Keeping Track of Files in the Era of the Cloud

Keeping Track of Files in the Era of the Cloud

One of the main challenges of living in this fast-paced, tech-infused world is keeping track of where you are storing your data. 

By data I mean the files you consciously make use of on any of your tech devices. This includes word processing documents, PDFs, pictures, music, videos, etc. 

The usual places
In the "old days" it was obvious where you stuff was stored. You would turn on your computer, look in your Documents folder or on the Desktop or on a server drive and there were the icons for the documents; pictures were stored in the Pictures folder; music in the Music folder; server files in a shared folder, etc. This type of data storage is still commonplace.

Beamed to the cloud
But increasingly people are also putting their data on mobile devices and in the cloud, using such products as iCloud, Dropbox, Google Drive, One Drive, etc. This cloud storage can be done from any device, including the slimmest of smartphones. A giant spreadsheet for instance can be stored on your phone and synced with the cloud. 

Cloud or device? 
What does that mean when a file (word processing document, photo, etc.) is in the cloud? Is it only in the cloud, or also on the device? It depends, but usually the file is both on the device and sync'ed to the cloud. The cloud just means a provider's server in some building, hopefully in the U.S.A. (I mean, if we're going to be spied on, better the NSA and our corporations than Russia or China, right?)

The power of syncing 
One benefit of storing files in the cloud is making them accessible on multiple devices. So, for example, one photo could be synce'd to your phone, your tablet, and your computer. Another bonus of the cloud comes into play if a device the file is stored on is damaged, because then you can recover the file from the cloud backup. 

Treasure hunt 
So now that you have a little background on cloud storage, play a game with yourself or a friend. Make a list of five random files. They could be music files, spreadsheets, whatever. Try find where they are located, including on which devices, and whether they are also in the cloud. To check the cloud, you can login to iCloud or Google or Dropbox or wherever you think the file is stored online. Then if you're feeling gutsy, take a file of low importance and delete it from the device. Then try to restore it from the cloud. 

Freeze frame: find that file
Businesses and professionals ideally should be able to do a freeze frame at any point in time and ask, "Where is file X stored?" And know ALL the locations of that file. 

Security and privacy
The next important questions to pose include inquiring who has access to a certain file, and if that access is limited to only those who should see it, including third parties (like cloud providers). Translation, is file X is stored securely and privately? If not, then move it somewhere safe at once. 

We have a right and responsibility to keep track of our files and decide how to control access and protection. But this is just referring to the data you are aware of - files you consciously interact with like the PDF of your tax return. 

The hidden data flow
There's a whole other world of files/data you may never see, i.e. those which flow from your computer and browser to an internet-based server whenever you are online, even when your devices seems idle. Keeping tabs on that data takes even more complex surveillance on your part, and is the subject for another article, or two or three!

Thanks for reading!
-Sam 

Use 2 Factor Authentication to Decrease Your Risk of Getting Hacked

Use 2 Factor Authentication to Decrease Risk of Getting Hacked


If you're even vaguely aware of the news these days about online account hacks - like the recent Facebook breach - then you know the importance of changing your password immediately if you're at risk.
 
Post breach, change password!
Changing your password asap after such a breach prevents a hacker from accessing your account, as long as you change it before the hacker logs in! Otherwise, you have to go through an often-stressful password reset process, during which you have to prove your identity by some other means such as email, phone, or security question answers.
 
Password reset game is no fun
I have helped many clients through this reset process and it's not fun. It's not hard, it just takes time and costs money: my billable time. Believe me, it's not a preferred IT task for either me or my clients. We get painfully reminded about the importance of locking down account access using multiple layers of identification.        
 
Use unique passwords 
While strong and unique passwords raise the bar for anyone trying to hack your account directly, they don't prevent the types of hacks Facebook disclosed. Yet if your Facebook password or any other online password is unique, and you change it right away after a reported breach, then your vulnerability is reduced.

