SafeBlog

Safelist.com gets a great reception wherever we present it: people are really excited about the next generation of online classifieds. We’ve had online safety and children’s advocacy groups approach us and we’ve built some lasting partnerships. We are starting to realize how much our platform can offer, not just in traditional business value, but to the communities we serve.

Safelist is in a unique position: we work directly with existing, real-world communities to build trusted marketplaces online. Although our users are anonymous to one another, all of our users are verified and all transactions are linked to a real person. This kind of built-in accountability and narrow geographic focus makes the Safelist platform uniquely suited to support community fundraisers.

We’re building a simple set of features into the new Safelist, which we will launch in the first week of March, that will make it easy for Safelist members to post items and services and donate some or all of the proceeds to the school of their choice. Families can participate in peer-to-peer trading with their neighbors without fear, and, because they are tied to each transaction, we can offer receipts for tax deduction.

It’s a totally turn-key fundraiser for school PTAs, won’t get in the way of existing fundraisers, and offers a chance for supporters to give effectively without writing another check. As always, Safelist registration is free and easy. Better yet, 100% of the donation goes straight to the school!

We’re rolling it out at our first schools in Santa Barbara as soon as the new features are ready, and we look forward to getting the rest of California and the nation involved as soon as we can! It’s a great opportunity for us to spread the word about Safelist and help schools.

If you need to raise funds for your school contact us now!

Fall is in the air which means that Halloween is just around the corner! Safelist.com wants to keep you and your loved ones safe with these great Halloween safety tips.
• Check your trick-or- treating route for any registered sex offenders in the area. Go to California’s Megan Law sex offender locater site to check your neighborhood for free. http://www.meganslaw.ca.gov/ .This is a great site to periodically check even after Halloween is over. You never know who is lurking out there.
• Install a GPS tracking app onto your child’s cell phone. There are many great free apps that are easy to use. This will give you some peace of mind especially if you have older kids who want to venture out on their own.
• Choose flame retardant costumes that are comfortable to wear. Stay away from masks that can obscure your child’s vision. Apply reflective tape onto costumes and candy bags. Drivers will be better able to spot your little ones in the dark. We also recommend those cute blinking light pins or necklaces. They keep hands free and are very bright for everyone to see.
• If you are in a large group; stay together and have everyone buddy up with a partner. Kids can easily get lost and left behind with so many other children walking around.
• Look both ways before crossing the street. Stay on sidewalks and cross only at designated areas. Try not to Zigzag between homes or cut across lawns.
• Only go to homes that are well lit. Never go inside a home to accept a treat. Beware of dogs and always ask permission before petting an animal.
• Prepare your home for trick-or-treaters by keeping walkways clear. Keep your porch light on and home well lit. Use artificial lights to light Jack-o-lanterns. Keep your pets secure and restrained.
• Inspect your child’s bag for any candy that appears to have been tampered with. When in doubt; toss it out. Don’t let your child eat any homemade treats unless you know the person who gave them to you. Also, make sure your kids aren’t trick or treating on an empty stomach. They will get hungry and want to snack on the candy before you’ve had a chance to inspect it.
Safelist.com wishes you and your family a very safe and happy Halloween!

Imagine that you are looking for a place to rent in a new city. Since you aren’t familiar with the area, you use Craigslist to find the perfect place with an affordable rent.  Unable to reach the landlord in person, you wire your deposit and first month’s rent in exchange for the keys to the residence.

Then you discover the crushing truth. The keys don’t work. In fact, the property is not even available. You’ve been scammed out of your money.

Unfortunately, this scheme is becoming common place on Craigslist and other classifieds sites. A Texas woman lost her $900 deposit on a house when her scammer gave her fake keys to a house he didn’t own. A Kansas family almost lost out on $1400, but avoided their loss with further investigation. What they found was that the house they were looking to rent, was not owned by the woman in Africa with whom they had been corresponding via email.

