security

, ,

About This So-Called Security Program

, ,
        Take a look at this serious matter brought to our attention by Jim Hamm.  
        "If you surf the net, you've probably seen ads pop up for MacKeeper, a so-called security program for the Mac. Here is an article about MacKeeper, and its aggressive advertising program on the internet.       
         "My suggestion is to stay far away from this program. You'll see why after you read the article. Having said that, though, I am amazed -- and somewhat jealous -- at how some young, smart programmers in the Ukraine had an idea, developed a program, aggressively marketed it, and rolled in some $26 million dollars. Now why wasn't I smart enough to do this?...(grin)…" Thanks to Jim for this info. 
, , , , , , , , , , , ,

"Freak" Bug Update

, , , , , , , , , , , ,

        John Carter passes along some VERY important info.  "Both Microsoft and Apple have announced that they have released a patch for the FREAK bug. See full article here.
        "In this article, it explains a lot more about the 'Freak' bug and what you can do to find out if your browser is safe to use and even if a website you want to visit is safe to use. The article is written for Mac users, but the method for determining if your browser is safe is essentially the same." 

        John continues, "For all users, check this site to determine if the website you want to visit is secure. The sad news is that your favorite website may fail. It could be only because the site does not have an updated security certificate, or it may be vulnerable to an attack by some issue other than FREAK, so you’re just going to have to take your chances if you insist on going there. For example, my personal website is vulnerable because the hosting service is vulnerable.
        "I have tested the latest Safari browser and have determined that it is safe to use - and this was confirmed after the latest Apple security updates have been installed. I have also just updated Windows 8.1 and tested MSIE and found it to be safe. 
        "The Win 10 Beta with the latest updates is secure for MSIE, Firefox, and Chrome.
        "However, Windows 7, even with the latest update, still has the vulnerable MSIE, and this also applies to both the latest Firefox and Chrome browsers on Win 7. Please continue to monitor your Windows 7 update for updates.
        "It is still recommended that Firefox be the browser to use (instead of MSIE or Safari)."
        John concludes with this, "In addition, Apple has just release iOS 8.2 for the iPhone and iPad, and this release fixes the FREAK bug for those devices. See full article here."
,

Automatic Security Update

,

        Here's some unexpected news.  Jim Hamm lets us in on this, "Apple has issued a security update for the Mac, which doesn't require any action by you -- it's automatically installed. Further info in the article below. http://www.theverge.com/2014/12/23/7440157/apple-mac-first-automatic-update-ever  A quick search of Apple Security brings up other articles with info on this new fix. 

, , , , , , , , , , , , ,

Learn Via Video, etc.

, , , , , , , , , , , , ,

        Helpful PMUG leader John Carter scores big with this link, www.macmost.com/  and you'll want to take a look at this website.  Turns out they have more than 900 FREE video tutorials on how to use your Mac, iPad, iPhone and other Apple Technology.  
        And here's some very welcome news: They never sell, rent or share your email address.  Read details at Policies. 
       No, we're not listing all 900 of their video tutorials.  But look at some of these other helpful categories.  

Here's another list of pages you'll want to check out. 
And this concludes the August PMUG meeting handout that's not getting handed out tomorrow, August 16; it's just posted here for your convenience.  Thanks again to John Carter who keeps an eye out for useful info for us.  
by Elaine Hardt. 
, ,

Security Flaw in USB Flash Drives

, ,

       Quoting from the link below:  " . . . any USB device (flash drive, external hard drive, smartphone, digital camera, mouse, keyboard, etc.) that has been plugged into an untrusted computer should be treated with suspicion -- much like a used hypodermic needle. Further, erasing, formatting, or using anti-virus tools will not remove malicious code from the firmware of USB devices. And there is no known method at this time to scan USB devices to see if they are clean."
       Read about this serious problem here.  Thanks to Jim Hamm for his eagle eye, spotting this vital information. 

, ,

Identity Theft Warnings

, ,

        A recent notice from LifeLock contains some useful information on identity theft.  It states that a Russian cybergang amassed over 4.5 billion records of usernames and passwords.  See here.  They state that smartphone users are 35% more likely to experience fraud than the average customer.  See here.  And, did you know that identity thieves may target the mail sitting out in your mailbox when your flag is up.  See here. 