Don't give the keys to the kingdom!
If, however, you use the same password on multiple sites and a hacker obtains info on you, such as your name, email location, and a precious password, you can bet they will try that same identify combination to crack your other accounts. That's why it's critical to have unique and complex passwords, not just variations of a theme like "mydogbruno" and "mydogbruno1".
 
2 Factor authentication boosts security
So, the first line of defense is strong and unique passwords for EVERY online account. The second line is two-factor authentication (2FA), which requires access to something besides the knowledge of a password, like a cell phone. (The password is considered something you know, a first factor. The phone is something you have, a second factor.) The phone lets you receive a call or a text with a code to unlock your account, so it authenticates you beyond your password.
 
2-Step Verification in Gmail
Not all accounts provide two-factor authentication, but for the ones that do, I highly recommend it. Gmail is one. Google calls it 2-Step Verification. Here is a simple scenario after you set this up in Gmail: You get a new device, you try to log in to your Gmail account on it, and Gmail won't let you until you receive a code texted to your phone. You type into your browser or Gmail app that one-time-only code, then you're given access to Gmail on that new device. You won't be asked again, unless something changes on that device to make Google not recognize it.  
 
After setting up 2-step in Gmail, if someone elsewhere tried to log in to your Gmail you'd receive a code on your phone. As long as that phone is with you, that person would have more difficulty accessing your email.
 
Set up 2 Factor where available
Besides Google, here is a short list of sites offering two-factor authentication: Facebook, Microsoft, Yahoo, AOL, and Twitter. If you have an account with any of these sites, take the time to set up 2FA.

Thanks for reading!
-Sam

Make Patching a Priority

Make Patching a Priority

There are three things I recommend you do to keep your devices and software better protected from online attacks. 

1. Update
2. Update
3. Update
 
Yes, no joke. 

Don't Get Exploited
A top priority of hackers is to exploit known vulnerabilities in software and hardware devices. Software vendors like Microsoft, Apple, Adobe, etc. and hardware manufacturers like Cisco, Netgear, Linksys, etc. release updates a.k.a. patches to fix security holes and bugs. Microsoft, for example, releases patches on a regular schedule for Windows - the second Tuesday of each month. That day is called "Patch Tuesday" in the industry.
 
Updates for Mobile Devices
On our mobile devices, updates should be notifying you, or automatically updating if you have the auto-update feature enabled. 

Be Proactive on Your Computers
On your computers you will get notifications for updates to programs such as Adobe Reader, web browsers, security software, iTunes, etc. However, not all programs notify you. So it's up to you to be proactive. Check in a program's menus for the command to check for updates. This is often under the Help menu.  

Patching the Internet of Things (IoT)
As I alluded, it's not just software that needs patching; hardware devices like routers do as well, as do printers, watches, X-boxes, smart-TVs, Internet-connected cameras, etc. Any device connected to the Internet, or which can connect to it in order to download data or programming, such as medical devices (which aren't always online), is part of the "Internet of Things", or IoT. Almost every IoT device can and should be patched when the fixes are released. 
 
When in Doubt, Get Help
So, as laborious as it seems, and can be, do NOT ignore the update notices of software you trust, and notices for your IoT devices. If you are ever in doubt, ask a trusted IT guy/gal or local store, or check the vendor's website directly, such as hp.com, adobe.com, etc. Don't just Google "update my such and such". That's risky, because there are bogus sites out there that will infect your system or scam you.
 
Updates Change Features
Here's one caveat to installing updates, especially on Apple devices: Updates can change the appearance, features, and security requirements of the system. Apple, like all vendors, will implement changes per their discretion, which is not always pleasing to the end user. 

Older, Incompatible Systems
Also, some older hardware and operating systems won't accept the latest software updates; they are no longer compatible with the latest release. Ultimately, this can translate into a vulnerability for a system with known issues, like old versions of Windows, which can't be patched. It's best to keep such computers offline, or replace them. Otherwise, each is a honey pot for a hacker.   

Thanks for reading!
-Sam

---

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.

