Accidentally Clicked on a Phishing Link – Now What

Accidentally Clicked on a Phishing Link – Now What

You know that searing flush-faced feeling when you pretty much know you made a mistake with a slip of the finger? Sometimes it’s sending a text too soon or responding to an email without editing your response. Other times it’s when you click on something you likely shouldn’t have … and then the “uh oh” escapes … and then the big sigh.

 

When we multitask, whether it is at work or at home, we do tend to slip up at times and open something that we shouldn’t. Then enters adware, malware, ransonmare, spyware, and whatever-else-is-next-ware into our lives.

 

Oops! Now what?

 

There are some imperative steps to take to alleviate harm to you and/or the network you may be connected with:

– Try not to panic. This happens to everyone. Antivirus and anti-malware will come into play and you will need to have a full system scan. But first …

– End the session immediately by turning off Wi-Fi, unplugging from an ethernet cable or completely shutting down all of your devices.

– Initiate a back up of your files. Since you won’t be connected to the internet at this point, you won’t be able to accomplish this to the cloud. Having an external drive, DVD or thumb drive are always nice to have on hand during times like these.

– Change your login/password to email account(s) and enable two-factor authentication if this hasn’t already occurred.

– If you are employed by a company or organization, reference your manual and let your network administrator know of the potential issue.

– After all is said and done, check your antivirus/anti-malware software and run a full scan.

 

Being informed of what steps you may need to take before a slip up happens can help ease the potential damage (and your stress level) if it does. As always, if you need help or have any concerns, we are available 24/7/365 for you.

Do You Know What Alexa, Google and Siri Are Up To?

Do You Know What Alexa, Google and Siri Are Up To?

Not everyone has a smart speaker in their home or office, but most of us do have a smart phone. When setting up your device, you were likely asked whether or not you wanted to activate your assistant. Doing so doesn’t take very long … you say a few phrases when prompted so it can get to know your voice and that’s pretty much it … you officially have a virtual assistant. Have you ever wondered how your assistant actually works?

 

Virtual assistants, such as Amazon’s Alexa, Apple’s Siri and Google’s Assistant, use artificial intelligence (AI) to parse what is said or typed and then provide useful information back. Want to know something quickly without lifting a finger? Simply say a wakeword phrase such as, “Hey Siri,” or whatever your smart application is called, and ask away. You could say, “Who wrote Gone with the Wind?” or “What is 23.5 times 6?” or “Play I Can’t Get No Satisfaction.” When you talk to a smart phone or speaker, you know that your voice is being recorded and that there will be a result – sometimes it’s an answer, other times the correct action is taken or occasionally there may be an inquiry back to clarify the request. But, just as false starts happen in races, false positive recordings can be triggered by something as simple as someone zipping up their jeans because it sounds to Siri like the person’s muffled voice. If you have ever experienced Siri being accidentally activated during a time when not requested, you know that it can be a bit embarrassing … and a little unnerving.

 

If privacy is a big concern of yours, you might want to throw your smart speaker or device out the window. These instruments are indeed paying attention to us, but does this mean that they can listen and record all of the time? Amazon hopes so. A newly revealed patent application filed by the company is raising privacy concerns over an envisaged upgrade to the company’s smart speaker systems. This change would mean that, by default, the devices end up listening to and recording everything you say in their presence. The idea is similar to Apple’s live photos, where video is recorded before and after a user takes a picture. Since the application is being asked to do something for us, then we are basically acknowledging that our privacy isn’t desired at that point in time.

 

Amazon.com, Inc. employs thousands globally to help improve the Alexa digital assistant through its line of Echo speakers. Rene Ritchie explained in his latest blog (July 28, 2019) titled Why People Are Freaking Out Over Siri Privacy Right Now, that “the team listens to voice recordings captured in homes and offices. The recordings are transcribed, annotated and then fed back into the software as part of an effort to eliminate gaps in Alexa’s understanding of human speech and help it better respond to commands.” Ritchie remarked, “If Amazon does decide to use the tech in its products, it’s unclear whether customers would be able to opt out of the ‘always on’ recording.”

 

Ritchie continued on with detail about Amazon’s patent application. “While the patent application explains devices would record audio in 10 to 30 second increments and automatically delete unneeded clips, privacy experts say it is cause for concern because it demonstrates tech companies’ growing ability to surveil customers at all times and potentially misuse collected information.”

 

Let’s take a glance at another tech giant, Apple, who recently told The Guardian: “A small portion of Siri requests are analyzed to improve Siri and dictation. User requests are not associated with the user’s Apple ID. Siri responses are analyzed in secure facilities and all reviewers are under the obligation to adhere to Apple’s strict confidentiality requirements.” The company added that a very small random subset, less than 1% of daily Siri activations, are used for grading, like whether the request was intentional or a false positive that accidentally triggered Siri, or if the response was helpful. They added that those snippets used for grading are typically only a few seconds long.  But, what if those few seconds just happen to be you discussing a very private medical issue with your doctor or a very sensitive issue with a family member? How can you prevent being part of a company’s grading process? Currently, the only way to have peace of mind that a random stranger won’t listen in on your Apple device is to stop using Siri entirely.

