Rumors floating around the computer security world the last few days have been verified. Researchers have found a way to bypass the security used on most wireless routers, laptops and cell phones.
The flaw is in the WiFi standard itself and not with any make or brand of routers. So it may take some time before a wide release of a fix becomes available.
A first look at what sort of attack may be used against this flaw seems to indicate that an attacker would have to be in range of a WiFi device. So while still serious, it would limit attacks to hackers within a few hundred feet of your router.
For now I am sure that the WiFi standard will be worked on as well as a rush by manufactures to implement patches. As this flaw has just been found there are only a few things an end user may do at this point…
- Update your security patches for routers and other WiFi devices.
- Limit your public WiFi use until patches are released (AND INSTALLED).
- Make sure the websites you’re using are secure by logging onto only secure sites that use the HTTPS protocol. If you do not know how to do this then install a plugin for your browser such as HTTP Everywhere that will make sure your connected securely.
UPDATE: 1:16 PM 10/16/2017
It seems Microsoft had a heads up with this problem and has some fixes. You can choose just to do a regular update to get your computer patched or go here and download for your “flavor” of Windows.
Seems in the past few weeks a bunch of old tech favs have fallen by the wayside.
Piriform’s Ccleaner had a bad security breach that left it’s utilities hacked and without a clear response and explanation on how their security failed so badly are now off my list of recommend software.
AIM Messenger, once a classic instant messaging platform is calling it a day. Now if AOL will just stop scamming all the computer illiterate with their AOL Desktop software I will be happy.
And Today Microsoft admits that they are now out of the phone business. Letting Windows 10 mobile die off. If not so gracefully.
The one rule in technology is it always changes, and I am happy to see the above fade away in favor of more modern, secure and helpful technology that I can tell my computer repair clients about.
Just got an email from US-CERT forwarding a FTC alert stating that you should use Equifax to monitor the effect of the Equifax breach on your credit accounts?!?!?!
See this line in the email…
Alternative security recommendations include using fraud alerts and free credit monitoring from Equifax.
Forgive me if I don’t get it. But this seems to me like letting the doctor that left the scalpel inside your gut, go back in for another try. It is the industry standard to have an outside agency or company monitor a break of this magnitude. Until they have proven they have fixed the breach AND a resolution has been implemented for ALL those that have been affected.
If your using CCleaner, know that the company that produces it has said it’s been hacked. Uninstall ASAP and if you wish to still use it download the latest version.
Just came across this Fake antivirus / scamware
“professional cleaning software”.
Could you be any more creative with a name?
If you decide to install security / antivirus software consult an expert first or you may end up with a fake that does nothing but take your money.
If your using Thunderbird to check your email…
Original release date: August 21, 2017
Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.3 and apply the necessary update.
Get the update version here
On computers as well as smartphones I find people download software without even doing a google search to see if it is any good. Yet alone to check if the software is just bait for a virus infection or has had other issues discovered with it. Such as bugs or not working with certain O/S or hardware.
In addition software that is great today can be dangerous tomorrow if hackers compromise the source code or somehow are able to control the website providing the downloads for the software.
Yesterday some popular extensions for google chrome created by Chris Pederick have been reported to have been compromised by hackers.
If your running any of these add-ons you should remove them ASAP…
Infinity New Tab
This is just one days hacking news as both Chrome extensions TouchVPN and Betternet VPN were also compromised in June.
So before downloading any program make sure you check it out. And if you need help ask a computer professional such as RenoGeek to help you with your software choices and security.
Today is save net neutrality day.
Many companies want your law makers to change how information is processed by your Internet provider. While it might seem innocent, know that the Internet you enjoy today was built on equal access for all.
If these companies have their way within a few years you will find that with data caps and speed tiers your experience on the Net will become slower (for the most part) and more expensive. With you having to pay a premium to access your favorite websites and services.
Contact your lawmakers today and let them know you want to keep the Net Neutrality rules that are already in place. If you don’t, then expect to pay more in the future for sites like Netflix, Hulu, Amazon and Youtube.
Once again a new ransomware is in the news. Starting in the Ukraine and spreading worldwide in just a few hours. As always happens once a new malware hits the news I get phone calls asking how the person can protect themselves from the new thing on the block. And my answer is the same. Good anti-virus products. Good computing habits and Back up, Back up and did I say backups?
With a good, well maintained backup even the worse virus or malware will just mean you need to re-install the O/S and copy your data back. Without a good backup you could spends months re-creating important work data and maybe loose important things like personal documents and pictures permanently.
In addition, a good anti-virus will help fend off malware and not clicking on every link sent via email from your friends and co-works can also limit your exposure to these new threats.
As always if you need help with computer security or other computer issues please give RenoGeek a call.
The new Amazon Echo will have a “drop-in”, (feature???) where people you approve can just “drop-in” and video chat instantly. No picking up or screening the call, they just show up on your screen and start chatting. No warning.
In a world that has trained people already to never shut off their cell phones and spend the first part of their day checking emails and updating their status and where people think you died if you don’t answer a text in under a minute, it is a disturbing trend.
We already get rated at work on how “Available” we are and even Facebook will show how often and how fast you respond to their version of text. Now in this always on world companies are pushing us to never be away at all. Even in the book 1984 there were corners to hide in from time to time. But forget that in the new 24/7 “never away” world we are creating.
While I have spent my life working with and promoting all things “Tech”. I resist the idea that you should or even must be available to anybody in the world 24/7.
Technology is supposed to make your life better and free you to do the things you like. If any software or hardware device increases your workload or decreases your enjoyment then it has missed the whole point of why it should exist in the first place.