Update Your Router To Boost Security

Update Your Router To Boost Security

You know those movies depicting the days of yore when the royals lived in a castle? Such a flick wouldn't seem authentic without a scene of people passing through the castle gates, complete with a drawbridge and a moat. Given such castles were built of solid, high walls, it's implied there was no way in or out except through the gate. 

Your modem is the castle gate
In the kingdom of the Internet, as far as homes and small businesses are concerned, there's only one way in and out, only one castle gate: the modem. On Hawaii Island, the modems are provided by Hawaiian Telcom, Spectrum, satellite internet providers, or cell providers like AT&T and Verizon. 

So the modem is THE conduit to the Internet. No modem, no Internet. (Here I'm limiting the scope to not include connecting on a cell phone to the Internet via a cellular data plan.)


Modem/router
Some of these modems are actually a modem/router combo. The router component is what allows multiple users to connect through one modem via a wired or wireless connection. Some folks have a modem from the telco provider and a router they bought off the shelf, like a Linksys or Netgear brand.

Castle gate, but no protection
Now here my catle gate analogy breaks down a little, becuase a modem by itself affords virtually no protection against Internet crooks. It's actually the router that provides gate keeping. The basic protection a router affords is a firewall, but there are other security features like WiFi encryption, etc. 

I highly recommend not connecting a computer to the Internet directly via a modem, even if you have only one computer. Install a router between your computer and the modem.  
Hacking Targets
Given that we depend on our routers for security, it's very important to know they are regularly the target of hacking. Cybercrooks are constantly on the lookout for router vulnerabilities. The cheaper and older a router is, the less likely the manufacturer is to "patch" it, which means to keep the software up-to-date against known threats. 

How to secure your router
What can you do to keep your router as secure as possible? There are several things, but one of the most important and oft-neglected is to update the firmware (the router software). The most common way to do this is login to your router via the router's IP address in a web browser, then locate the update option. Note: Only do this when you can afford for the router to be shut down, because the firmware update will reboot the device. You can check for specific firmware instructions on the vendor's site for your router, such as linksys.com or netgear.com, etc.

Additionally, if your router is older than two years, I suggest replacing it. A router's performance decreases over time; and as mentioned, security can be compromised if vendors don't keep patching the defects.
 
Get some help
Be sure to get some help configuring a new router, because out of the box it's not optimally secure. If the router is provided by your telco, they will upgrade you to the latest model for free. 
 

Here's another article with more info and tips on this subject:

https://www.lifewire.com/how-to-upgrade-your-wireless-routers-firmware-2487671

Thanks for reading!
-Sam

---

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.

Hey Mac Users: Get Your Guard Up!

Hey Mac Users: Get Your Guard Up!

There was a recent news article about a 28-year-old man who allegedly hacked into thousands of computers. Federal prosecutors say he created malware that enabled him to remotely access and turn on the cameras and microphones of the computers.  

His malware program is named Fruitfly. It was found in both PCs and Macs. The article reported that many cybersecurity researchers were surprised it was on so many Macs. Why surprised? Because there are far more Windows PCs in the world, so most hackers don't target Macs. 

However, as I and my other tech colleagues on island well know, there is plenty of malware out there aimed at Macs. We've seen it and removed it.

The cited article reports a 270 percent increase last year in new strains of malware for Macs. 

So what can Mac users do to better protect their systems? Here are some suggestions, most of which pertain to Windows PCs too. 

• The primary shield is you. Be careful which sites you visit, which links you click, who you let on your computer, which programs you install, etc. 
• Back up all important data frequently, preferably online. For local backup to external hard drive you can use Time Machine. For online backup I recommend Mozy.com (it's free for up to 2 GB backup).
• Make sure to install all Apple updates when they're issued.
• Create an admin account, password protect it, and demote your usual account to standard user level, and password protect it.
• Install anti-malware software. A good free program is Bitdefender, or Malwarebytes. For a paid program, I recommend ESET Cyber Security. If you suspect you're already infected, you can run a scan with the free Malwarebytes program, then download, install, and scan with Bitdefender or ESET as well. [disclosure: I'm reseller of ESET]
• Make sure you are behind a hardware firewall on your network and update it. (This usually means your router.)
• Enable the Mac OS X firewall.
• If you have children using a Mac, enable Parental Controls. 
• If you're a mobile professional (using a MacBook) I suggest enabling FileVault, which encrypts your files. And enable Find My Mac.
• Keep up with Mac-specific security news.

