Category Archives: Security

Have You Been Pwned? Find Out with This Tool

pwned

Data breaches and internet security are a big concern for many individuals, and with good reason. Large companies that have had their users’ information (such as email addresses, passwords and password hints) compromised include Adobe and Snapchat.

Luckily, there is a website, Have I Been Pwned?, which searches across various domains and known breaches to see if a particular email address or username has been compromised.  The site’s name comes from the gaming term “Pwned”, which is a twist on the word “owned” (defeated).  The exact origin of this term is disputed.

The website also can inform you if your information has been “pasted,” which the site describes as:

A “paste” is information that has been “pasted” to a publicly facing website designed to share content such as Pastebin. These services are favored by hackers due to the ease of anonymously sharing information and they’re frequently the first place a breach appears.

This website is a valuable tool to find out if your personal information has been compromised.  Check out this post for suggestions on strengthening the security of your accounts.

Pop Away from Popups and Other Unwanted Ads

securitykey

It’s happened to most people:  you’re browsing the internet, and suddenly a window pops up informing you that you need to update your software or maybe that you have a virus or perhaps one saying you’ve won a free iPad. Even to advanced computer users, some of these popup advertisements can look legitimate. How can the average computer user avoid bothersome popups?

Luckily, makeuseof has written a helpful article with some helpful tips on how to avoid malicious popups and how to tell if they are legitimate.

The author advises computer users to always check the URL in the address bar. Most software websites have URLs that are pretty straightforward. For example, if you are attempting to download Adobe Reader, the URL will be www.adobe.com. Try to avoid websites with super long web addresses. If you want to view the URL for a website, move your mouse over the link before clicking on it and the full URL will be displayed in the status bar near the bottom of the screen. Google will display the full URL of the search result in green below the link name. In the example below, the mouse cursor is on the link for the East Greenbush Library’s Wikipedia entry. Note the highlighted area near the bottom of the screen that displays the full link.

linkhighlight

 

Try to avoid pages that are full of text and advertisements. If you are still unsure if a download link is safe, check out a site like File Hippo, which is an aggregate site that contains mirror downloads of many popular programs like Adobe Reader and Java. On a related note, try to avoid the Google-ad results, which are usually the first few results that appear in a Google search and are marked with a little yellow ad banner.

If you are mindful about looking at a link before you click on it, you may notice a common trend of link shortening, for example, tiny.url or bit.ly links. How are you supposed to know if those links are legit? There is a great tool called Unshorten.It. You can copy and paste the shortened link and the site will display the full link as well as a small screenshot of the site. There are also various other sites that preform a similar function.

Some other helpful tips mentioned in the article:

  • Install a good anti-virus program. Many have an internet security feature that will highlight suspicious links and block popups.
  • Avoid searching for things like free video games and free screensavers. These are a common source of malware and shady links.
  • There are various browser-specific tips, such as changing your homepage to one you recognize and blocking popups directly with your browser (these options are found in the browser settings).
  • If you are a more advanced computer user, you may want to use a browser extension such as AdBlock Plus that will block ads from appearing on a webpage.
  • The article gives you instructions on what do if you accidentally click on a popup or ad and seem to be stuck.

If you are still getting unwanted popups after trying the tips discussed in the article, you may have malware installed on your computer. If this happens, there are steps you can take to remove it. Check out makeuseof’s malware removal guide for more information.

 

MakeUseOf Has the Answers to Questions You Didn’t Know You Had

makeuseofStaying current with IT news, trends, and tips is a fundamental part of my job in the library.  While I get this information from a variety of resources, there is one website that keeps surprising me with helpful information on a variety of subjects of interest to me and the patrons I assist.  I’d like to take this opportunity to give a shout out to MakeUseOf, a free online resource with timely articles, reviews, and help guides for all things tech.  What really makes this resource shine is its ability to speak to both new and veteran users at the same time without confusing or boring either!

