I learned about the domain registrar Hover a year ago and have been very satisfied with them. They offer time based 2nd factor authentication among other security features that apparently GoDaddy does not. I had to call Hover once to setup the DNS records, so I call the toll free number and to my surprise … Continue reading Hover
Category: Cyber Security
Apple scam calls
Scammers are getting better and better. Brian Krebs has a excellent reporting on his site. This is the link: https://krebsonsecurity.com/2019/01/apple-phone-phishing-scams-getting-better/#more-46207
Fake Amazon Confirmation
There are fake Amazon order confirmation email showing up on people's inboxes. If you click on it you will get a banking trojan. It is affecting Windows OS since the trojan is a exe file. Best practice is never click on the link to check your order. Best way to check is to go to … Continue reading Fake Amazon Confirmation
Popular Passwords
List of the most popular passwords of 2018. 123456 password 123456789 12345678 12345 111111 1234567 sunshine qwerty iloveyou Password manager is the way to go now a days. I have been using LastPass and love it.
California DMV (updated)
California DMV uses convergepay for credit card processing. I just re-ran a check of that site on SSL Labs to check the certificate and security and the grade was a B (it was previously a C). There is no support for secure renegotiation This server does not support Forward Secrecy with the reference browsers. Server … Continue reading California DMV (updated)
Mass Router Hack
It was just reported by Ars Tecchnica that there is a massive router hack that affected 45,000 routers. The hackers used the EthernalBlue (a NSA tool) to hack the routers. The attack target routers UPnP (universal plug and play). I suggest that everyone should turn off UPnP unless you really need it. I you think … Continue reading Mass Router Hack
Fake Apps
Google play store is full of fake apps and its getting a lot of downloads. It seems to me that these games may appeal to kids. Please exercise caution when downloading apps or when your kids play with your phone.
Home Routers
There are many makers of home routers and it seems like D-Link does not care about security. D-Link have eight routers that have problems and after about nine month they have not fix any of the problems. All I have to say is that if D-Link don't care about the consumers we shall give them … Continue reading Home Routers
D-Link Backdoor
D-Link DIR-620 routers contains a backdoor account was discovered by Kaspersky Lab researchers. Firmware that was found to have the backdoor are 1.0.3, 1.0.37, 1.3.1, 1.3.3, 1.3.7, 1.4.0, and 2.0.22. D-Link have no plans to update the firmware due to the age of the router. If you have one of the DIR-620 I would not … Continue reading D-Link Backdoor
UPnP
Unless you know for sure that you are going to use UPnP (universal plug and play), always disable it on your router. With UPnP turned on your inviting every one to your router.