Thanks for reading.
Sam

Article referenced above
https://www.npr.org/sections/alltechconsidered/2018/01/12/577761143/ohio-man-charged-with-putting-spyware-on-thousands-of-computers?sc=tw

Here's another article about Mac vulnerabilties to malware infections:
https://www.malwarebytes.com/mac-antivirus/?utm_source=double-opt-in&utm_medium=email-internal-b2c&utm_campaign=EM-B2C-2018-May-newsletter&utm_content=macbookT

---

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Which Browser is Best?

Which Browser is Best?

I get asked this loaded question frequently. It's loaded because there is no one right answer, and because whichever one I propose will soon likely have some flaw reported that smears its good name. 

So instead of pointing to one, I usually answer like a psychotherapist, tossing a question back: What do you use the browser for? 

Because practically speaking, that's what matters most. For example, some of my clients found Internet Explorer worked best when viewing certain sites they liked. So there it is: use that browser for that purpose. 

Here are some more specific tips:

Google Chrome
For users of Google's Gmail and Google Docs, I recommend Google Chrome. It seems to work best for that purpose.

Mozilla Firefox
For general browsing, I recommend Firefox. It's mostly stable and Mozilla is intent on keeping it as secure as possible. 

Microsoft IE (Internet Explorer) 
I have always found Internet Explorer kind of clunky; but that's just me. If it works well for you, then use it. It's pretty much built-in to Windows. 

Microsoft Edge
This comes with Windows 10. It's sleeker than IE and many users report liking it once they get used to it. 

Update and Refresh
The most important aspect of using any browser these days is keeping it updated. This provides protection against the known exploits that target a specific browser's weak points. You can also refresh/reset browsers when they get buggy. You may lose some of your customization afterwards, but the performance boost is worth it. 

Minimize plug-in use
Another rule of thumb is to minimize the plug-ins you install in a browser, such as the Adobe Flash Player plug in. These are also exploited when not kept current. (I do recommend the Privacy Badger and HTTPS Everywhere plug-ins.)

A Brave new browser
Recently I've been test driving a new browser called Brave. It is a cleanly designed browser with easy-to use privacy and security settings. 

Brave is open source and blocks online ads and other trackers. Unlike traditional browsers where ad-blocking takes place via a third-party add-on or extension, Brave’s browser has this technology built in, which should offer users more privacy and increased speed and performance.

Segmented browsing
My current approach to using browsers is to limit what I do with each one. As mentioned above, I use Chrome primarily for Gmail and Google Docs, and a few other business-only sites. I use Firefox for my personal email, calendar, and personal banking.

I use Edge and Explorer for some other personal Gmail accounts.

I use Brave for all other browsing, web research etc.

Why segment? For one, it keeps me focused on the kind of tasks I'm doing based on which browser I'm in. Chrome=work. IE=youtube watching. Brave=websurfing. 

Also, if I visit a poisoned site which infects my browser, the damage may be limited to that browser, so I can sanitize the infection more easily. (A counter argument could pose that using several browsers enlarges the "attack surface" for malware and hackers, as having more software means more attention to keeping it current.)

A separate tablet or laptop
Another type of "segmenting" I recommend for professionals like doctors, lawyers, etc. is to dedicate one computer to work-related web use. Then use either a tablet or a small laptop, like a Chromebook, for personal websurfing and email while on the office network. The Chromebook is less likely to get infected or hacked due to its operating system, and even if it were, there would be minimal data on it. Plus it can easily be "power washed" to remove any infections.  

Use what works best and is safest
With the rapid evolution of a variety of web services as well as rampant hacking and malware distribution, browser makers are hustling to keep pace by providing sound software products. We users just gotta keep up with what works best and is safest for our purposes. There's no one best solution. 