This type of scam starts with the criminal lifting the address and photos of a property that is for sale, and posting it as a vacant rental online. The scammer then lures an interested party in, weaving a believable story about why they are not in town to meet and show the property in person. Then, after the innocent renter wires money to the person, the renter either receives fake keys or no keys at all, and the scammer has disappeared with their money into Internet oblivion.

Here at Safelist, we are aware of the scams that plague Internet users and we are committed to providing a safer alternative to help minimize the chances that this could happen to you.

We realize that the anonymity of online classifieds allows criminals greater ability to disappear once they commit fraud. Therefore, we have created a community of only verified users.  Each Safelist member must verify their identity, ensuring that the person with whom you are transacting, is who they say they are. Therefore, should any crime be committed while using Safelist, we will have that offender’s personal information, thus making the criminals accountable for their actions.

Our hope is that identity verification alone will deter criminal activity; however, should a crime be committed, Safelist will be ready to assist in the apprehension of the perpetrators involved.

We invite you to join our safer community, where our members can engage in online commerce free from worry and suspicion.

These days, travelers have more options than ever when booking vacations. Websites ranging from Craigslist to Couch Surfing provide users the ability to swap houses or even crash on a stranger’s futon. Among these emerging services is Airbnb, an online network that connects renters with people looking for a place to stay short-term.

Earlier this month, a shocking story made headlines about an innocent San Francisco resident who opened her home to a renter via Airbnb, only to find it completely ransacked upon her return. The user, whose name is only published as “E.J.,” recounted the story in a June 29 blog post. Not only were her valuables stolen and her possessions destroyed, but her passport and social security card appeared to have been photocopied, exposing her to possible identity theft.

After E.J.’s story went viral last week, another man revealed to TechCrunch that his own Oakland home was vandalized and covered in meth paraphernalia upon his return.

These incidents help bring to light the importance that we all must place on preserving our security when transacting online. The choice you make when deciding whether to trust someone should be based on both the information the web service provides and what you are able to gather yourself.

Airbnb does not verify the identity of its users, though E.J. argued in a recent blog update that the company leads customers into a false sense of security by “disallowing the exchange of personal contact information until… a reservation is already confirmed and paid for.”

E.J. contends that Craigslist is, in effect, safer. However, we all know that using Craigslist can be dangerous. We have all seen in the news how serious crimes, including theft and murder, have stemmed from Craigslist encounters. The unfortunate reality is that we should always be careful before opening our lives and homes to strangers we meet online.

One of the biggest problems with the online marketplace today is the ability for users to hide behind their anonymity. Randi Zuckerberg, the former marketing director for Facebook, spoke on this topic in a recent panel discussion on social media hosted by Marie Claire magazine.

“I think anonymity on the Internet has to go away,” said Zuckerberg. And we couldn’t agree more. While private data should never be made public to just anyone, it is important that people be held responsible for their actions on the Internet, especially when they break the law or harm others. Internet users should not be able to hide behind any identity other than their own, and everyone’s online identity must be verified to help protect all web denizens.

At Safelist, we recognize that it is important for you to feel safe and know that you are transacting with a legitimate person, therefore, we verify the identity of every Safelist user. Additionally, we also allow our users the option to pass a criminal background check to afford them even greater respect and legitimacy within our community. Our goal is to provide a safer alternative to the anonymous marketplaces found online.

In order to protect our physical and financial safety it is imperative that we always remain vigilant when using online services. Never rely on short cuts!

Please join in the conversation with your comments.

Three San Diego residents were robbed this past Monday night in separate encounters planned by the suspects through Craigslist. In all three instances, the victims were robbed at gunpoint while trying to sell an iPod or iPad.  News outlets are reporting that the police believe the incidents to be related.

These latest episodes come just 3 months after San Diego resident Garret Berki, a recent high school graduate, was shot and killed during a botched Craigslist transaction.

The frequency of incidents in which innocent people using Craigslist end up becoming victims of unscrupulous criminals, is very disturbing. The only reason criminals like using Craigslist is because the website allows them to remain totally anonymous, thus making it easy for them to lure their victims.

Fortunately, there is a solution.

