General Discussions => General discussions => Topic started by: Cindy on September 23, 2016, 06:12:35 PM Return to Full Version
Title: A warning on computer security and scams etc
Post by: Cindy on September 23, 2016, 06:12:35 PM
Post by: Cindy on September 23, 2016, 06:12:35 PM
Most of us should be very aware of scams and such issues on our computers and the need for running anti-virus software and being careful of security.
Do be aware that downloading anti-virus software from non-reputable companies can also be a scam and led to your computer being hijacked or ransomed.
Another issue is now arising with the creation of USB's that destroy the hard drive when they connect to your computer. These are available online and seemingly people are distributing them to unsuspecting people. The computer hard drive is I believe permenantly destroyed.
Such USB's are being left for unsuspecting members of the public to pick up and once they have been connected to your computer 'to see what is on this USB' your computer is dead.
In Australia they are being left in peoples mail box
https://www.vicpolicenews.com.au/news/harmful-usb-drives-found-in-letterboxes
Be very careful of your personal security and of the security of your communication devices including your computer.
Title: Re: A warning on computer security and scams etc
Post by: V M on September 23, 2016, 06:24:46 PM
Post by: V M on September 23, 2016, 06:24:46 PM
Yep, I've had a few problems with hackers lately and there was a major world wide hack just yesterday >:( I've been changing all my passwords and security questions :P
Title: Re: A warning on computer security and scams etc
Post by: SadieBlake on September 23, 2016, 11:12:41 PM
Post by: SadieBlake on September 23, 2016, 11:12:41 PM
It seems yahoo was compromised in 2014 and only just figured it out, that's the worst kind.
Anyhow, today just changing passwords isn't enough. Most reputable services now support 2 factor authentication and even there there are risks - e.g. RSS security's widely used SecureID has been compromised more than once due to flaws. Security experts generally agree that proprietary solutions like RSA uses are prone to more attacks than systems that can be externally validated.
The two 2fa systems that I have the most faith in are Duo security from duo.com and yubikey which is a hardware solution which authenticates through your USB port.
I use both, both for my Google account and for my work account (where I don't have a choice). The larger banks are also incorporating 2fa in their online offerings.
2fa means the attacker needs to both compromise your password and your device (key or cellphone).
As a way to manage good password practices I'd suggest LastPass. Again, their algorithms have been externally verified. Their app and browser plugin let you store safe passwords locally.
Anyhow, today just changing passwords isn't enough. Most reputable services now support 2 factor authentication and even there there are risks - e.g. RSS security's widely used SecureID has been compromised more than once due to flaws. Security experts generally agree that proprietary solutions like RSA uses are prone to more attacks than systems that can be externally validated.
The two 2fa systems that I have the most faith in are Duo security from duo.com and yubikey which is a hardware solution which authenticates through your USB port.
I use both, both for my Google account and for my work account (where I don't have a choice). The larger banks are also incorporating 2fa in their online offerings.
2fa means the attacker needs to both compromise your password and your device (key or cellphone).
As a way to manage good password practices I'd suggest LastPass. Again, their algorithms have been externally verified. Their app and browser plugin let you store safe passwords locally.