Cyber Threats


With all the craziness on the internet these days I decided to put together a general guide and very simplified overview of various things you need to be aware of on the internet that are jeopardizing your digital world.
With a little knowledge you can help protect yourself and others around you from getting scammed and potentially losing thousands of dollars.

I feel it is important to review this entire document so get a summary of the threats online.

To start with watch this 2 minute youtube video as it shows the severity of the dangers online.

Cyber criminals target city of New Orleans
https://www.youtube.com/watch?v=BDKZ7HMpEVw


Scams and Misleading Information
Scams can range in severity from trying to get your login info to stealing thousands of dollars from your bank accounts.
Typically most all scams play on your fears or they can be a complete deception.

When you get an email look at the from email that is often your biggest clue that it’s not real. When you are browsing the internet look at the address bar and see if the website is secure and if it is the website you are intending to visit.

Phishing Emails
https://www.phishing.org/phishing-examples
These emails are anything that attempts to mislead you and trick you into handing over your email logins and other information. The emails typically take on scare tactics to persuade you to click the link to fix a problem.
For example: "Your account is about to expire please take immediate action to prevent your emails form being deleted."
or "Your invoice is past due please submit payment immediately."

Once a hacker has your email credentials they can impersonate you and if that person is high enough in a company can even extort large sums of money from a company.

Pop Ups
https://support.microsoft.com/en-us/help/4013405/windows-protect-from-tech-support-scams
Popup Scams typically take on similar scare tactics that attempt to make you download or install a program which then opens a back door to additional hacking. These popups may look like a very real windows update notification. your biggest clue here is if it’s in a browser window it’s likely not real.
Also keep in mind Microsoft does not put their phone number on support messages.

Redirects (Browser Hijacking)
https://malwaretips.com/blogs/remove-browser-redirect-virus/
Redirects usually happen as a result of a bad plugin or extension that has been added to your browser. These will often change your home page to something new. They can also hijack your search engine and address bar so that anything you search for can be sent to one of their sites to make them even more money.
A very common tick that is used is to send you to a site that looks like the real site then then passes anything you type like your email login to you real site.
As a result your email or account will then be compromised.
Keep and eye on your address bar visiting
microsoft.com is not the same is microsoft.com.windowssupport.net.
A real website will have a proper address followed by a slash
microsoft.com/

Fileless Malware
https://www.techrepublic.com/article/fileless-malware-an-undetectable-threat/
Fileless Malware is extremely difficult to detect and prevent. This type of malware looks to exploit vulnerabilities in software like your web browser. By going to a website that is potentially unsafe your computer can get infected just by being on the website. They can also be loaded file attachments in email or downloaded programs.
The best way to prevent this type of threat is to ensure you are going to trustworthy websites and not installing random software.

Phone Call Scams
Jim Browning -
https://www.youtube.com/channel/UCBNG0osIBAprVcZZ3ic84vw
Phone call scams can be down right scary if they are done right. These scams will often extort money form you in one way or another. Jim Browning has several videos where he reverse hacks the scammers.
These scammers will attempt to impersonate some agency of authority and make threats to your freedoms.
One example is the IRS scam. The scammer will call saying you are being investigated by the IRS and it has been discovered that you have not paid enough. If you don’t pay they will come to arrest you and you need to stay on the phone and work with them until it is resolved.

With any phone call scam do not be afraid to hang up. If you are at work and they call you back tell them to call the corporate office. Do not give them the number and hand up. Take note of when this occurred and notify IT of the attempted Scam. Any real and genuine issue will typically go through your corporate office through official channels.

Keep in mind that any phone number can be spoofed.

If you get a scam targeting you personally try to get as much information and see if you can get a call back number. Do not give any personal information even if they seem to know a lot. Do not call the number back. If they claim to be some agency you can lookup the information for the agency and call them directly if you feel it might be real. If you discover it is not real call your local non emergency number for the police and give them the information. Notifying the police is important if it turns out to be an identity theft issue.

Remote Computer Access
Do not give anyone remote access to your computer.
If anyone ask for access to your computer for any reason be sure to verify it is for a legitimate reason.
Lets say someone calls saying they are from Microsoft to say your computer has an issue and they need remote access to your computer.
First off Microsoft won't do that. You would have to call microsoft and if they request remote access they won't send you to team viewer or some other remote software site. They will send you to a microsoft.com site.
The other way to know if remote access is legitimate or not is if you are asked to use a trial version of remote software.