Since criminals prefer operating under the cloak of anonymity, Safelist offers a very simple and elegant solution that makes their platform very unfriendly for crooks and felons: We verify the identity of every user. With our Verified Anonymity concept, users have the ability to stay anonymous, while still being verified. Safelist also promotes an open door policy with law enforcement to further discourage criminals from playing their trade on our site.

Additionally, unlike our competitors’ Russian Roulette system, Safelist users enter into a transaction with their eyes wide open. With our reputation management system, users are afforded the ability to see each others’ transaction scores (SafePoints) before they transact.

At SafeBlog, we are committed to providing you, our readers, with tips and suggestions to help keep you and your family safe and secure from online crime. We encourage you to share your comments, experiences and ideas with our community.

*News Update*

Last night, a suspect, Keith Randall Smith, was arrested and taken in for questioning. The black handgun described in all three incidents was recovered at Smith’s Mission Valley home as well as two of the stolen iPads.

However, the female that accompanied the robber in all three cases is still missing. She is described to be between ages of 20-25, blonde, thin and about 5’4”. If anyone has any information on this case, they are asked to call the San Diego Police Department at 619-531-2000.

With warm weather in full force, now is the time that many of us are escaping our homes and offices for summer vacations.

No matter how long you’ll be away, chances are you will find it hard to completely disconnect. While “unplugging” is a great tactic for total relaxation, many vacationers can’t help but bring their laptops and other devices along for the ride.

But how safe are the networks that we are connecting to along the way? At home, we know to password-protect our Internet connections and implement other security measures for our home network. However, as travelers, we usually don’t always maintain the same level of vigilance over our network security. Instead, we find it convenient to take advantage of any free public network(s) in whatever airport, hotel, or coffee shop we pass through.

But we all know that even “free” things in life have a cost that we have to pay.

The problem is that public Wi-Fi networks pose many potential security risks to your personal information. When you are using an unsecured network (i.e. no login, no password, and no encryption) anyone can join the network and steal your sensitive, personal information. Even if the network is secured with a password, that is a step that can often easily bypassed by cyber criminals.

While you’re enjoying the summer months on the road, it’s also important to take steps to ensure the safety of your personal information. Before you take those (hopefully short!) breaks to use the Internet, take some time to implement one or more of the following tips:

1. Use your mobile device

Why log into a public network if you don’t have to? If you have a smartphone with a data plan, there are ways to connect to the Internet on your laptop using your phone’s connection. Lifehacker has a great guide for doing so with an iPhone. One of the steps requires you to “jailbreak” your phone, but don’t be alarmed. Jailbreaking was declared legal in the U.S. in July 2010.

2. Use a VPN

Another good route for safer surfing away from home is using a virtual private network, or VPN. These networks allow for authentication (password) and encryption through a remote server. Setting one up on your own can be a pain, but luckily there are free services that take care of it for you.


CyberGhost VPN is a free download that allows you to remain anonymous by concealing your real IP address and location. Furthermore, all of your web activity is then encrypted to protect you from eavesdroppers.

Other similar services include HotSpot Shield and Wall Cooler VPN.

3. Use secure browsing

While this is a good idea to use at home as well, it’s particularly important when you are away from home that you use the HTTPS version of a URL whenever possible.

HTTPS is a protocol that adds additional encryption to safeguard whatever personal information you are entering to access the site.  For example, if you use it on Facebook, the address bar will show you https://www.facebook.com instead of http://www.facebook.com .

Many sites do not default to HTTPS even when they offer it. Luckily, Google Chrome offers an extension that forces any site to use HTTPS if they have it available. For Firefox, HTTPS Everywhere is a good option.

4. Change your passwords

If you must spend your vacation using public networks, change your passwords to the accounts you are accessing at least once. Use a password that you don’t use at home. Make sure to mix numbers and upper case and lower case letters in your password to make it more difficult for a hacker to steal.

Our hope is that our users will remember to safeguard their personal data, especially when away on a vacation. By taking a few preventive steps, you will decrease your chances of becoming a victim of cyber-crime and thus allow yourself to enjoy your well-deserved time off, worry-free.

