Tuesday, October 24, 2017
Troy Hunt is the Pokemaster of collecting credentials from security breaches. He put together a database of 4,792,153,725 email accounts associated with both known and undiscovered breaches. These accounts have passwords associated with them and the major risk is password reuse. If you use your email address (e.g. Chunkylover53@aol.com) and super complex password to register for a site that has been compromised, you might have used the same credentials for another site (e.g. email, banking, Amazon). Once the bad guys get a hold of your credentials they start checking other sites for access. Have I been pwned is a quick way to check if your email address is associated with stolen credentials. The site does not provide the password associated with the email but it does say what breach it was associated with. Whether you are pwned or not, the 24th day of National Cyber Security Awareness Month is a good reason to change your password. #CyberAware #CSAM #HCSAM https://haveibeenpwned.com/ If you have a Tech Tip you want to share, send them to firstname.lastname@example.org and we'll get them out next #TechTipTuesday.
Tuesday, October 17, 2017
The latest vulnerability to sport it’s own logo and website is key reinstallation attacks (KRACKs). The attack breaks the security of the WPA2 wireless security protocol. What does this mean? If you configured your home or work wireless connection with WPA2 to keep nosey neighbors off your network, you need to reconsider the safety or confidentiality of your network. Patches are available for some of the devices so be sure to update your wireless routers and access points. This attack does require someone to be close enough to your house to connect, so should be weary of people lingering outside your house with a laptop but that’s probably just good advice in general. #CyberAware https://securingthehuman.sans.org/blog/2017/10/16/28748 If you have a Tech Tip you want to share, send them to email@example.com and we'll get them out next #TechTipTuesday.
Tuesday, October 3, 2017
October is Cyber Security Awareness Month. The National Cyber Security Alliance has numerous resources available to keep you secure. Data breaches and supply chain attacks usually make their way into your news feeds but your home network security hits closer to home. The following link has a handful of suggestions. Can you think of other ways to secure your home network? #CyberAware https://staysafeonline.org/stay-safe-online/securing-key-accounts-devices/securing-home-network/ If you have a Tech Tip you want to share, send them to firstname.lastname@example.org and we'll get them out next #TechTipTuesday.