 

Heidi Messer for The New York Times wrote that “consumers should not be so paranoid about privacy. “The right to absolute privacy no longer exists and excessive regulation of tech companies will only stifle innovation and prevent job creation.” Privacy in the digital age may not be completely deceased but it is hanging on by its fingernails. Just remember, when you agree to use these products, you’re often giving up much more than you think.

 

 

 

 

Flying This Summer? How to Prevent Juice Jacking

Flying This Summer? How to Prevent Juice Jacking

Vacations are indeed wonderful. Traveling to a new destination or to a familiar favorite locale is a treasured experience with memories that can last a lifetime. On the other hand, traveling on business might not be as fun, but it is a must for many. Going from point A to point B can be stressful at times. Weather, flight delays, overbooked flights, long layovers or not having enough time between flights causing you to miss your next connection … you name it, it can happen. Next thing you know, your device battery is getting low. So, what do you do? Is it safe to recharge at a public charging station? Not always.

 

Juice jacking is a type of cyber attack and typically involves public USBs. Public charging stations, such as those found in airports, train stations, hotel lobbies, and even your rental car, can make your personal data very vulnerable and open your device up to malware.

 

As reported in Forbes, a growing number of nation-state hackers have been training their sights on travelers. New research from IBM, in the 2019 IBM X-Force Threat Intelligence Index, reveals that the transportation industry has become a priority target for cybercriminals as the second-most attacked industry — up from tenth in 2017. Since January 2018, 566 million records from the travel and transportation industry have been leaked or compromised in publicly reported breaches.”

 

What steps can you take to prevent juice jacking from happening to you?

– Don’t leave home without a fully charged battery.

– Carry a charging cord with you so you can use a wall socket instead of a public USB.

– Purchase an external battery pack.

– Turn off your phone to save your battery when feasible.

– Learn how to optimize your device’s battery settings.

 

 

 

Sextortion: How to Protect Our Youth

Sextortion: How to Protect Our Youth

Unfortunately, our children are at risk from online predators in many different ways. Sextortion is a criminal act and horrible nightmare to victims and their families.  Learning what sextortion is and understanding how it could happen are the first steps in prevention.

 

What is sextortion? The Federal Bureau of Investigations (FBI) explains that sextortion occurs when an adult, through threat or manipulation, coerces a minor into producing a sexually explicit image and send it over the Internet.

 

How would this happen? The perpetrators utilize social media, games, chat and dating apps to capture their victims. The criminals will tell children that they will make them famous or pay them an exorbitant amount of game credits, crypto-currency, cash, or gift cards if they will participate.

 

Why would my child engage in this act? Sextortion is happening when minors feel most comfortable … when they are on their device, using an app, or playing an online game that is part of their daily routine. The adults that do this crime know that your children might not yet be mature enough to consider the consequences of an action and make decisions like an adult would. Any child with Internet access is at risk. The FBI has interviewed victims as young as 8 and reports that the crime affects all children regardless of gender, ethnicity, and socioeconomic groups. The victims have been honor-roll students, children of teachers, and student athletes. The only common trait is that they are all online.

 

Why don’t victims ask for help? Once the criminal has your child’s single photo or video, they will threaten them with exposure; essentially, coercing your son or daughter to provide them with additional photos or videos and in even more compromising, explicit situations. The criminal knows that fear drives action. … fear of being in trouble by their guardians, of having their device taken away, of being persecuted for pornography, and of feeling massive embarrassment and shame.

 

What can we do to prevent sextortion? Discuss this topic openly with your children. Let them know that they can tell you anything and you are always there to help them. Communicate that you do not want them to chat with anyone they don’t already know online. Educate them that any photo or video they may take is already public information and not just on their device. Limit their device use. Make sure their social media accounts are kept private. Make them aware that some profiles are not real and that there are adults purposely pretending to be someone else to get them to chat and hurt them. Most importantly, trust your instincts. If something feels not quite right, it probably isn’t.

 

For more information, visit https://fbi.gov. 

14 Apps (Social Media Apps Parents Should Know About)

14 Apps (Social Media Apps Parents Should Know About)

As children get older and become more independent, their time on smart phones and laptops increase substantially. Yes, you can set screen time limits for them but, as a parent, you likely won’t be able to implement that control continuously through the years. It is important to help your children be aware that predators have the ability to find them through some of the apps they use.