If you want to share with us other tried and true methods that you use to protect your data online, please do so by posting in the comments section of this post.

“Internet security is broken, and we need to roll up our cyber-sleeves and fix it.” — Becky Ferreira, in her recent Popular Science article exploring the problem with online identification today.

Last week, we discussed the growing problem of single password authentication and how passwords lack adequate protection for our online accounts. In an ideal world, we all would have a strong, unique password for each of our online accounts. However, the reality is that many of us keep the same, easy to remember password across multiple platforms. This leaves our personal information at risk for security breaches, identity theft, and other crimes.

As we highlighted in Part 1 of this post, groups such as Anonymous and LulzSec have recently hacked into organizations like Sony and even the U.S. government and released sensitive data to the public. Security breaches like these put a glaring spotlight on the problem we all have with keeping our web activities private and secure.

High profile incidents such as these are just pieces in the web of cyber-crime that plagues the lives of U.S. citizens. According to the U.S. Department of Justice, an estimated 11.7 million Americans were victims of identity theft of some kind including online identity theft over a recent two-year period.

The government has taken notice of the problem. On April 15, the U.S. Chamber of Commerce hosted the launch of a Whitehouse initiative entitled National Strategy for Trusted Identities in Cyberspace (NSTIC).The goal of the initiative is to create a joint public and private effort toward finding effective solutions to problems plaguing the online authentication process. NSTIC is designed to enable the development of “trusted credentials,” a term which refers to any method considered to be more secure than a single password.

The proposal comes soon after nominal efforts in the private sector to solve the problem. Google led the way in February by introducing their optional two-step authentication process for Google accounts. A two-step process combines two things in online authentication: something you should know (password) and something you should have (a device).

Once a user opts into this Google service, the password is only the first step. Users then also have to enter a verification code that is sent via phone, text message, or mobile application. A potential hacker would not only need to know your password but would also have to have access to your device that receives the verification code.

Google’s solution is a step in the right direction, but it is also somewhat cumbersome. In reality, most users won’t adopt a new process unless they are forced to.

But what are other private companies doing? Unfortunately, not much. Last week the tech blog Gizmodo requested that “Facebook and Microsoft and Apple start taking on this challenge in earnest.” Sites with tens of millions of users have a responsibility to their members to protect them.

For users who want to take their security into their own hands, security tokens are a noteworthy example of a “trusted credential.” A security tokens is a device that displays a unique passcode that changes about once per minute. In order to gain access to their accounts, users need to enter their traditional password and also the passcode displayed on the device in real time.

Unfortunately, even security token providers can be hacked. EMC, the makers of the security token SecurID, admitted in an open letter to customers this past March that they were victim to “an extremely sophisticated cyber-attack.”

Yet another solution that attempts to make our passwords more secure is the advent of applications like 1Password. This program not only creates strong and unique passwords for your myriad of accounts, but it also stores them for you, requiring you to remember just one. Every time you need to access an account, 1Password automatically enters an encrypted password directly into your web browser.

While we wait for emerging innovations to solve the growing problem of online authentication, let us ensure that your current passwords are strong and well-protected from criminals. Here are a few tips that should help:

1. Use numbers, upper and lower case letters, punctuation marks, and symbols.
2. Change your password frequently. Experts recommend doing so every 3 months.
3. Avoid writing passwords down. Whether at home or in the office, having written passwords offers them to an unauthorized person on a silver platter.
4. Use a unique set of letters – nothing personal like your name, pet, date of birth, or the city where you live.
5. Do not use the same password for any of your highly sensitive accounts – including email, banking, finance, etc.

We will keep you up to speed with the newest technologies that may help protect your online accounts from unauthorized access.

But we also want to hear from you.

Please share your comments and suggestions so that we may, with your help, build a safer online community for everyone.

Since the advent of the Internet, our daily lives are moving online at a rapid pace. We have become very comfortable, and even somewhat carefree, in conducting our most sensitive and private activities – banking, bill paying, email, chat, etc. – on the web.

