Security Tips with Captain Security

09Apr

Do you only patch your Microsoft Windows operating system or do you also patch your applications. Microsoft has done a very good job with Windows 7 and is a much more secure operating system than prior versions. What is not as secure is some of the underlying applications.

02Apr

If you are traveling on business and using public WIFI, be very careful. Public WIFI can be very insecure, hackers and crackers can setup what is known as a man in the middle attack. They basically put themselves between yourself and the Internet. They then can grab your passwords. I would suggest investing in 3G or 4G wireless card if you need to conduct business on public WIFI. It is well worth the cost.

21Feb

Most people these days are utilizing some sort of smart phone device. These devices offer many useful tools and functions, but you still need to be careful.

To secure a smartphone, you need to at least have a password to lock the device. You should also not click on links in emails from a smart phone. Phishing attacks and other type of social engineering are targeting smart phones first.

Remember your smart phone is just as vulnerable as your computer

13Feb

Did you know that your Smart Phone is the target for phishing and malware attacks? Over 70% of adult users connect to the web with mobile phones and 65% send and receive email messages. These email messages contain links to malicious websites and the user cannot see the web URL. Smart phones users are 3x times more likely to give up a username and password.

If you have a smart phone, make sure that you are putting anti-virus and malware protection on it. Also make sure that you do not click on web links with your smart phone.

06Feb

Most network equipment has telnet enabled by default. These days most devices can also support a protocol called SSH. I would suggest that you disable the insecure protocol telnet and enable a secure protocol called SSH. Why? Telnet allows passwords to be seen in clear text and if someone is smart, they are able to capture your password.

If you ever have a security audit, this will be one of the first items they are looking for.

29Jan

If you have read the news lately, passwords are becoming a target of attack. Organized crime has figured out how to profit using the internet and is hiring hackers to write code to harvest passwords. The security tip this week is how to protect yourself from being a victim.

The best practice is to pick a password that has nothing to do with you. You do not want a child’s name or parent’s name. The place you grew up is also bad. I also suggest using the letters of a phrase. For example you can use the first letters and the numbers in the following phrase, (I do not like the cold in January 2012!). It would look like this Idnltcij2012! It makes a strong password you can remember.

Also remember to use multiple passwords, that way if you are compromised you limit your exposure.

21Jan

Are you getting spyware even if you have web filtering and anti-virus? If so, then you need to block advertising. Some hackers had inserted malicious code into the ads and infected your computer. So to make your computer more secure, block advertising.