July 30, 2010

You are here: Home / Online Safety

More Thoughts About Passwords

October 26, 2009 By Steve 1 Comment

I really should have knocked on wood when I wrote about passwords last week. I was practicing what I preached and knew that I was safe. But sure enough, my old Yahoo email account was just hijacked.

I stopped using this account after I signed up for Gmail, and it had some really old contacts in it. At one point a while back, and after not logging in for over a year, Yahoo sent me an email saying that the account was going to be deactivated. So I logged back in, deleted old messages, contacts, etc, and moved on.

But apparently, those old contacts were not actually deleted. They must have remained somehow linked to the old account, and available to anyone that would be able to hijack it. When whoever or whatever hijacked the account, they were able to send an email to all the contacts linked to the account and make it appear that it was sent by me. The email contained a hyperlink to a program that could be harmful to your PC.

I’m still trying to contact the folks that may have received the malicious email and make sure they are OK, and so far it doesn’t look like anyone was hurt.

Here is a summary of what this episode teaches us. I think it applies to everyone.

  • Just as in the real world, you are never 100% safe. You always need to be on guard.
  • Old accounts that you no longer use may still contain data that could be useful to hackers.
  • Make sure that the passwords you choose for ALL online email accounts are the strongest possible. They should contain at least 8 characters, have no dictionary words or other recognizable patterns and be a mix of alpha, numeric and symbol characters.
  • Make sure your anti-virus and anti-spyware programs are working and contain the most recent updates.

For more information on good password selection, Thoughtpick.com has a very good article on creating strong passwords.

/Steve

Filed Under: Featured Articles, Online Safety Tagged With: ,

Passwords – How Safe is Your Online Information?

October 20, 2009 By Steve Leave a Comment

Your online security is only as good as your password. You probably make regular visits to dozens of sites that require passwords, so keeping track of them can be a chore. Dealing with so many passwords causes people to do some very unwise things. They might write them down, or store them on a computer file, or even use the same password for everything. All of these defeat the purpose of passwords and can result in compromising your important data.

Recently, an anonymous user posted 10,000 usernames and passwords that had been lifted from Windows Live Hotmail accounts. An online internet security company analyzed these passwords and found some very distressing trends.

  • The most common password was ’123456′
  • The second most common password was ’123456789′
  • Many passwords were people’s names
  • Only 6% used strong passwords which contain a combination of alpha, numeric and other characters

With the requirement for so many passwords, how do you keep track of them?

Security experts say that passwords should use a combination of letters, numbers and other characters and shouldn’t include names, dates or dictionary words. They also say that you should change your password frequently. It’s no wonder that people feel they have to write them down.

Here are some simple rules and tips to help you with coming up with secure passwords and then remembering them when you do:

  • Make Passwords Hard to Guess but Easy to Remember
    When establishing passwords, think of a short phrase that only you would remember and make an acronym. For example, “I Love The Rain” would yield ‘iltr’.  Now, capitalize one or more of the characters and you have ‘iLtr’.  Using this method, you will come up with virtually unguessable passwords.
  • Develop Several ‘Core’ Passwords
    The previous tip will result is a ‘core’ password. Adding at least two numbers and a special character will result in a very strong password. The numbers you use can be from a phone number, address or date. Varying where you put the numbers and special characters will make the password even more secure.
  • Never Compromise Your Password
    Make it hard for hackers and never write your password down. If you sign up for a service that sends you an email confirmation with your password printed in plain text, change it immediately. Never give your password away.  If your password is out of your control, so is your personal information.
  • For Low Security Sites, Use the Same Password
    Sites that don’t store any personal information don’t pose much of a security risk. If you find that you may need to enter personal information later, change your password to make it more secure.
  • Use Extra Security for Financial Passwords
    Each financial site should ALWAYS have its own password. These sites can result in the most risk if your account is compromised. Select the most secure password you can and change it monthly.

/Steve

Filed Under: Featured Articles, Online Safety Tagged With: ,

Microsoft Security Essentials

September 29, 2009 By Steve Leave a Comment

msseEnhance your war on Spyware and Viruses.

Now available for download, Microsoft Security Essentials (MSE) is a comprehensive Antivirus and Antispyware solution to keeping your PC safe from attacks.

This free application replaces Windows Defender and is a strong competitor for current antivirus applications. It has been in Beta release since June and has received mostly positive reviews.

If you are looking for a free solution to combat both Spyware and Viruses, consider this Microsoft offering. It is highly recommended.

/doc

Filed Under: Digital Lifestyle, Online Safety Tagged With: , , ,

Safe Surfing

August 27, 2009 By Steve Leave a Comment

My PC would be of little value to me if I couldn’t explore the internet.  But the internet is filled with nasty places that want to do harm to both you and your PC.  With a little knowledge and preparation, you can have a PC that can provide maximum enjoyment with minimal risk.  Here are the 3 most important thing you must have for safe surfing:

- Updated Antivirus Program
- Updated Windows Defender
- Updated Common Sense

1.  Anti Virus Program
Links are provided on the main page to two great, free antivirus programs.  The main reasons I like these so much is that they don’t consume a lot of system resources and they are continuously updated.  It’s basically a set and forget situation for ether one.

A quality antivirus program makes sure that your PC can detect and remove *most* threats that come your way.

UPDATE:  Read about Microsoft Security Essentials here

2.  Windows Defender
Windows Defender protects your PC against spyware, malware and adware which can cause your PC to run erratically or even crash by detecting and removing known spyware from your PC.  It also features real-time protection which works while you are online.  Windows Defender updates itself very frequently through the Microsoft Update process.

Windows Defender is included with Vista and WIN7.  It is available for XP here http://www.microsoft.com/downloads/details.aspx?FamilyId=435BFCE7-DA2B-4A6A-AFA4-F7F14E605A0D&displaylang=en&mg_id=10134

UPDATE:  Read about Microsoft Security Essentials here

3.  Common Sense
You have to keep your eyes wide open to all possible sources of attacks on your PC.  Threats can come from almost anywhere, but are mostly concentrated around certain types of sites.  Sites to be cautious of are:

Online Gaming sites
File-Sharing sites
Social Networking sites
Adult content sites
etc.

Be careful when any window pops up asking you to click something. One of the most pervasive techniques that hackers use is to pop up a window that says that your PC has a virus and that you must “click here” to remove it.  And when you click it, you open youself up to whatever is lurking.  Sometimes, there will even be a button that looks like a common ‘close’ button, but in reality is another gotcha.  To be safe, use the keyboard shortcut Alt-F4 to close the window safely.

Sometimes, even popular programs contain an option to also install a companion or affiliate program that can slow down your PC by monitoring your browsing habits in order to suggest similar sites that might interest you.

If you practice safe browsing habits and have good anti-virus/anti-spyware protection, the chances of your being attacked are greatly reduced.

/doc

Filed Under: Online Safety Tagged With: , , ,

Windows Defender

August 25, 2009 By Steve Leave a Comment

Windows Defender is your first line of defense against the bad guys. 

Introduced in January of 2005,  Windows Defender is Microsoft’s free anti-spyware application.  It is included free with Windows Vista and Windows 7, and is available as a free download for Windows XP. 

It was announced in December of 2008 that Windows Defender is being discontinued and will be replaced by a new application known as Microsoft Security Essentials (MSSE).  MSSE is currently in Beta release and is expected to be released in November of 2009. 

More info on Windows Defender:
http://www.microsoft.com/windowsxp/using/security/expert/glenn_windefender.mspx

 

/doc

Filed Under: Online Safety Tagged With: ,
« Older Posts