Thursday, May 18, 2017

Wanna Cry? Hope Not! How to Protect Yourself

The latest ransomware, named Wanna Cry, surfaced big time last week and caused major problems.  Unfortunately, another attack is building on this ransomware, called  Adylkuzz. With Adylkuzz, instead of locking the victims' computer with ransomware, the malware turns infected computers into a botnet of "miners," funneling large sums of digital currency. This causes your computer to run slow as its resources are used in the background.

What to Do?

Kim Komando has an article outlining what to do to protect yourself at http://www.komando.com/happening-now/401062/another-cyberattack-spreading-and-its-worse-than-wannacry

"The good news is, Microsoft released an update in March that fixes this flaw so it is CRITICAL that you have your Windows up to date. The bad news is, older versions of Windows operating systems are no longer supported and do not receive these critical Security Updates. However, Microsoft released an emergency patch for its no-longer supported operating systems after the WannaCry outbreak.

If you are running an older, unsupported version of Windows,
click here to download the available Security Update.

You also need to make sure that your gadget's operating system is updated regularly. Click here to learn how to have security updates installed automatically. It's also a good idea to have strong security software on all of your gadgets to stay protected from digital threats."


For updates on technology issues, sign up for Kim Komando newsletters.  They are a wealth of important information.

Thursday, May 4, 2017

Don't Fall Victim to the New Google Docs Phishing Scam!

Hope everyone is enjoying the Spring wherever you are.  Kim Komando posted this alert which I think everyone needs to be aware off.  (Just so I know you are receiving this, please leave a comment below.)

http://www.komando.com/happening-now/399487/google-doc-phishing-scam-spreading-right-now-even-tech-pros-falling-victim?utm_medium=nl&utm_source=alerts&utm_content=2017-05-03-article-a

Here are the highlights of the article  -- go to the link above for the full article.


"There have been quite a few scary Google account phishing scams lately. One looked so authentic that even tech-savvy users are falling for it.

It looks like cybercriminals are getting more and more elaborate and sophisticated with their tactics and we shouldn't let our guard down at any time...

The dubious email reportedly gets sent to your inbox claiming that someone has sent a Google Doc to you, including people you may know. If you are not expecting any Google Docs from anyone, please don't click the "Open in Docs" link within the email! ...

The dubious email reportedly gets sent to your inbox claiming that someone has sent a Google Doc to you, including people you may know. If you are not expecting any Google Docs from anyone, please don't click the "Open in Docs" link within the email!

If you have received said phishing email and clicked the "Open in Docs" button and granted the malicious app access to your Google account, go to your Google account's permission page and check if an app called "Google Docs" has access.

If so, select it and click its "REMOVE" button immediately. "Google Docs" is actually the malicious app and it is not a legitimate Google service.


Thankfully, it has been reported that changing your Google account password is not necessary. But of course, if you clicked the phishing link, changing it is still a good idea....

How to defend against phishing scams:

Use unique passwords - Many people use the same password for multiple websites. This is a terrible mistake. If your credentials are stolen on one site and you use the same username and/or password on others, it's simple for the cybercriminal to get into each account. Click here to find out how to create hack-proof passwords.
Be cautious with links - If you get an email or notification that you find suspicious, don't click on its links. It could be a phishing attack. It's always better to type a website's address directly into a browser than clicking on a link. Before you ever click on a link, hover over it with your mouse to see where it is going to take you. If the destination isn't what the link claims, do not click on it.
Set up two-factor authentication - Two-factor authentication, also known as two-step verification, means that to log in to your account, you need two ways to prove you are who you say you are. It's like the DMV or bank asking for two forms of ID. Click here to learn how to set up two-factor authentication.
Watch for typos - Phishing scams are infamous for having typos. If you receive an email or notification from a reputable company, it should not contain typos. Take our phishing IQ test to see if you can spot a fake email.
Check your online accounts - The site Have I Been Pwned allows you to check if your email address has been compromised in a data breach.
Have strong security software - Having strong protection on your family's gadgets is very important. The best defense against digital threats is strong security software."