remote-support

Ebay hack reported, 128 million active users compromised

Ebay hack reported, 128 million active users account details globally compromised in Feb - March and they are only telling us now, thanks for that.

Do you have unique passwords for each of your online services? Consider yourself warned.

Here are some further details:

http://www.theverge.com/2014/5/21/5737914/ebay-will-ask-all-customers-to-change-passwords-after-massive-breach
https://au.finance.yahoo.com/news/massive-breach-ebay-urges-password-105845341.html
http://mashable.com/2014/05/21/ebay-breach-ramifications/

Excerpt:
..."For the time being, we cannot comment on the specific number of accounts impacted," said Ms Ramirez.

"However, we believe there may be a large number of accounts involved and we are asking all eBay users to change their passwords."

Potentially affecting eBay's 128 million active users globally, the attack could be one of the largest affecting a retailer.

It comes after retail giant Target disclosed a security breach which could affect more than 100 million customers....

Tags:
1864 Hits
0 Comments

Heartbleed vulnerability

heartbleed3Here is a roundup of the easiest to understand information about the heartbleed vulnerability, read these and you should have a pretty fair idea of the lay of the land.

I have told many of you before but best practice recommendation is NOT TO DUPLICATE PASSWORDS each service should have a unique, strong password that won't fall over domino fashion if there is a breach like this one, and the Adobe one a year or so ago and the Sony PlayStation one before that. How do you manage all these passwords?, well see below the info on lastpass.com. Its free on the PC and minimal cost if you want the multiplatform apps. This is important, consider yourself warned.

Here are the details on heartbleed:

From: http://www.pcauthority.com.au/News/382247,heartbleed-memory-bug-leaks-encrypted-data.aspx
Researchers have warned of a serious security bug in OpenSSL that allows encrypted data to be stolen. OpenSSL is an open-source library of SSL/TLS encryption - the transport layer security protocols by which email, IM, and some VPNs are kept secure online.
A bug dubbed "Heartbleed" lets anyone read the memory of systems using vulnerable versions of OpenSSL software, researchers from Codenomicon have revealed. "This compromises the secret keys used to identify service providers and to encrypt the traffic, the names and passwords of the users and the actual content," the researchers wrote on a website dedicated to the security bug. "This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users."...

Office 365? Microsoft say this about Windows based products:

Information on Office 365 and Heartbleed: Microsoft Account, Microsoft Azure, Office 365, Yammer, Skype, along with most Microsoft Services, are not impacted by the OpenSSL "Heartbleed" vulnerability. [The] Windows' implementation of SSL/TLS is also not impacted. A few Services continue to be reviewed and updated with further protections.

From: http://www.theage.com.au/it-pro/security-it/heartbleed-security-bug-what-can-you-do-20140411-zqtff.html
...that chunk of data might include usernames and passwords, reusable browser cookies, or even the site administrator's credentials. While the exploit only allows for small chunks of data to be dumped each time it is run, there is nothing to prevent attackers from replaying the attack over and over, all the while recording fresh data flowing through vulnerable servers. Indeed, I have seen firsthand data showing that some attackers have done just that; for example, compiling huge lists of credentials stolen from users logging in at various sites that remained vulnerable to this bug.

For this reason, I believe it is a good idea for internet users to consider changing passwords at least at sites they visited since this bug became public (Monday morning). But it's important that readers first make an effort to determine that the site in question is not vulnerable to this bug before changing their passwords.

From: http://www.pcauthority.com.au/News/382523,heartbleed-dont-change-all-your-passwords.aspx
Security experts warn that changing all your internet passwords now could do more harm than good
Security experts are warning users to ignore advice to change all of their internet passwords in the wake of the Heartbleed compromise.

Lastpass password manager:

From: http://www.zdnet.com/worried-about-heartbleed-lastpass-security-check-has-you-covered-7000028367/
LastPass has updated its built-in Security Check so that you can now easily see which sites require you to update your passwords to be safe from possible Heartbleed attacks [and which to wait until they have sorted out their own SSL security first]....

Example screenshot:

LastPassHeartBleed

Lastpass: https://lastpass.com/

Tags:
1895 Hits
0 Comments

Microsoft Onenote software now free

Microsoft Onenote software is now free and with auto-sync to your (free 7GB) Microsoft onedrive/skydrive/livedrive online storage. Its a great product for school, uni, work or home notes. You can share between your team or family so that you can all "be on the same page".

Get the apps too so you can auto-sync with your Windows phone and Windows 8 tablet (supports other lesser products also).

http://www.onenote.com/

(or if you want to pay $89 then you can do that also)

OnenoteFree

1597 Hits
0 Comments

Telstra offers new contract that allows an upgrade after a year.

One of the great things about having a mobile phone on a contract is that you get a shiny new phone for free*every time you renew your contract. The problem is that on a standard 24 month contract with Telstra that only happens (obviously) every 24 months and in 2 years your phone is so out of date it feels like you're making a call with a baked-bean can and a piece of string compared to what's currently available.

Shortly, Telstra will be offering an option to upgrade half way through the contract to a new phone, it does cost extra for the privilege and looks like you have to return the old phone "undamaged and in good working order". (I'm not too sure what that means, as always check the fine print)

See the link below for more details and check it out before you purchase your next phone under contract (preferably a Windows phone):
http://www.itwire.com/your-it-news/mobility/63220-telstra-offers-new-phones-after-a-year-–-but-you-pay-for-it

PhoneUpgrade

1669 Hits
0 Comments

CryptoLocker virus

CryptoLocker From Wikipedia, the free encyclopedia

CryptoLocker is malware that surfaced in late 2013. A form of ransomware targeting Microsoft Windows-based computers, the trojan encrypts files stored on local hard drives and mounted network drives using public-key cryptography, and then displays a message saying that the files will be decrypted if a fee is paid through an anonymous payment service by a specified deadline, beyond which decryption is no longer possible.

