Homeland Security and US-CERT forward nonsense alert

Just got an email from US-CERT forwarding a FTC alert stating that you should use Equifax to monitor the effect of the Equifax breach on your credit accounts?!?!?!

See this line in the email…
Alternative security recommendations include using fraud alerts and free credit monitoring from Equifax.

Forgive me if I don’t get it. But this seems to me like letting the doctor that left the scalpel inside your gut, go back in for another try. It is the industry standard to have an outside agency or company monitor a break of this magnitude. Until they have proven they have fixed the breach AND a resolution has been implemented for ALL those that have been affected.

jeeesh !!!

CCleaner Hacked

If your using CCleaner, know that the company that produces it has said it’s been hacked. Uninstall ASAP and if you wish to still use it download the latest version.
via…
https://techcrunch.com/…/avast-reckons-ccleaner-malware-in…/

Watch out for fake antivirus programs

Just came across this Fake antivirus / scamware
“professional cleaning software”.

Could you be any more creative with a name?

If you decide to install security / antivirus software consult an expert first or you may end up with a fake that does nothing but take your money.

 

From Homeland Security / US-CERT

If your using Thunderbird to check your email…

Original release date: August 21, 2017

Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.3 and apply the necessary update.

Get the update version here

Know your software

On computers as well as smartphones I find people download software without even doing a google search to see if it is any good. Yet alone to check if the software is just bait for a virus infection or has had other issues discovered with it. Such as bugs or not working with certain O/S or hardware.

In addition software that is great today can be dangerous tomorrow if hackers compromise the source code or somehow are able to control the website providing the downloads for the software.

Yesterday some popular extensions for google chrome created by Chris Pederick have been reported to have been compromised by hackers.

If your running any of these add-ons you should remove them ASAP…

Chrometana
Infinity New Tab
CopyFish
Web Paint
Social Fixer

This is just one days hacking news as both Chrome extensions TouchVPN and Betternet VPN were also compromised in June.

So before downloading any program make sure you check it out. And if you need help ask a computer professional such as RenoGeek to help you with your software choices and security.

Ransomware protection

Once again a new ransomware is in the news. Starting in the Ukraine and spreading worldwide in just a few hours. As always happens once a new malware hits the news I get phone calls asking how the person can protect themselves from the new thing on the block. And my answer is the same. Good anti-virus products. Good computing habits and Back up, Back up and did I say backups?

With a good, well maintained backup even the worse virus or malware will just mean you need to re-install the O/S and copy your data back. Without a good backup you could spends months re-creating important work data and maybe loose important things like personal documents and pictures permanently.

In addition, a good anti-virus will help fend off malware and not clicking on every link sent via email from your friends and co-works can also limit your exposure to these new threats.

As always if you need help with computer security or other computer issues please give RenoGeek a call.

Information about wannacry

Most people over the last week have seen reports about the new ransom-ware that has been released and is infecting computers worldwide. Some big companies like Fed-Ex and even the English  health care system have had outages due to this new bug. And I have already gotten many calls and emails about it since the week began.

So what can you do about it? Well first as with all computer problems the best insurance is a good backup stored in a location under your control. The virus can not encrypt files it has no access to. So a back up on a external hard drive not attached to your computer is ideal.

Next the older your O/S the higher your chance of getting this or many of the other viruses floating around the Internet. So update to a current O/S and make sure you keep up with the current security patches. Which you can find here.

Last practice safe hex (old computer joke)…
Don’t click on links from unknown sources. Don’t read email from people you do not know or with weird spam like subject lines. Don’t visit download and porn sites. Use a modern antivirus products (that are also updated).

If none of this makes sense or your not sure you have followed these instructions correctly, feel free to give RenoGeek a call to setup a service call to double check your security.

LastPass warns users while it fixes a ‘MAJOR’ vulnerability.

While I am all for any attempt by end users to secure their passwords, I have always been a bit leery of using services such as Lastpass. As they are a high value target. Hackers know if they can get into a service like this they will have access to millions of accounts. I prefer my passwords in a spread sheet encrypted with a strong password. Seems old school to some. But I don’t have to change all my passwords every time Lastpass is in the news. And this is not the first security threat they have had to warn users about.

So….

If your using LastPass, time to do the password dance again…

ie: change your passwords now.

Use a VPN

With the privacy laws in the USA and other countries being rolled back. It’s more important that you take your privacy more seriously. One of the easiest ways to do this is to use a VPN (Virtual private network). But most VPN’s can be tricky for the average computer user to setup.

I have found a web browser that has a built in VPN. So the setup is as easy as clicking on one button in the web browser.

The Browser is called Opera and all you have to do is click on the VPN tab in the address bar and turn the slider to “ON”.

If you use a VPN and a browser in private mode your chances of getting tracked by your ISP and advertisers.

Here is where to get the browser and how set it up…

The browser.  http://opera.com

It’s VPN setup…
http://help.opera.com/opera/Windows/2393/en/private.html#vpn

Viewing in Private mode…
http://help.opera.com/opera/Windows/2393/en/private.html#privateWindow