And how do we protect ourselves from strangers’ prying eyes? A password, of course. Pinning our hopes on a 6-12 character combination, assuming that it will help keep others out of our business.

Unfortunately, that is no longer the case. A slew of hackings and security breaches in 2011 helped highlight the fact that the password has become outdated and can no longer be relied upon to protect us online. Our fast changing, web-driven world now requires a better solution.

Part of the problem is the sheer number of passwords that an average online denizen is expected to remember. It seems like almost every site we visit requires us to sign up with a log-in name and a password. As a result, our natural inclination is to use the same password everywhere to help simplify our lives.

Results from a survey published last year in the New York Times highlighted online privacy issues that were troubling to say the least. The article reported that two out of the five most commonly used passwords were “12345” and “password.” And “password1” appeared in the top list as well, seemingly because many sites attempt to protect users by requiring a number in passwords.

If we are not forced to create a strong, varied passwords, it is human nature that we just will not. The technology blog Gizmodo recently published a worrying report that serves as evidence of this tendency. Gizmodo matched a list of their users against a recently released list of hacked Sony users’ passwords. They found that two-thirds of those who used both services had the exact same password. That doesn’t sound too alarming, but chances are that these folks use the same password to access their Facebook, Gmail, or banking accounts as well.

That list of Sony users’ passwords was released by the hacker group LulzSec, which recently went on a widely publicized, 50-day rampage of cyber terrorism. They called it “50 days of Lulz”, which draws from the Internet abbreviation for laughing out loud (LOL). In addition to Sony, this unidentified group of computer criminals released major lists of secure data from the CIA and the U.S. Senate as well.

While it is claimed that LulzSec’s motivation is not to profit from their criminal acts but rather to have fun by spreading mayhem, some in the security industry have given the group credit for helping expose holes in large corporations’ online security systems. No matter how you slice it, their brazen activity of hacking into these companies’ computer systems is illegal. However, it is unfortunately an example of a new and growing trend called “hacktivism.” Along with other groups like Anonymous, hacktivists commit illegal acts online not just for fun but also for political reasons.

In a public message issued to defend its Sony break-in, the folks at LulzSec stressed that they are not “master hackers” and are simply exposing the vulnerabilities plaguing the Japanese company’s computer security systems. “Why do you put such faith in a company that allows itself to become open to these simple attacks?” they asked.

The answer to their rhetorical question is that we shouldn’t. But the unfortunate reality is that we do because we incorrectly assume that these large corporations behind the brands that we admire and trust will ensure the protection of our sensitive personal data. Groups like LulzSec help remind us that that the time has come for us to no longer take our online security for granted, and that we must take steps to ensure that our Internet activities and personal data are safe and secure.

In part 2 of this post, we will examine recent industry developments aimed at solving the problem of online identity theft and share steps that you can take to protect yourself from cyber criminals.

With the July 4th weekend behind us, summer vacation is now in full swing. It’s the time for cookouts, beach days, and lounging by the pool.

But are you looking for activities for your kids that are both fun and enriching? Below are a few safe and exciting pastimes that children and sometimes the whole family can enjoy:

1. Music Lessons: The sooner your child starts learning to play a musical instrument, the easier it will be. Plus, research has revealed a strong correlation between quality music learning programs and academic achievement. Check out our giveaway of music lessons below!
2. Summer camp: Nothing beats childhood memories gained from spending the summer at camp. You can choose a short sleep-away camp or day-camp for the whole summer. Either way, they are a great opportunity to make friends and to learn in nature’s classroom.
3. Art classes: Do you have a creative child? With public schools cutting down their art programs, now is a great time to enroll your child in a summer art class and help draw out a youngster’s inner Picasso. Whether it’s drawing, watercolors, or even crafts, the options are endless!
4. Science projects: Have a child with an inquisitive and analytical mind? Science kits are a fantastic way to keep your little Einstein occupied. If your community has a science fair, try entering so that they have a goal to reach for by the end of the summer.
5. Swimming: What better time to get your feet wet than summer vacation? Swimming is a lifelong skill that everyone should have, especially if you live near the coast. Enrolling your child in lessons at the YMCA will ensure that they don’t have to be a fish out of water at pool parties and beach days.
6. Babysitting: Do you have an adolescent at home that is old enough to watch younger children? He or she can make some extra money and stay busy by babysitting for friends and neighbors. It’s a good way to get them started on learning the value of money and becoming independent.
7. Visit the Library: Summer is the time to re-discover the joy of reading! Keep your kids’ minds active by visiting the local public library. Not only is it an escape from the heat, but reading opens up whole new worlds that will spark a child’s interest once the classroom opens in the Fall.

