Limit the number of cards you take and notify the companies that you are traveling beforehand. Generally speaking, credit cards can provide more security than debit cards when travelling.
How do you remember all those different passwords?
A password manager can provide a way to help maintain your unique passwords. Utilizing passphrases can also be useful in remembering.
Will you please recommend a particularly secure/safe password manager?
We can't recommend a particular password manager, but you can look for a third-party password manager that has had independent security reviews, and is recommended by reputable industry experts (Consumer Reports, Wirecutter, Wired, etc.)
Is freezing credit with all three agencies sufficient?
Generally speaking, freezing credit if you see an issue on your credit report or notice suspicious activity is a good idea. The three primary credit reporting companies are TransUnion, Experian, and Equifax.
Can you explain the difference between Ransomware and Cyber attacks and how each of those may affect our information?
A ransomware attack is a specific type of cyberattack (cyberattack is a broader term encompassing ransomware attacks as well as other types of attacks), and in general is where criminals encrypt files and demand payment before releasing them.
is credit karma ok to check your credit report?
It's generally recommended to check your credit report annually and/or prior to any large purchase, such as buying a home. Federal law gives you the right to get a free copy of your credit report every 12 months. Keep in mind that the more sites you visit and have an account for, the easier it may be for someone to access your personal financial information, particularly if you are using similar emails and/or passwords.
Why are credit cards safer than checks?
Credit cards offer the most financial and fraud protection, and you should consider using them over checks and debit cards. Even if all you have is a debit card, choose to use it as a credit card rather than debit.
On the computer screen it suggested using a password manager to better protect our sensitive information. Are there any downsides of using a password manager? (eg opportunity for hackers?)
A high-quality password manager will minimize the risk of being hacked, and you'll want to be especially careful with your password to your password manager. While there's some risk involved, many cybersecurity experts believe the risk of a password manager is lower than the risks associated with other common methods of keeping track of online passwords, especially when the password manager is used properly.
Do you have cybersecurity insurance?
Yes, we do have cyberinsurance.
Do you do vulnerabilty testing? Do you have third party penetration testing?
We also undergo multiple external assessments every year which include both vulnerability and penetration testing.
Can MFA be enabled for Edward Jones online access?
Yes, multi-factor authentication is available with Edward Jones Online Access through account settings.
Have you ever had a data breach? If so how was it resolve?
We have not had a breach of either client or associate data resulting from any type of cyber event.
Tips for traveling overseas with a credit card/ATM card.
Limit the number of cards you take and notify the companies that you are traveling beforehand. Generally speaking, credit cards can provide more security than debit cards when travelling.
How do you get your credit report?
Only one website — AnnualCreditReport.com — is authorized to fill orders for the free annual credit report you are entitled to under law.
Is it advisable for safari to create passwords for you?
It's likely better than creating them yourself, but most cybersecurity experts would advise in-browser password services, like those in Safari, are not as safe as a high-quality third-party password manager, which will also create long, unique, and secure passwords for you.
What's your opinion?