Thanks for reading.
Sam

p.s. if you're hungry for more detailed info on the browsers mentioned in this article and the many others omitted, check this wikipedia link.

---

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Do Not Run Your Computer as Administrator

Do Not Run Your Computer as Administrator

I came across a recent study that reinforced why I recommend to my clients that they not use their computer logged in with administrator privileges. 

The study revealed that of the 251 vulnerabilities in Microsoft's Patch
Tuesday security bulletins in 2015 with a critical rating, 85% were concluded to be mitigated by removing administrator privileges.

The primary benefit of running in Standard user-level privilege instead is that programs which try to install without your permission/involvement cannot do so unless you provide the administrator password. This includes malware. 

This approach is also beneficial if you're sharing a home computer with kids - the last thing you want is them installing programs without your supervision. (And it's best to have parental controls running on their accounts too.)

The administrator account does not need to be named Administrator. It can be named whatever you like: Master, Admin, Big Kahuna, Sky Lord, whatever. But it needs to be the only account on the computer with administrator privileges. 

When setting this account up, choose a password that only you or another trusted person knows. 

After creating the new administrator-level account, log off the computer and try to log in with that account. Verify in Settings or the Control Panel that the account in fact has administrator privileges. This is very important! 

It's critical because in the next step you will demote any other administrator-level accounts. Once you do so, they will no longer have administrator control. If you didn't give the new account administrator privileges, you won't be able to "administrate" your computer. Not good!

The next step is to demote all other users to Standard user level. I've provided links at the bottom for Widows 7, 8, and 10. Select a desired user and change to Standard. Then log off the computer and log in again as that user, just to test the user can still log in.

You will notice a change on the computer after doing this: If you try to install software or make system-wide changes as a Standard user, you'll be prompted for the administrator password. 

Again, this is a best practice for computer security. It applies to Windows computers, Apple computers, and Linux (in Linux, administrator is called root.)

Thanks for reading.
Sam

---

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Thanks for reading.

Sam

---

Links for changing account types

Windows 7

http://www.sevenforums.com/tutorials/103538-user-account-type-change.html

Windows 8

http://www.eightforums.com/tutorials/5518-user-account-type-change-windows-8-a.html

Windows 10

http://www.tenforums.com/tutorials/6917-account-type-change-windows-10-a.html

The Internet of Things (IoT)

The Internet of Things (IoT)

Here's an update to the issue I wrote about in my post below, dated 7/31/15.

From the FBI, 9/10/15...

http://www.ic3.gov/media/2015/150910.aspx

<<Here's my original article>>

Following last month's reported vulnerability of some Chrysler vehicles to Internet hacking, I thought you might benefit from knowing more about The Internet of Things (IoT), which the Chrysler issue concerns. It's an important bit of knowledge for all of us as we become increasingly immersed in connected technologies. (You can read about the Chrysler hack here.)

What is the Internet of Things (IoT)? This term includes any device that sends or receives data via the Internet - from phones and tablets to home appliances, vehicles, and medical devices.

More and more cars, appliances, wearables, lighting, healthcare, and home security systems contain sensing devices that can "talk" to another machine and trigger additional actions. This talking can occur in your home WiFi network and/or remotely over the Internet. The device can be controlled by you via an app on your phone for example, and/or the device can receive downloads from the device manufacturer online without your involvement.

Here are some examples of IoT devices:

• Automated devices which remotely or automatically adjust lighting or HVAC
• Security systems, such as security alarms or Wi-Fi cameras, including video monitors used in nursery and daycare settings
• Medical devices, such as wireless heart monitors or insulin dispensers
• Thermostats
• Wearables, such as fitness devices
• Lighting modules which activate or deactivate lights
• Smart appliances, such as smart refrigerators and TVs
• Office equipment, such as printers
• Entertainment devices to control music or television from a mobile device
• Fuel monitoring systems  

Security of such devices is not guaranteed. Though many security and resilience risks are not new, the scale of interconnectedness created by the IoT increases the consequences of known risks and creates new ones.

What can you do to protect your connected devices in this brave new world? 

