Tag Archives: Security

Why Are Companies Still Getting Hacked?

Security, Web Wise

It seems to be a recurring theme lately. We either hear in the news or read on social media that some other company has been hacked.  We all heard about the big Target breach which leaked personal data of 110 million (1/3 of US population) customers.

But many other companies have been hacked as well, but don’t make the big headlines like the Target breach.  Recently Kickstarter (respected crowd funding site), Snapchat and Skype’s social media accounts are among some of the other companies joining the hack attack crowd.

There are two simple answers to why this continues to occur.

  1. Criminal hacking, AKA as Crackers, is a full-time business that operates 24/7/365. While you sleep their still working. And the focus for these “businesses” is to get real dollars in the fastest way possible.  So they focus on the most popular companies with the largest audience for greatest gain.
    Read More

Beware of Heartbleed/OpenSSL Vulnerability Phishing Scams

News, Security, Web Wise

It seems like whenever there is a major virus outbreak or vulnerability announced, such as the Heartbleed vulnerability, scammers and malicious hackers are not too far behind trying to cash in on the moment and innocent.

Here is a phishing email (http://en.wikipedia.org/wiki/Phishing) recently received in one of my not-so-important email accounts. One that is used mainly for signing up for things like demos of products or coupons and promo codes.

Usually those places end up re-selling your email account, thus increase spam/phishing emails directed to that account. So I never use any of my main/important email accounts in those situations and neither should you.

Below is the subject and body of the message, along with a screen capture of what it looked like.

SUBJECT OF SPAM MESSAGE: Heartbleed/OpenSSL vulnerability: password change recommended

 

BODY OF SPAM MESSAGE: (hyperlinks removed for precaution)


Read More

Be Cautious : Cryptolocker Ransomeware On The Rise

Security, Software, Web Wise
Capture

In the past month, several antivirus companies have discovered a new ransomware variant known as Cryptolocker.   Ransomware is a type of malware on the rise that holds your precious files hostage for money.

It does that by searching your computer and shares for popular file extensions and encrypts them preventing you from accessing them ever again unless you pay up.

This type of ransomware does not spread to other PCs or replicate by itself.  This program needs your interaction to do its evil work.  Ransomware needs you to launch the program on your PC.  Of course, like phishing scams, It does this by trying to trick you into opening up some random attachment from a random email.

This attachment (could be a picture, zip file or other) contains the simple script to get it started doing its havoc on your PC.


If your PC gets infected then your files will more then likely be encrypted shortly after and will not be able to access them. It is impossible to decrypt the files without the private key. 


Read More

Why You Should Be Using LastPass Password Manager

Computer Tips, Security, Software, Web Wise

Best Password Manager for online websites Have you ever stopped and thought about how many online sites you visit that require a username and password?

According to a study by Microsoft an average user has about 25 accounts that require passwords, and alarmingly types an average of 8 passwords per day. That was several years ago and it is much greater then that today.

Because of this a slew of products are available to help you “contain” all your username and passwords for online sites and they all can be accessed by one “master” password.

Why LastPass?

I have used several similar products that provide this functionality but have found LastPass to be the best.  I have used LastPass for several years now and it “manages” over 300 sites in my LastPass “Vault”.

Yes this number of sites is probably not the norm, but when you include: forums, online stores, email accounts, health accounts, financial accounts, business accounts, social media, etc…the accounts, usernames and passwords add up rather quickly. With LastPass I only have to remember ONE single password to access any of the sites securely.

As a technology engineer and business owner where everything is in the “cloud”, security is one of the most important aspects.

Secure

No one at LastPass will ever have access to your sensitive information as it is 256-bit AES encrypted. The decryption occurs on your local device (PC, android, IOS etc..). And all data passing to the cloud uses SSL.
Read More