Create a family and friends password today!

Just got my 3rd scam phone call today. Which turned out to be the classic grandparents scam. Some SOB screaming on the other end of the line that something happened and he need granddads (I have no kids) credit card info right away to get out of some jam. This and other scams like it work because they can stress older people into thinking something is wrong with their kids, grand kids or friends.

Almost everybody has gotten calls like this in the past and unfortunately a number of my customers fall for it because with practice these scammers put on a good show.

But here is a quick thing you can do for all your family that can stop scams like this cold in their tracks. Set up a family password that you only share with your family and close friends. It’s dirt simple, make a easy to remember phrase like “pink orange juice” and share it with the people close to you. Tell them if there is some future emergency to use that phrase so you know it’s really them and not a scammer. Then if (or when) one of these losers call, ask them for the “Family Password” and wait for them to hang up the phone.

Christmas Gadget Help

Don’t forget to plan ahead and schedule with RenoGeek to set up all your new devices and computers. Most computer technicians are very busy the first few weeks of the new year, so make sure you’re prepared ahead of time. Having a pro setup your new equipment will save you lots of time, while also making sure your new toys are secure.

Comcast, Verizon, and AT&T all down

There are reports from all over the Internet that major ISP’s are down or experiencing major connectivity issues. So it’s not you this time.

A Comcast tweet is calling it an “external network issue”. While first reports seemed to suggest an attack of some kind it seems to be a switching error on the Internet backbone.

WPA WiFi standard has been compromised

Rumors floating around the computer security world the last few days have been verified. Researchers have found a way to bypass the security used on most wireless routers, laptops and cell phones.

The flaw is in the WiFi standard itself and not with any make or brand of routers. So it may take some time before a wide release of a fix becomes available.

A first look at what sort of attack may be used against this flaw seems to indicate that an attacker would have to be in range of a WiFi device. So while still serious, it would limit attacks to hackers within a few hundred feet of your router.

For now I am sure that the WiFi standard will be worked on as well as a rush by manufactures to implement patches. As this flaw has just been found there are only a few things an end user may do at this point…

  1. Update your security patches for routers and other WiFi devices.
  2. Limit your public WiFi use until patches are released (AND INSTALLED).
  3. Make sure the websites you’re using are secure by logging onto only secure sites that use the HTTPS protocol. If you do not know how to do this then install a plugin for your browser such as HTTP Everywhere that will make sure your connected securely.

UPDATE: 1:16 PM 10/16/2017

It seems Microsoft had a heads up with this problem and has some fixes. You can choose just to do a regular update to get your computer patched or go here and download for your “flavor” of Windows.

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-13080

Taking out the trash

Seems in the past few weeks a bunch of old tech favs have fallen by the wayside.

Piriform’s Ccleaner had a bad security breach that left it’s utilities hacked and without a clear response and explanation on how their security failed so badly are now off my list of recommend software.

AIM Messenger, once a classic instant messaging platform is calling it a day. Now if AOL will just stop scamming all the computer illiterate with their AOL Desktop software I will be happy.

And Today Microsoft admits that they are now out of the phone business. Letting Windows 10 mobile die off. If not so gracefully.

The one rule in technology is it always changes, and I am happy to see the above fade away in favor of more modern,  secure and helpful technology that I can tell my computer repair clients about.

 

 

Homeland Security and US-CERT forward nonsense alert

Just got an email from US-CERT forwarding a FTC alert stating that you should use Equifax to monitor the effect of the Equifax breach on your credit accounts?!?!?!

See this line in the email…
Alternative security recommendations include using fraud alerts and free credit monitoring from Equifax.

Forgive me if I don’t get it. But this seems to me like letting the doctor that left the scalpel inside your gut, go back in for another try. It is the industry standard to have an outside agency or company monitor a break of this magnitude. Until they have proven they have fixed the breach AND a resolution has been implemented for ALL those that have been affected.

jeeesh !!!

CCleaner Hacked

If your using CCleaner, know that the company that produces it has said it’s been hacked. Uninstall ASAP and if you wish to still use it download the latest version.
via…
https://techcrunch.com/…/avast-reckons-ccleaner-malware-in…/

Watch out for fake antivirus programs

Just came across this Fake antivirus / scamware
“professional cleaning software”.

Could you be any more creative with a name?

If you decide to install security / antivirus software consult an expert first or you may end up with a fake that does nothing but take your money.

 

From Homeland Security / US-CERT

If your using Thunderbird to check your email…

Original release date: August 21, 2017

Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.3 and apply the necessary update.

Get the update version here

Know your software

On computers as well as smartphones I find people download software without even doing a google search to see if it is any good. Yet alone to check if the software is just bait for a virus infection or has had other issues discovered with it. Such as bugs or not working with certain O/S or hardware.

In addition software that is great today can be dangerous tomorrow if hackers compromise the source code or somehow are able to control the website providing the downloads for the software.

Yesterday some popular extensions for google chrome created by Chris Pederick have been reported to have been compromised by hackers.

If your running any of these add-ons you should remove them ASAP…

Chrometana
Infinity New Tab
CopyFish
Web Paint
Social Fixer

This is just one days hacking news as both Chrome extensions TouchVPN and Betternet VPN were also compromised in June.

So before downloading any program make sure you check it out. And if you need help ask a computer professional such as RenoGeek to help you with your software choices and security.