• Keep up with the news reported about the IoT and security concerns.
• Respond to threats that pertain to a device you own promptly. 
• Update the software regularly. Do this on the device itself as well as the apps (on your phone and tablet) used to control the device.
• Have a good understanding of how a device works. What is the nature of its connection to the Internet? What information does it store and transmit? Do you feel comfortable about the information it's sharing with the manufacturer? 
• Secure your network. Properly secure the network you use to connect your Internet-enabled devices, which can be wired or wireless. One model I'm recommending is a WiFi router with private and guest access. Connect your home appliances, bluray player, and other such devices to the guest WiFi. Connect your computers, phones, and tablets to the private WiFi. This provides some firewalling of the appliance-type of equipment from your computers in case one of the appliances becomes infected by a new virus or is hacked. 

Thanks for reading. Your feedback is appreciated!

Aloha, Sam

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Google Chrome Browser Security Update - 43.0.2357.65

Google has released another update to its Chrome browser, now version 43.0.2357.65.

This update applies to Windows, Mac, and Linux to address multiple vulnerabilities. 

Per Google, exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system.

I recommend updating Google Chrome if you have it.

To update the browser: 

1. Open Google Chrome.
2. Click at upper right on the three horizontal bars.
3. Click Help, About Google Chrome near the bottom.
4. Chrome will then check for updates and install if any.

While you're in the update mode, I suggest you check for OS (Operating System) updates for Windows, Mac, or Linux, whichever you are running (on all computers you own); and update your AV (Anti Virus) software.

---

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Adobe Acrobat Reader Security Update - 11.0.10

Adobe has released a new security update for Acrobat Reader, now version 11.0.10

I recommend that you install it. 

Before doing so, close all open programs and save your work, as you may be prompted to restart the computer when the update installation is completed. 

You can check if your version of Adobe Reader is current by opening the program. 

Then click the Help menu at upper right. 

Then click Check for Updates. 

Adobe will check for updates, and download if needed. Note: You'll see the Updater at lower right of your screen. 

Once the Updater has downloaded the updates, click the Updater icon to install, then follow the prompts. 

You may be prompted to click Restart Now to complete the procedure. This will restart your computer. 

---

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Adobe Flash Player Security Update - 17.0.0.188

Adobe has released a new security update for Flash Player, version 17.0.0.188.

I recommend you install it. 

You can check if your Flash is current on the site listed just below. (Do so in each of your browsers, i.e., Firefox, Internet Explorer, etc. Note: if you update Google Chrome, it includes the latest Flash version.)

Check your Flash version:

http://www.adobe.com/software/flash/about

If you need to update, here's a link to Flash on Adobe's site:

https://get.adobe.com/flashplayer/otherversions

Again, be sure to install Flash per the version needed for each of your browsers.  

And very important, now and forever: Don't download Adobe Flash Player from any other site except the adobe domain (adobe.com)

Last, when updating Adobe products don't install any optional offers, such as McAfee. Just uncheck the box and proceed to download and install Flash, or Reader, etc. 

---

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Mozilla Firefox Browser Security Update - 38.0.1

Mozilla has issued another security update for its Firefox browser. 

I recommend you install the update. 

To do this, open Firefox. Then at upper right, click the three horizontal bars. At the bottom of that menu click the ? symbol (help). 

In the next window click About Firefox. The browser will check if it's up to date. If not, it will download updates and prompt you to install. 

Then Firefox will restart and be current (version 38.0.1). To verify, you can follow the above steps again. 

---

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Mozilla Firefox Browser Security Update - 37.0.2

Mozilla has issued another security update for its Firefox browser. 

I recommend you install the update. 

To do this, open Firefox. Then at upper right, click the three horizontal bars. At the bottom of that menu click the ? symbol (help). 

In the next window click About Firefox. The browser will check if it's up to date. If not, it will download updates and prompt you to install. 

Then Firefox will restart and be current (version 37.0.2). To verify, you can follow the above steps again. 

---

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Adobe Flash Player Security Update - 17.0.0.169

Adobe has released a new security update for Flash Player, version 17.0.0.169.