Contents Operation CryptoLocker typically propagates as an attachment to a seemingly innocuous e-mail (usually taking the appearance of a legitimate company e-mail), or from a botnet. The attached ZIP file contains an executable file with filename and icon disguised as a PDF file, taking advantage of Windows' default behaviour of hiding the extension from file names to disguise the real .EXE extension. Some instances may actually contain the Zeus trojan instead, which in turn installs CryptoLocker.

Read more: http://en.wikipedia.org/wiki/CryptoLocker

Tags:
2264 Hits
0 Comments

Oh yeah "the cloud" is such a great idea...

Oh yeah "the cloud" is such a great idea... thanks' for keeping my information safe [again].

"Adobe suffers major cyber attack, the company has revealed that an intrusion led to an untold number of Adobe IDs and passwords falling into the hands of hackers. But it gets far worse. Adobe says "certain information" on 2.9 million customers may have also been compromised. Among that data set are customer names, encrypted credit / debit card numbers, and expiration dates."


Read more:
http://www.theverge.com/2013/10/3/4800042/adobe-suffers-cyber-attack-millions-of-customers-affected

 

Tags:
5199 Hits
0 Comments

Windows tablets from 8" - 20"

There have been a number of Windows 8.1 Tablets and PCs unveiled in the last few days all the way from 8” to 20” (yes a 20 inch tablet). All of these will have the newer internal chip technology that’s faster and more battery efficient along with the much revamped windows 8.1

More details will emerge between now and October 18 which is the windows 8.1 launch date.

Tags:
1954 Hits
0 Comments

Microsoft buys Nokia

When Microsoft announced that it was going to become a "device and services" company a while back they didn't have any devices and their services certainly weren't well known or well supported.

Now with Office 365, Azure, the Microsoft surface (surface 2 hopefully being released on October 18) they really have reinvented themselves.

Windows PC's still represent 90 something percent of all PC's. To put this in perspective, Windows 8, which was released less than a year ago accounts for more "PC's" world wide than all the Apple "PC's" on the planet put together (yes that's JUST windows 8).

As if that wasn't enough Microsoft have announced today they have done some shopping and bought Nokia (Subject to all the legal stuff) for 7.2 billion US$. With windows phone climbing in market share each month and the Nokia Lumia 1020 flagship camera/phone kicking everything else on the market. (photos from the phone about to appear in national geographic) it will be interesting to see what happens next.

b2ap3_thumbnail_NokiaPhones.JPG

2211 Hits
0 Comments

Telstra ADSL price reduction

Telstra has recently reduced all their pricing for both home and business internet. If your with Telstra you should check what you're paying and see if you can pay less (and possibly get more data while you're at it).

50GB business ADSL is now $60 see the details at the link below:

http://www.telstra.com.au/business-enterprise/business-products/internet-data/ethernet-dsl/business-broadband-adsl/index.htm

For home services (Note that I don’t necessarily recommend bigpond home internet as there are some significant limitations you may want to be aware of with this service) it looks like they have reduced the prices as well. In addition they have introduced some high volume plans while I wasn't looking.

(Domestic only plans)

2158 Hits
0 Comments

AU vs US pricing

Finaly we get confirmation of what we knew all along...  but will we actually get lower prices?

...parliamentary report into the "price gouging" of Australian technology consumers wants the lifting of restrictions on parallel imports, a ban on geo-blocking stopping Australians wanting to buy goods offshore, and the formal monitoring of IT prices....


http://www.theaustralian.com.au/australian-it/personal-tech/australians-pay-50-per-cent-more-for-tech-goods/story-e6frgazf-1226687429151

2073 Hits
0 Comments

Smartphone market share results

Apple's share of the global smartphone market fell to 13.1 per cent in the April-June period, according to research firm IDC...

Read more http://www.theaustralian.com.au

I know you all think I'm making this up, Steve Jobs's "reality distortion field" is still just working fine.

1871 Hits
0 Comments

Windows 8 start button and desktop

The Windows 8 start button and "boot to desktop" (go straight to desktop rather than the start screen) will be back by public demand in a free update coming to windows 8 in the next couple of months.

While I didn't mind the new start screen (and I haven't had any complaints from clients after their 5 min training session) it has, once again, very much been "trial by media" on this.

However its always good to have options especially on non touch screen PC's.

IT pros such as myself will be testing this new update codenamed Windows blue and finally now named windows 8.1 which apparently includes additional features as well when it arrives from Microsoft. Ill post more information when I have it.

This will be one that you won't want to allow by automatic updates due to the size and the time it will take to install.

b2ap3_thumbnail_Windows8_1Logo.JPG

2035 Hits
0 Comments

Intel 4th Gen CPUs on their way

http://news.cnet.com/8301-1001_3-57581633-92/intel-confirms-haswell-chip-intro-at-computex/

1746 Hits
0 Comments

Welcome:

digitalwelcomemat now has a blog!

Subscribe for the news as it happens, call me for support on 0404 493 770 or access my remote support solution here: http://help.digitalwelcomemat.com/

Digitalwelcomemat provides IT consultancy and services for business customers on the NSW Central Coast in Australia.

Search

Contact:

Give me a call: 0404 493770

Go to top