Malware and Viruses
Malware and Viruses can be very damaging and extremely disruptive. Depending on how bad the infection is it has the potential of being something as basic as a small program that sits and waits for instructions on what to do next or it could actively spread and bring down entire systems and networks and even as bad as taking down an entire city government.
https://www.youtube.com/watch?v=BDKZ7HMpEVw

There are many forms of Malware and Viruses. Some can log everything you type and send it to a server on the internet while others will hijack your browser and start showing you ads for anything and everything which can lead to more and more malware and viruses bing installed on your system.
The worst of these currently is ransomware which can be loaded by a trojan virus from a website or a email attachment.


Ransomware
What is Ransomware?
https://en.wikipedia.org/wiki/Ransomware
In short ransomware is a malicious program that has been run on your computer from an infected file that was received through an email attachment, fake update or even a fileless attack from a malicious website.
The ransomware program encrypts all the documents, images and other files on your computer and leaves you a ransom note telling you to pay a certain amount of money in exchange for a decryption key.
Some ransomware also transmits your data to a server to ensure that you pay or they will release some of the information if you don’t.
Ransomeware is such an issue currently that it is critical for you not install anything from unknown or untrusted sources.

As an example of how dangerous this is look at the city of New Orleans. Their entire city was taken down as a result of ransomware.
https://time.com/5750242/new-orleans-cyber-attack/

Nursing homes and healthcare providers have been cut off from medical record leaving them unable to provide medications which are resulting in life-threatening situations.
https://krebsonsecurity.com/2019/11/110-nursing-homes-cut-off-from-health-records-in-ransomware-attack/


Web Browsers
What browser do you use?

Internet Explorer - NOT SAFE!
This browser is not safe for todays internet. The latest version of IE was released in 2014.
While this browser is still on all Windows systems it is only there for compatibility with older applications and is not intended for every day internet browsing.
Microsofts own security chief says to stop using Internet Explorer.
https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/The-perils-of-using-Internet-Explorer-as-your-default-browser/ba-p/331732

Microsoft Edge - Ok if you have to.
While Microsoft release the edge browser as a replacement to internet explorer it is still not fully standards compliant.
This is about to change however as Microsoft is actively building a browser based on the same engine that the Google Chrome browser is based on.

Google Chrome - Good options for every day browsing.
There are a couple privacy concerns at this time as Google appears to have changed what some websites can see about how your browser is setup. This can as a result lead to advertisers exploiting this and building a new way to identify you and track you on the internet.
Install link -
https://ninite.com/chrome/

Mozilla Firefox - Great option focused on privacy and has a builtin monitor to check your info in data breaches.
Firefox at this time is the top of the list for everyday browsing. The new feature to help guard your privacy are unmatched currently by the majority of the other browsers out there. They also have an options to Contain Facebook and Instagram to reduce the amount of tracking done by Facebook.
The Firefox Monitor will also notify you of data breaches that may affect you. Unlike other browsers this feature extends to also show you a notification of breaches when you visit a site that has been part of a known breach.
Install Link -
https://ninite.com/firefox/

Brave - The best browser for privacy and security.
Brave is focused on privacy and securing your information. By default Brave blocks ads so you don't have to install any ad blockers and it also has malware and phishing protection. There is also a very useful browser sync feature that doesn't require you to sign up for an account allowing you to keep your bookmarks, history, and passwords updated across multiple computers.
Install link -
https://brave.com/

Other Browsers
While there are other browsers out there Brave is the best all round browser for protecting your privacy and blocking malicious trackers and sites and is actively maintained.


AdBlockers
AdBlockers are very important as they will help reduce the number of potentially damaging and misleading popups on your computer while browsing the internet.
The only AdBlocker I recommend is Adblock Plus (
https://adblockplus.org/) it has been around the longest and is very affective. While no AdBlocker can block all ads this one works exceptionally well. By default it does allow acceptable ads. What this means is it will allow ads that are not intrusive to your browsing experience.
Be very cautious of other AdBlockers out there as there are many that pretend to be AdBlockers only to later reveal themselves to be malware and browser hijackers.


Passwords
Don’t use the same password everywhere. The first thing a hacker attempts is to try your compromised logins on other sites.
If your information is part of a data breach it would essentially make it simple to take over your digital life if you use the same password everywhere.
Longer passwords are safer. While shorter passwords are fine if you include special characters the longer the password is the harder to crack. These days as powerful as computers are 8 a-z character passwords can be cracked in about 3 minutes. Some hacker networks use botnets and can crack passwords in as little as 30 seconds.

Here are some very important questions to ask yourself!
What is your email password? Is your email password used anywhere else?
What is the first thing you do if you forget your password for your bank account?

If you email password is simple and used in more than one place you are setting yourself up to lose a lot.
An attacker that gains access to your email can see what bank account you have and can attempt to reset your password allowing them to gain full access to your bank account.
Always keep your email password unique and complex. Your email is the backdoor to most if not all of your online accounts.