I recommend you install it. 

You can check if your Flash is current on the site listed just below. (Do so in each of your browsers, i.e., Firefox, Internet Explorer, etc. Note: if you update Google Chrome, it includes the latest Flash version.)

Check your Flash version:

http://www.adobe.com/software/flash/about

If you need to update, here's a link to Flash on Adobe's site:

https://get.adobe.com/flashplayer/otherversions

Again, be sure to install Flash per the version needed for each of your browsers.  

And very important, now and forever: Don't download Adobe Flash Player from any other site except the adobe domain (adobe.com)

Last, when updating Adobe products don't install any optional offers, such as McAfee. Just uncheck the box and proceed to download and install Flash, or Reader, etc. 

---

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Mozilla Firefox Browser Security Update - 37.0.1

Mozilla issued a security update for its Firefox browser. 

I recommend you install the update. 

To do this, open Firefox. Then at upper right, click the three horizontal bars. At the bottom of that menu click the ? symbol (help). 

In the next window click About Firefox. The browser will check if it's up to date. If not, it will download updates and prompt you to install. 

Then Firefox will restart and be current (version 37.0.1). To verify, you can follow the above steps again. 

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.  

Deterring Theft of Your Home and Office Computers

Deterring Theft of Your Home and Office Computers

What's the issue?
It seems whenever we tune into the news these days we hear of another computer system hacking. Whether it's an attack on big business, government, or celebrities, the black hat hackers are chalking up victories. But there are less techie ways of getting to our confidential data. 

Why should you care?
Because it's so easy to be ripped off. A criminal could find the opportunity to pick up your computer (or phone or tablet) and walk off with it. Cyber theft can be that simple.

Speaking from my perspective on Hawaii Island it seems most homes and businesses don't have alarm systems. Most don't seem to have very good locks on their doors either. I have yet to see a laptop locked to furniture. The deterrents to computer theft around here are low. 

So it would be quite easy for a thief to acquire a computer in these environments, such as after business hours, or when the homeowner is away. And once the computer is in hand, even if it's password protected, any data on that computer is compromised. (Encrypting the data does boost your security.)

Expect the worst! Reasons for stealing a computer range from a disgruntled employee, a mad ex-spouse or partner, a desperate drug addict, etc. 

How to protect yourself?
If you have confidential info on your computer, and you could imagine a scenario where someone would steal the system, please think of ways to counter that. 

Installing good door and window locks is a start. For a business, an alarm system is a good investment. If you are leaving for the weekend or going on vacation, you can hide your computer. There are cord locks you can install, which latch the computer to furniture (it's a deterrent). You can lock a server in a closet or cage. There are many approaches to boost security. 

Put on the hat of a thief and survey your home or office for ways a computer could be stolen. Think how it would affect you if the computer were stolen. Then take appropriate action to protect that asset. 

When should you do it?
ASAP! The word is out on the "cyberstreet" that stolen data is a commodity. Don't wait until after you're a victim. 

Where can you find more info on this topic?
Here's a website that offers theft prevention tips.

Who can help?
Ask a friend or family member or IT consultant to help assess your computer theft vulnerabilities. Two heads are better than one to craft defenses. 

In Sum
The nexus between the online and offline worlds provides many angles for the criminals. Let's keep our guard up so we don't become another statistic of cyber crime. 

Thanks for reading. You're feedback is appreciated!

Aloha, Sam

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Be Careful When Using Wi-Fi

Be Careful When Using Wi-Fi

What's the issue?
Whether you are connecting to Wi-Fi (wireless networking) with your laptop, tablet, or smartphone... whether at home, at work, or in public... be aware that your privacy and security are vulnerable to hackers.

To clarify, Wi-Fi is not used when connecting to your cell provider's data network. It is accessed most commonly from a wireless router at home, work, or in a public setting.

Why care?
Wi-Fi is not a secure transmission medium, even when encrypted. This means information you exchange across the wireless network is not secure--your confidential information. This includes casual websurfing, email use, and e-commerce.