Enter our Summer Giveaway!

We are having a summer vacation contest that includes: a gift certificate for 4 thirty-minute music lessons with TakeLessons AND a $50 Best Buy card. The winner will redeem the lessons through the Music Lessons section of Safelist.com.*

You can enter in two ways**:

1. Follow Safelist on Twitter and tweet the following: “Win from @Safelist: 4 music lessons with @TakeLessons AND a $50 Best Buy gift card. http://bit.ly/piUYGe #winmusiclessons”
2. For an optional additional entry: Comment on this blog post and let us know how you plan to use your prize.

*Winner must be a registered member of Safelist.com to redeem the prize upon winning.

**There is a maximum of two entries per person – one on Twitter and one here on SafeBlog. The second entry counts only when the first entry is completed.

Submit your entries by 5 pm PDT on Sunday July 24 for a chance to win. We will announce the winner Monday morning, July 25 in the comment section below. We will also notify the winner via Twitter direct message.

Enjoy the rest of your summer and check back here soon for safety tips for your summer plans!

Here at SafeBlog and Safelist, we are 100% committed to public service.

As a business, we are constantly striving to build a classifieds marketplace that is not only better than any other on the Internet, but also safer. However, our ultimate goal is to help keep our communities, both real and virtual, safe for everyone. One of the ways we hope to achieve our goal is by enabling Safelist.com to disseminate timely AMBER Alerts to the users of our platform.

AMBER is an Alert Notification System created by the Child Alert Foundation in 1996, the same year that a 9-year old girl named Amber was kidnapped and murdered in Texas. It now stands for America’s Missing: Broadcast Emergency Response. When the appropriate police organization makes the decision to publish an alert, the U.S. Emergency Alert System issues it via radio, television, highway signs, and other media. There have been a total of 540 successful recoveries to date.

To help find a missing child, it is hypercritical to start the search efforts immediately. According to the U.S. Department of Justice, of the children abducted by strangers and murdered, 75% are killed within the first three hours. Therefore it is absolutely imperative that no time is wasted.

In order to quickly spread the word of a child’s kidnapping during those early moments when every minute is crucial, we have launched a feature on the Safelist website which will instantly notify you of an active AMBER Alert in your area.

Whenever you see the AMBER Alert icon (prominently displayed near the top of all Safelist pages) turn red, it means that there is an active AMBER Alert on a missing child in your area. Upon clicking the button, you will see detailed information about the alert, including the name of the missing child, a description and picture, and also any available information on the suspect. Since the alerts are hyper-targeted by zip codes, you will only be notified when an  alert is specifically relevant to your area. To guarantee the widest possible dissemination of these alerts, we will also be posting the information on Twitter and on our Facebook page as well.

No alert:

Active AMBER alert in your area:

In order for us to ensure safe communities for all our families, we need everyone’s help, and especially yours.  One way you can contribute is by quickly spreading the news of an active AMBER Alert amongst your friends and family. You may also follow us on Twitter @Safelist and on our Facebook fanpage to make sure that you are quickly notified of an alert in your area.

By working together, we will make certain that the all important initialminutes and hours immediately after a child’s kidnapping are not wasted, because that time could mean the difference between life and death of someone’s precious child.

You can learn more about AMBER Alert at their website (http://www.amberalert.gov/).