Sarah Miller
Common Scams!
Common Scams!

internet of things

Security Series: Part 2 of 4

SUDDENLY IT'S ALL ABOUT SECURITY! PART TWO

Low Risk (right now*)

So what do you really need to be concerned about? First you need to remember that security precautions are only good when they are used. If you have a home security system installed but do not activate it when you leave the house, you are negating any benefits of having the system in the first place. So let's start with taking a good look at what you need to be concerned about and how to protect yourself.  

DDoS attacks are typically directed at large companies - think Amazon, eBay, Twitter, Facebook, etc. - so not directly targeting average users. They are not looking for data but rather to interrupt the website itself.  BUT - if you use any cloud-based service such as Gmail/Google, iCloud, Yahoo, etc., you may not be able to access your data for a time should a DDoS attack be directed at any of the sites you use.

*Be sure to have a hardcopy of any critical data.*

Ransomware has been becoming more prevalent on PCs over the last few years but it was only in March of 2016 that ransomware was able to affect a Mac. The best way to protect yourself from ransomware is to make regular backups of your important data

AND keep them separate from your computer (to prevent the malware from trying to meddle with your backups too). To truly do this effectively, it requires either an off site backup via a Cloud service such as Backblaze or a separate backup that you run regularly and then store somewhere such as a safe deposit box. This would be in addition to your local backup!! You can read more in my article from last June

Internet of Things refers to 'smart devices' that connect to your Internet or create their own networks and encompasses everything from thermostats, lights, security systems, printers and even cars and baby monitors. First you need to know that these type of devices are presenting a whole new area of vulnerability that is not so easy to understand or protect. Consumer Reports has an excellent article on the topic. We are mostly dependent on manufacturers stepping up and securing their devices and/or giving users a way to do so.  In the meantime IF you have any device of this type, be sure to frequently change the default password for controlling the device (if you can) and turn off any unneeded features.  

*Something that is low risk right now can change in a moment. Security is an always morphing/moving target and proactive is much better than reactive. Next week I will talk about Moderate and High Risk concerns. 

Security Series: Part 1 of 4

SUDDENLY IT'S ALL ABOUT SECURITY!!

SECURITY.jpg

Over the last several months,Internet, wireless and computer security has been at the forefront of the news. From DDoS (Distributed Denial of Service) attacks, to the security (or lack of ) with the Internet of "things"  to computers being taken over for ransom or compromised via malware, we can no longer ignore the risks. 

In this series of four articles I hope to help you understand security basics, the real risks and how to discern annoyances with low risk. You will also learn how to view these risks from a sensible standpoint, to identify when the risk is real and when you need to take action.

This is an important topic with plenty of information to absorb. To make this easier, I am going to release this article in series of weekly newsletters for four weeks (one of which will be the usual February newsletter). 

 

PART ONE: DEFINITIONS AND TERMS

Let's start with Definitions of a few important terms:

DDoS - Distributed Denial of Service Attacks
A cyber-attack where the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host connected to the Internet. Denial of service is typically accomplished by flooding the targeted machine or resource with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled. 

Internet of Things
The connection via the Internet of computing devices embedded in everyday objects, enabling them to send and receive data."If one thing can prevent the Internet of things from transforming the way we live and work, it will be a breakdown in security." Think smart lights, thermostats, security cameras, printers, personal assistant devices like Amazon Echo, etc.

malware.jpg

Malware
Short for "malicious software," malware refers to software programs designed to damage or do other unwanted actions on a computer system.

Common examples of malware include viruses, worms, trojan horses, and spyware. Viruses, for example, can cause havoc on a computer's hard drive by deleting files or directory information. Spyware can gather data from a user's system without the user knowing it. Malicious websites can include anything from the Web pages causing pop ups in your browser that pretend to be a legitimate company asking you to call their tech support because there is a problem with your computer to out right dangerous websites that lock up your browser. 

Ransomware (a type of Malware)
Ransomware is a type of malicious software that restricts access to a computer system in some way and demands the user pay a ransom to the malware operators to remove the restriction.

Phishing
The fraudulent practice of sending emails that appear to be from reputable companies in order to trick individuals to reveal personal information, such as passwords and credit card numbers.

Risky Behaviors
In addition to the defined risks above we are also vulnerable when using an open/unlocked wireless network, traveling with unlocked/unsecured devices such as an iPhone, iPad or laptop, using old software or using weak/the same passwords for anything. 

OH MY GOSH!! There is so much here!! 
So what do you really need to be concerned about? 
Read Part 2 here!