Make Patching a Priority
There are three things I recommend you do to keep your devices and software better protected from online attacks.
1. Update
2. Update
3. Update
Yes, no joke.
Don't Get Exploited
A top priority of hackers is to exploit known vulnerabilities in software and hardware devices. Software vendors like Microsoft, Apple, Adobe, etc. and hardware manufacturers like Cisco, Netgear, Linksys, etc. release updates a.k.a. patches to fix security holes and bugs. Microsoft, for example, releases patches on a regular schedule for Windows - the second Tuesday of each month. That day is called "Patch Tuesday" in the industry.
Updates for Mobile Devices
On our mobile devices, updates should be notifying you, or automatically updating if you have the auto-update feature enabled.
Be Proactive on Your Computers
On your computers you will get notifications for updates to programs such as Adobe Reader, web browsers, security software, iTunes, etc. However, not all programs notify you. So it's up to you to be proactive. Check in a program's menus for the command to check for updates. This is often under the Help menu.
Patching the Internet of Things (IoT)
As I alluded, it's not just software that needs patching; hardware devices like routers do as well, as do printers, watches, X-boxes, smart-TVs, Internet-connected cameras, etc. Any device connected to the Internet, or which can connect to it in order to download data or programming, such as medical devices (which aren't always online), is part of the "Internet of Things", or IoT. Almost every IoT device can and should be patched when the fixes are released.
When in Doubt, Get Help
So, as laborious as it seems, and can be, do NOT ignore the update notices of software you trust, and notices for your IoT devices. If you are ever in doubt, ask a trusted IT guy/gal or local store, or check the vendor's website directly, such as hp.com, adobe.com, etc. Don't just Google "update my such and such". That's risky, because there are bogus sites out there that will infect your system or scam you.
Updates Change Features
Here's one caveat to installing updates, especially on Apple devices: Updates can change the appearance, features, and security requirements of the system. Apple, like all vendors, will implement changes per their discretion, which is not always pleasing to the end user.
Older, Incompatible Systems
Also, some older hardware and operating systems won't accept the latest software updates; they are no longer compatible with the latest release. Ultimately, this can translate into a vulnerability for a system with known issues, like old versions of Windows, which can't be patched. It's best to keep such computers offline, or replace them. Otherwise, each is a honey pot for a hacker.
Thanks for reading!
-Sam
---
If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.
Showing posts with label IoT. Show all posts
Showing posts with label IoT. Show all posts
Sunday, July 15, 2018
Sunday, January 15, 2017
Tech Magic Comes with a Price
Tech Magic Comes with a Price
So, did Santa give you the
new Internet-connected gadget you hoped for at Christmas? Remember, as they say in
fairy tales, all magic comes with a price!
The
magic in modern times is technology. One of the prices in the cyber
realm is the security vs. pleasure trade off.
This
shows up when we get or buy a new gadget like a web cam for home
"security", then hear on the news they're getting hacked
left and right due to poor protections built in by the manufacturers.
Assume the worst!
Assume
the worst when you set up a new device! Check with one of your techie
friends about it. Or do a web search, inquiring about
security and privacy concerns.
There
are ways to fix some of the known security holes in vulnerable web devices,
such as updating software/firmware, changing default settings, and
turning off any unwanted features.
Amazon Echo Dot - can be too convenient
Like
web cams, the Echo Dot is a cool web toy. If you haven't experienced
it yet, you can check it out on YouTube. One downside is it can be
set for easy ordering from amazon.com. Hence there are many stories
of kids ordering stuff without their parents' permission. Ouch$!
Keep a close eye on your devices and users
If
you want to be security-minded and keep control of your devices - lest
they control or jeopardize your bank account or worse - make a list of
the devices you have and who has access to them. Keep the devices updated, and
set desired controls (such as parental controls). If you're unsure about the vulnerability of any
device, unplug it from the Internet until you research it or get some
help from a techie.
Trust sparingly
It
can be a painful lesson to "trust the company" who made it
to have your security and privacy interests at heart. In my opinion,
most don't. They want a fast turnaround on their investment.
Web
cams (yes, I'm picking on them again) are notoriously unsafe in this
regard. I recently unplugged security cameras for one of my clients
due to the uptick in remote hacking of such systems. We can
still see the cameras in operation and record video to a hard drive, but we have the system unplugged from the web.
Unplug to be safe
Along
these lines, a good rule of thumb when leaving your home for travel
is to unplug all your equipment, including your Internet
modem/router. This is a good practice due to electrical surges from
stormy weather, but also ensures no one can access or hack any of
your devices while you're away.
And
if you ever suspect a device has been hacked, turn it off immediately
and get tech support from someone local or the vendor. Be sure to go
directly to the vendor's website - don't just “google” for help
on that device. There are plenty of scammers who prey on people
searching online for tech support.
Thanks for reading.
Sam
---
If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.
Friday, July 31, 2015
The Internet of Things (IoT)
The Internet of Things (IoT)
Here's an update to the issue I wrote about in my post below, dated 7/31/15.
From the FBI, 9/10/15...
<<Here's my original article>>
Following last month's reported vulnerability of some Chrysler vehicles to Internet hacking, I thought you might benefit from knowing more about The Internet of Things (IoT), which the Chrysler issue concerns. It's an important bit of knowledge for all of us as we become increasingly immersed in connected technologies. (You can read about the Chrysler hack here.)
What is the Internet of Things (IoT)? This term includes any device that sends or receives data via the Internet - from phones and tablets to home appliances, vehicles, and medical devices.
More and more cars, appliances, wearables, lighting, healthcare, and home security systems contain sensing devices that can "talk" to another machine and trigger additional actions. This talking can occur in your home WiFi network and/or remotely over the Internet. The device can be controlled by you via an app on your phone for example, and/or the device can receive downloads from the device manufacturer online without your involvement.
Here are some examples of IoT devices:
- Automated devices which remotely or automatically adjust lighting or HVAC
- Security systems, such as security alarms or Wi-Fi cameras, including video monitors used in nursery and daycare settings
- Medical devices, such as wireless heart monitors or insulin dispensers
- Thermostats
- Wearables, such as fitness devices
- Lighting modules which activate or deactivate lights
- Smart appliances, such as smart refrigerators and TVs
- Office equipment, such as printers
- Entertainment devices to control music or television from a mobile device
- Fuel monitoring systems
Security of such devices is not guaranteed. Though many security and resilience risks are not new, the scale of interconnectedness created by the IoT increases the consequences of known risks and creates new ones.
What can you do to protect your connected devices in this brave new world?
- Keep up with the news reported about the IoT and security concerns.
- Respond to threats that pertain to a device you own promptly.
- Update the software regularly. Do this on the device itself as well as the apps (on your phone and tablet) used to control the device.
- Have a good understanding of how a device works. What is the nature of its connection to the Internet? What information does it store and transmit? Do you feel comfortable about the information it's sharing with the manufacturer?
- Secure your network. Properly secure the network you use to connect your Internet-enabled devices, which can be wired or wireless. One model I'm recommending is a WiFi router with private and guest access. Connect your home appliances, bluray player, and other such devices to the guest WiFi. Connect your computers, phones, and tablets to the private WiFi. This provides some firewalling of the appliance-type of equipment from your computers in case one of the appliances becomes infected by a new virus or is hacked.
Thanks for reading. Your feedback is appreciated!
Aloha, Sam
You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.
Aloha, Sam
You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.
Subscribe to:
Posts (Atom)