Use this link to test how secure your password is https://random-ize.com/how-long-to-hack-pass.

Password Managers
Lastpass has the best option for free accounts.
https://lastpass.com/f?100979391
Lastpass encrypts all your information so that it is not even visible to anyone without your master password.
They also have a Security Challenge where they will look at the passwords you have saved and tell you if they are secure or not.
Using a password manager can also help you discover phishing attempts. Password managers detect the login pages of websites you use and associate the username and password accordingly. If you end up on a Phishing site the password manager likely will not give you an option to fill in the password as the Phishing site will not match the real site.

Two Factor Authentication
Enable 2FA everywhere you can. This way even if your account login is compromised an extra step is needed for the hacker to gain access to your accounts.

Protect your email!
Use a long password on your email and don’t use that password anywhere else. Your email is the doorway to your digital life.
As an example lets say you forgot your password on one of your accounts. The typical way to recover access to your account is to send a password reset to your email. As a result anyone with access to your email can take over any of your accounts.
They can also create rules in your email to prevent you from seeing certain emails and also setup a forwarder to send all your emails to another email account.


Keeping your computers safe
Installing system updates is important as it closes security loopholes that can be exploited by hackers.
Do not click on any popups saying your system needs a update of any kind. Use the operating systems built in tools to check for updates.

Having a good antivirus and anti-malware solution on your computer is critical to ensuring your information is kept safe.
There are many solutions out there but I am always a big fan of free solutions.

While McAfee and Norton are the biggest names out there the products they offer very often slow your computer down and come with fees.
One of the other options that is offered frequently when you buy a new computer is Kaspersky. while their product is good it is slower at scanning your system. It is not necessary to purchase this.

AVG Antivirus and Avast Antivirus are not as big and are no longer a good option as they once were. These two have essentially sold out to advertisers and make money off your browsing habits and computer usage. I now consider these two programs as Malware. Mozilla Firefox has also removed there extensions from their browser.

If you have McAfee, Norton, AVG or Avast on your computer I would recommend removing them.

Below are the options I would recommend. These options have so far proven very affective in keeping systems clean and clear of dangers.

Bitdefender Free
https://www.bitdefender.com/solutions/free.html
The free version is great and very effective in what it does. For the most part it’s an install and forget it’s there type of program. The only downside to the free version is there is no way to schedule a full scan of your system. The daily active scan is very good and if you remember to run a full system scan at least once per month there is no reason to purchase an upgrade.

MalwareBytes
https://ninite.com/malwarebytes
This program is very affective in clearing up potentially unwanted programs (PUPs) and can also remove tracking cookies put on your system by advertisers trying to make money on your browsing habits by monitoring your activity online.

CCleaner
https://www.ccleaner.com/ccleaner
The free version of this program can help clean up a few more things to keep your system running smoothly. The default settings are usually sufficient.

HitManPro
https://www.hitmanpro.com/en-us/hmp.aspx
HitManPro isn’t free but will let you scan you system for free. If you have a particularly nasty infection that nothing else can clear up. You can run this to see what else may be hiding on your system. If all the other tools fail sign up for the 30 day trial and then use it to clean your system.


Installing software.
Company systems. Please do not install any software without asking first.
POS systems. You should NEVER EVER install any software on these systems.
The POS systems also should NEVER be used to to browse any websites unless specifically allowed by IT.

Personal Systems.
Use
http://www.ninite.com to see if the software you need is there.
Ninite is great in that it prevents additional software being installed at the same time.

If the software you need is not on Ninite make sure it is from a reputable source.
Don’t click on the first link in your search and download from file hippo or some other file sharing site.
It is best to go the the actual companies website to download the installer directly. Other file sharing sites could have compromised installers with malicious payloads that can infect your computer.

When installing software check what else the software is installing.
i.e.
https://get.adobe.com/reader/
Adobe reader is a good example as by default it has other software installs checked for download. Be sure to uncheck these additional installs and install only what you need. Again if this is a company system you need to ask first.


Preventing Spam
This is almost impossible these days but you can try to reduce it but checking for the little “sign up for our new letter” check boxes or similar marketing options that are on almost every website. Very often if you sign up for any of these the list is shared with a 3rd party.
If you need to sign up for an account somewhere but don’t intend on keeping the account use a fake name and email if possible.

A lot of websites these days will make you verify your email so you can’t use a fake email. in that case use a temporary email that expires minutes after it’s used.

Temporary Emails
https://dropmail.me/en/



The information above was written in December 2019. The internet is constantly changing and new threats are constantly emerging so some information here may become out date. Tricksters will always be there and as a result even some out dated information can be educational in protecting your systems from infection.