The home page at MakeUseOf displays headlines and teaser text for their most recent articles.  I find this layout somewhat chaotic, so I prefer to sort the articles by category before browsing.  Selecting “Topics” in the header menu will display the articles by category.  The “Answers” section leads to a user forum where registered members can ask and answer questions from the MakeUseOf community.  Check out the “Top List” section for “best of” lists for a variety of software and services on multiple platforms.  For in-depth technology guides, have a look at their “E-books” area.

As a registered user of MakeUseOf, you can earn points for sharing their content on social media, as well as participating in the forum, polls, and other activities.  Those points can be redeemed for rewards, such as entries in drawings for free hardware and software.  My favorite benefit of membership has been receiving the newsletter.  Each email has a few headlines with teaser text that can be easily scanned, with more information just a click away.  I have happened upon lots of very useful information in these newsletters that I didn’t even know I needed!  You can opt-in to the newsletter by selecting the social media icons at the top of any MakeUseOf page, and then selecting the blue “Email” button.

subscribeWhat do you think of MakeUseOf?  If you have another tech info source you love, please share it in the comments.

Apps to Help Identify a Tablet/Smartphone/Laptop Thief

11719567_sImage credit: seewhatmitchsee / 123RF Stock Photo

We all know tablets, smartphones, and laptops are attractive targets for thieves.  Not only is the equipment inherently valuable, but think of all the data, pictures, and account information you have saved on your phone!  The time to protect yourself is before your device is stolen.

MakeUseOf.com has written some helpful posts on how to prepare your devices for the worst case scenario.  I would recommend reading two short articles: Don’t Be a Victim: Practical Tips To Protect Your Smartphone From Theft and Identify the Guy Who Stole Your Phone, Tablet, or Laptop.

If thieves make you angry, and you would like to gloat at their humiliation and capture, try Revenge of the geek: MacBook thief made a fool of on YouTube. The end of the article contains links to more stories of foiled electronics thieves.

Do you use a recovery tool not mentioned in the articles above?  Please share it the comments section below.

Check Your Computer for DNS Changer Malware

You may or may not have heard about DNSChanger malware (FBI information site or ABC news story), but if your computer is infected it will be obvious after this Sunday.  This malicious software, authored by an international cyber ring, was created to reroute infected computers to fraudulent websites.  Enter the FBI and Operation Ghost Click.  Not only did they take down the criminals responsible, they also put clean servers in place to maintain internet access for affected users once the malicious servers were taken down.

After this Sunday, the FBI plans to shut down the servers that have been keeping infected machines online.  Any machines with DNSChanger malware still active will lose internet access.  As of July 4, the affected machines still numbered about 46,000 in the US.  This particular malware did not discriminate between PC or Apple.  Tablets and routers were also affected.

To find out if your computer is infected, visit this website:  http://www.dns-ok.us on that machine.  If you see a green background, you are all set.  If you see a red background, your computer is infected.  If you get the dreaded red background, there is good news.  The DNSChanger Working Group has put together a page containing tools and a step-by-step guide to fixing your computer.  Unfortunately, the fix can get complicated or take time to complete because this is an exceptionally nasty piece of malware that affects the machine’s boot sector.

I urge you to check your computer(s) ASAP, before the Sunday deadline, in case you need to implement the fix before you lose internet access.  If you do lose internet access on Monday, contact your internet service provider for further instructions.

Searching Anonymously

Lately, I have been reading a lot of posts about how to keep sites and services from tracking your internet activity.  Though many of us have nothing to hide about how we use the internet, it may still be disturbing to know you are being tracked and to have personal information about you sold to the highest bidder.

Here at the library, we use Google Analytics to get information about how people use our site.  Our only reason for doing this is to help improve the user experience in our online locations.  Knowing which of our pages get the most hits helps us tune in to the content you want and need.  We do not sell this information.  Nor do we use it for targeted advertising or nefarious purposes.  Unfortunately, I cannot say the same for the many of the other sites out there tracking their users’ visits.