Ways to Help Protect Your Children:

  • Approve every app on your child’s phone
  • Understand how to use privacy settings and check them regularly
  • Discuss what you expect of your children in regard to phone usage
  • Educate yourself and your children on social media etiquette
  • Research the popular apps in your particular geographic area
  • Check your child’s phone periodically for any new apps

 

These 14 apps can be dangerous and expose your children to a range of events from bullying and unwanted sexual messages to kidnapping and identity theft.

  • BUMBLE – similar to the Tinder dating app but requires females to make the first contact. Children have been known to use Bumble to create fake accounts with a false age.
  • ME – a live-streaming video service that utilizes geolocation so users can find out each broadcaster’s exact location. Users of this app can earn"coins" as a way to "pay" minors for their photos and videos.
  • FM – a cyber-bullying app that encourages anonymous people to ask anonymous questions. The answers are then used to cyber bully the account holders.
  • SNAPCHAT – most popular app amongst middle and high schoolers. Users can take photos/videos and create "storie" that can be viewed for 24 hours before it disappears. This app also has geolocation so users can see each person’s exact location.
  • HOLLA – is one of the most self-proclaimed addicting video apps where users can chat with people all over the world in just seconds. Racial slurs, explicit content and identity theft are to be expected.
  • CALCULATOR% – is one of several secret apps used to hide photos, videos, files and browser history. The app looks like a calculator but functions like a secret photo vault.
  • KIK – provides account holders unlimited access to direct message anyone anywhere. This app also has built-in apps and web content that would be typically filtered on a home computer.
  • WHISPER – another anonymous social network that promotes the sharing of secrets with strangers. A user’s location can be revealed so people can meet up.
  • HOT OR NOT – this app encourages users to rate your profile, check out people in their geographic area and chat with strangers with the goal of hooking up.
  • OMEGLE – is a free online chat website that promotes chatting anonymously with strangers.
  • YELLOW – another "tinder" like app that allows teens to flirt with each other.
  • BURN BOOK – known to be the app where anonymous rumors can be spread through audio messages, text, and photos.
  • WISHBONE – allows users to compare kids against each other and rate them on a scale.
  • INSTAGRAM – is a very popular photo/video sharing app that allows users to assign filters to photos and share them with their followers. Everyone who creates an Instagram account has a profile as well as a newsfeed. There are privacy settings that can make accounts public or private. It is popular for children to create fake accounts with fake names, ages and pictures.

New apps are developed daily so stay in the know regarding the social media scene and what your children are talking about with their friends. Utilizing the same apps your children use can also help you keep up-to-date on what privacy controls are available and how they work.

How and Why to Make Sure the Website You Are on is Safe

How and Why to Make Sure the Website You Are on is Safe

You need to ensure the websites you are going on are safe and secure, to reduce the likelihood of hacks, viruses, and scams. A secure website is one that is completely free from malware and viruses while encrypting its data so that your personal and financial data cannot be compromised. Not all sites, however, are safe. Here’s how you can spot the difference between a website that is up to code and one that is not, and, most importantly, why you need to be checking the security of the websites you are using.

What to Look Out For

HTTPS

Before you enter any personal information, check the URL in the address bar and see whether it starts with ‘https://’. You should only use websites that have the ‘S’ present, as the ‘S’ signifies that the website is using a communications protocol for secure communications. Never enter any sensitive information on a website that only uses HTTP. You should also only use a website that makes use of SSL (Secure Socket Layering), as it can help fight against eavesdropping across servers.

You also need to ensure the website you are on has a padlock in the address bar, as this proves a website’s security features more so than the HTTPS does.

Secure and Verified Badge

Check the bottom of the website you’re on for a badge that marks the site as trustworthy and secure. While scammers could easily recreate the badge, hover over the badge to see if there is a pop-up that should display a legitimate certificate and verification information. If the information does not match up, then the website is likely not secure.

Contact Information

The website should have a detailed ‘contact us’ section, where you can find valid email addresses, phone numbers and social media channels that are active, personal, and look to be run by a real person. You could, of course, contact the site owner to see whether there is a human site to the website. If you phone up and a teenager answers, then you know the website isn’t legitimate.

The Website’s Privacy Policy

Websites should explain how your data is collected, what it is collected for, how it is used and what security measures the company have in place so that they can protect your sensitive data. Take your time to read through their policy; if a website is lacking an in-depth analysis, then take your business elsewhere.

Why You Need to Check a Website’s Security

If you are on a website to purchase something, then any personal or bank details you use can be stored and stolen, if not by the company, then by anyone who can hack into their unprotected systems. With your personal details, criminals will be able to access your accounts and either steal your money, identity, or both. Unsecured websites can also infect your laptop or other electronic devices with a virus which could steal your data or hold your data hostage. Ransomware is a problem for businesses of all sizes, as well as everyday people.