, , ,

Temporary Price Cut for Password App

, , ,
        "In security presentations at PMUG meetings, we’ve often mentioned 1Password as one of the apps to use for password security,"  Past Prez Art Gorski reminds us.  He then gives the good news.  Read on!  
        "While LastPass is free and does a good job, 1Password has always been pricey. What you get for the money is continuous development and features that you can’t get in free alternatives. For example, the next version for iOS8 will support the TouchID fingerprint sensor and the new extensions that will let it work with many more iOS apps. Currently, 1Password for both Mac and iOS has been reduced in price."  Note here that the price cut is temporary, but the upcoming iOS 8 version will be a free update. http://appleinsider.com/articles/14/08/07/1password-for-ios-gets-temporary-price-cut-upcoming-ios-8-version-with-touch-id-support-to-be-free-update 
, ,

FBI Tracking

, ,

        "In a recent email I mentioned three browsers which offered more security when browsing the internet. Tor was listed as the most secure browser. Here is an article describing how the FBI got into Tor to track people who were frequenting a child pornography network."

        Jim Hamm concludes his remarks with "I'm for keeping government from snooping in our lives, but I fully support the FBI doing something like this. The problem is where does the government draw the line between what is snooping and valid law enforcement? A tough question, and one I don't have a good answer to. What do you think?  Does the end justify the means?"
, ,

Comparing Three Browsers for Security

, ,

       "If browsing more safely on the internet is a concern for you, here is an article that compares three browsers that offer additional browsing security. As the article mentions, no browser offers complete protection," Jim Hamm informs us.  
        He goes on to explain, "After reading the article, I may try the Epic Browser just to see what it's all about.  I'm not paranoid about internet security, but I exercise reasonable caution and run a good anti-virus program."  
        Stay tuned for more info from Jim . . . 

, , ,

Internet Tracking

, , ,

        Maybe you saw this, Jim Hamm did.  "The creepiest Internet tracking tool yet is 'virtually impossible' to block, says Yahoo News." http://news.yahoo.com/creepiest-internet-tracking-tool-yet-virtually-impossible-block-170017224.html  and see this:
http://www.theregister.co.uk/2014/07/21/ios_firmware_contains_packet_sniffer_and_host_of_secret_spying_tools/   

, , ,

Security Precautions for Protection

, , ,

        "If you should decide to use two-step verification as a further protection from ransomware and other malware, here is an article with details on how to go about setting this up," writes Jim Hamm.  
        And John Carter sends this advice:  "If you get a notice from USPS to click on a button to open a shipping label to print, don’t.  Any email is safe to open. Just don’t click on anything unless you have verified what you are clicking on." 

, , ,

Another Search Engine for Privacy

, , ,

         Ginger Carlson passes along this information:  "Here's another search engine that is supposed to protect one's privacy that a friend told me about.  I have downloaded it and used it a few times.
        "If you go to www.startpage.com it has a search block and beneath it "Add to Firefox" (which is her browser).  It works for Safari, too.  When I downloaded it I thought the download hadn't worked until I noticed the tiny little "SP" icon on the left side of the address bar."  

, , , ,

Info on Aviator

, , , ,
        Jim Hamm shares some new info:  "Are you concerned about security while browsing the web?  Here is an article discussing a new browser: Aviator. And here is another article wherein the author discusses his use of Aviator.
        "If you're all enthused now, here is the website where you can download this browser for either OS X or Windows.

        "I've not tried this browser yet, as we're traveling and it isn't convenient to do so. However, one of these days I'll give it a try -- more out of curiosity than any real concern about browsing the web." 

, , ,

Apple's Fix for "Heartbleed"

, , ,

         "I was curious about 'Heartbleed' hearing a lot about it," David Passell acknowledged.  He found some important info. "It apparently can infect Mavericks users and IOS 6.users. Since I am still in the "stone age" with Snow Leopard I am apparently not subject to it."  Read zdnet
        Sure enough, the article emphasizes that the fix is in Apple's 10.9.2 update for Mavericks. Vulnerability is not present in versions of OS X prior to OS X 10.9 Mavericks or iOS prior to iOS6.