About: admin

Recent Posts by admin

Phishing Scams

  • PhishingWarning1
  • PhishingWarning2
  • PhishingWarning3
Refer attached edited screen shots. Messages like these occasionally  arrive in my mail. Each message can be confirmed as a scam in the Mail app by placing the cursor over the link the user is expected to click on and just waiting a few moments. A box appears displaying the destination for the link which, in this case, is not apple.com. There are other anomalies in the message but a hurried user may not notice them.
PhishingWarning1

PhishingWarning1

PhishingWarning3

PhishingWarning3

PhishingWarning2

PhishingWarning2

It’s best users be aware of this type of ‘phishing’ scam whereby crooks send deceptive messages to get unsuspecting users to enter their account access details into a webpage that presumably looks like (in this case) Apple’s real website.
Once the crooks have the user's details, depending on what the Apple account is used for, the crooks could cause havoc for the user's life and business.
We can expect the scams to get more and more believable over time. If some site is asking for your account details, consider it suspect until proven innocent. One way to reduce the risk of falling victim is to NOT intuitively and casually click on links from messages unless you trust the source because it won’t always be harmless to simply load a website. Some links can be personalised so that the crooks will know which user’s address simply opened the website, even if nothing was entered into the page, which will then confirm for the crooks that the address is a legitimate one and that the user is keen to hit those links. Such users would likely then be targeted more.
In recent months Apple has improved its security measures that are available to users to reduce risk of others accessing the account. Some of these security changes are passive in that we need not make changes ourselves, but the best protection means we need make some active choices about the account.
Much of Apple's security overview may be found from this link: http://support.apple.com/en-us/HT202303
The page mentions 2-step verification which eSage recommends be turned on if the account is an important one.

Old modems are more easily ‘hijacked’

[Originally published 2014-05-31]

Recently, one of my customers had an issue whereby their modem-router was 'hijacked'.

The symptoms were that if they used the Google search engine, then the search engine wouldn't work, but on-screen would display something to the the effect that their Adobe Flash Player (The software responsible for generating animated and interactive web content) was out of date. (See image from link below)
 Attempts to update it automatically would fail with an error message. If directly downloaded from Adobe's website, Flash would not update as it was already up-to-date on the afflicted Mac.
At first, only one late model Mac had this issue which couldn't be solved by the standard troubleshooting procedures. When another late model Mac got it, too, this suggested something nefarious. Online research for the issue revealed that the Macs were mostly fine. The cause and fix of the problem was at the modem-router which was hacked and potentially could have resulted in any of the Macs exhibiting similar symptoms.
Other, later symptoms, included the Mac reporting that Internet Explorer needed updating. Since Internet Explorer only runs on Windows, which wasn't installed on any of the Macs, I suspect that Macs were immune from the worst intents of the hackers, whose basic efforts meant the victim's web browser was being redirected to the hackers' version of the most popular websites to intercept passwords and install malicious code onto Windows PCs. But, if Facebook, iCloud, and other Internet based services were also targeted, then it could be serious for any user saving confidential data there.
Hit the image below for a link to one of many news reports on the issue, or simply Google "300,000 modems hacked".

hijacked Modems

Hijacked Modems

 If I understand the news reports, it sounds like a Serbian web host registered the UK, but physically in the Netherlands, is responsible for the hijacking of cheap routers with known vulnerabilities.  The weakness in the routers was known for over a year and some manufacturers had issued firmware (A type of software programming for the device) updates to prevent reoccurrences of the problem. So, if you have a cheap router that hasn't had a recent firmware update, it may be at risk.
Although the above news report makes it sound like all Macs would be equally affected on the network, this isn't the case if the Macs have their DNS manually set, instead of being configured to use the router's settings.
Putting your own password on the router's admin interface isn't enough to prevent it being hacked in the first place, but, for affected routers, a temporary fix may be to simply do a factory-reset, or at least change the DNS settings on the router to those recommended by the ISP. Note that afflicted Macs may also need to have their DNS settings reset, and the web browser cache flushed, too.
In the case of my customer, the modem-router was manufactured in 2010 and the latest and last firmware was issued in 2012 – being a couple of years too late to likely prevent any of this 'hijacking' – so a new modem-router, one recommended by their ISP, was installed.
Installing a modem-router recommended by the ISP means, not only is the modem likely optimised for their network and support, but the ISP's reputation is also at stake, so they should be offering a good device not likely to be hacked.
In any case, do change the default password on your modem-router and there are other things that can be done to minimise such attacks, too.
If you need any further advice, you can contact eSage for support on this for both home and office.

New Domains

[Originally published 2014-10-01] New Domain Names In case you haven't noticed, domain names are in the news because a whole bunch of new names have become available. Even the smallest business needs web exposure to compete well nowadays and many clinics can also benefit from having their own web address. Until recently, the standard stock of names…
Read more

Are your backups working?

[First published 2014-08-14] If you haven't checked your computer backups recently at neither work nor home, then you should check again soon. Backup apps aren't perfect and automated backups have been known to stop without notification when the app has been upgraded. So, if your backup app is has been set to automatically back up,…
Read more

Recent Comments by admin

No comments by admin yet.