If you would like to turn off tracking in your browser, you can set this in the preferences/settings area of most browsers. Those browsers that do not currently support turning off tracking have pledged to implement support by the end of the year, according to this c-net article.  Personally, I use a browser add-on called DNT+.  This browser add-on/extension advertises that it goes “far beyond what built-in private browsing modes offer” with a link to this list of concerns not covered by your browser’s private mode.  DNT+ also allows me to pick and choose which sites I allow to track my movements.  For example, I allow libraries, schools and government information sites to track me because I know it will help them to improve their services, and they won’t sell my information.  I do not allow commercial sites to track me because I do not have confidence that they will use the information in an entirely constructive way.  This is all a matter of personal preference, of course.

Even with tracking blockers in place, search engines may still gather information about how you are searching.  If this gives you the creeps and you are looking for a non-tracking alternative browser, check out these suggestions by How-to-Geek.

Do you have privacy concerns you’d like me to cover here?  If so, please note them in the comments and I’ll work up a post.

That reminds me – it’s time to double-check my Facebook privacy settings, too…

LinkedIn Security

If you have a LinkedIn account, you may want to change your password…immediately!  They’ve been hacked.  According to this c-net article, millions of LinkedIn user passwords were leaked online.  Users of both the website and the smartphone apps are at risk.  The article also gives instructions on how to change your password.  Even if you don’t think your password is at risk from this attack, it is good practice to change your passwords regularly.

More on the SOPA/PIPA Strike

Strike Headline

Fight for the Future, one of the driving forces behind yesterday’s internet strike against the SOPA and PIPA bills, reported in an email that the protest succeeded in getting the attention of lawmakers.  Before the protest, only 5 senators spoke out against the bills.  Now, the count is 35!  For more details about how the strike went, see the SOPA Strike website.

The fight is not yet over.  It will take 41 solid “No” votes to permanently stall PIPA (and SOPA) in the senate.  Please continue to contact your legislators (easy email form!) to let them know you value your freedom online.

SOPA / PIPA Threatens the Internet As We Know It.

You may or may not have heard of SOPA (Stop Online Piracy Act) or PIPA (Protect – IP Act), but if either of these becomes law, the Internet will cease to be a free exchange of creativity and ideas.  [Insert personal opinion disclaimer here.  ;-)] While I will agree that piracy is an issue and it robs creators of deserved remuneration, the vague language used in these bills could be extremely dangerous in the wrong hands.

I found this quote in an informational vide0 (below) particularly disturbing:

“…the government and corporations could block any site, foreign or domestic, just for one [copyright] infringing link.  Sites like YouTube, Twitter, and Facebook would have to censor their users or get shut down since they become liable for everything users post.”

For more information, please view this short video:

PROTECT IP / SOPA Breaks The Internet from Fight for the Future on Vimeo.

If you feel so moved, please let your representatives know what you think of these bills.

What Is My Computer Doing?

Have you ever used a computer that was running suspiciously slow?  This is a notoriously difficult problem to diagnose.  If you’ve been keeping up with your regular maintenance, then it’s probably not just a matter of a cluttered browser or hard drive.  Chances are, there is a program running behind the scenes that is consuming your resources.  It could be an anti-virus scan, or it could be something more sinister.  How can you tell for sure?

1.  Windows Task Manager:  If you are on a Windows PC, hit control-alt-delete (three keys at the same time).  On the resulting screen, select Task Manager.  The Process tab is the most telling.  If you click CPU (top of the column), it should put the process using the most memory at the top.  If not, click it again.  DO NOT stop a process without knowing what it does.  This can cause major damage if the process is necessary for normal computer operation.  Instead, look up the process name on a reliable site like ProcessLibrary.com.  The site will give you an idea which program is associated with the process, what it does, and whether it can be shut down safely.

2.  If the Task Manager doesn’t tell you what you need to know, try What’s My Computer Doing.  It’s free software that gets more in-depth than Task Manager.  The paid version will dig even deeper.

Happy hunting!