To illustrate, when connecting to Wi-Fi at Starbucks (via the Google network there), you are presented with this snippet from their terms of use: "You understand that This Wi-Fi... is not inherently secure and that wireless communications may not remain private or free of interception or access by others. We will not be liable to you or any other party for any lack of security that may result from your use of This Wi-Fi..."

Google is making it crystal clear that Wi-Fi is not inherently secure and that you are responsible for your own security. This applies anywhere you are using Wi-Fi, especially outside of your home or business network, which hopefully you have already secured--that is, reduced, not eliminated, the risk of hacking by using the best encryption available. 

How to best protect yourself when using Wi-Fi?
Without getting too technical, a best practice is to only use Wi-Fi when connected via a VPN (Virtual Private Network). One program providing this type of protection is Hotspot Shield by AnchorFree. They offer free and paid versions. 

After you install their program, whenever you connect to Wi-Fi, you can run the shield to access the Internet via a secure, encrypted tunnel (VPN). 
You can obtain the Hotspot Shield software here. 

When should you do it?
Any time you connect to Wi-Fi do so via VPN. If you can't, be very careful about what you do online. For example, avoid banking, shopping, and any sites that require password login. 

Where can you learn more on this topic?
You now know what to do as a user of Wi-Fi. In addition, here are some best practices for setting up Wi-Fi at your home or office.

Who can help?
If this all seems too technical but you are concerned and want to be better protected, you may want to hire an IT consultant. This is an especially good investment if you are responsible for data security in an office environment. 

In Sum
Wi-Fi is wonderful technology. It gives us access to online resources in diverse locations worldwide. However, we must reduce the security risks when using it so we don't get taken advantage of, which is increasingly common.  

Thanks for reading. You're feedback is appreciated!

Aloha, Sam

You can subscribe to email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email" in the request form. 

Offline Data Security - A Very Good Place to Start

Offline Data Security - A Very Good Place to Start

What's the issue?
All the buzz these days in computer security is about protecting your digital data (computer-generated data) from hackers, which is a very important concern. But confidential digital data that can be exploited online (on the Internet) can actually originate offline. 

Why care?
It can be even easier for a criminal to steal your confidential information offline instead of trying online, and then use that info online to cause you much grief.

Take the contents of your wallet for example. Your identity and your financial assets can be exploited by a crook who obtains the items in your wallet--namely, your drivers license, bank and credit cards, membership cards--then finds a buyer for these items on the Internet. (There is a thriving online market to exploit these assets.)

With the info on your precious plastic cards a cyber (computer) criminal can open new accounts in your name, make purchases, and impersonate you. Depending on the creativity of the cyber thief you could be in for a long struggle to mitigate damage to your identify, reputation, and/or finances.

How to protect yourself?
A good habit is to take stock of the confidential items in your wallet. Photocopy and/or write down all pertinent information on the front and back of each card. Then store this record in your home safe. In the event your wallet goes missing you can refer to this record to notify the appropriate institutions and authorities immediately to stymie criminal activity. 

Also, the fewer items in your wallet the better. And don't carry your Social Security card, account numbers, or passwords in your wallet. Let’s not give the bad guys extra ammunition.

When should you do it?
A monthly check and update of your wallet's contents is best. After you first make the record it only takes about five minutes to note what's been added or removed from your wallet. When done, put the record back in your safe.

Where can you find more info on this topic?
The Better Business Bureau of Hawaii website has some good tips about identity and financial theft. Click here to learn more.

Who can help?
If you are elderly, ask a trusted friend or family member to assist. Seniors are frequently the victims of identity theft and financial scams. You can also ask your bank and credit card companies how they can help protect you in the event of theft.

In Sum
The bottom line is to be wary of theft in the offline and online world, and minimize our information exposure so cyber criminals can't use the latest tricks to their advantage and our anguish.

Thanks for reading. You're feedback is appreciated!

Aloha, Sam

P.S. You can subscribe to emailed computer tips by visiting www.kokuadigital.com and entering your name, email, and "add to email" in the request form.