Monday, March 14, 2016

Do Not Run Your Computer as Administrator

Do Not Run Your Computer as Administrator

 I came across a recent study that reinforced why I recommend to my clients that they not use their computer logged in with administrator privileges. 

 The study revealed that of the 251 vulnerabilities in Microsoft's Patch
Tuesday security bulletins in 2015 with a critical rating, 85% were concluded to be mitigated by removing administrator privileges.

 The primary benefit of running in Standard user-level privilege instead is that programs which try to install without your permission/involvement cannot do so unless you provide the administrator password. This includes malware. 

 This approach is also beneficial if you're sharing a home computer with kids - the last thing you want is them installing programs without your supervision. (And it's best to have parental controls running on their accounts too.)

 The administrator account does not need to be named Administrator. It can be named whatever you like: Master, Admin, Big Kahuna, Sky Lord, whatever. But it needs to be the only account on the computer with administrator privileges. 

 When setting this account up, choose a password that only you or another trusted person knows. 

 After creating the new administrator-level account, log off the computer and try to log in with that account. Verify in Settings or the Control Panel that the account in fact has administrator privileges. This is very important! 

It's critical because in the next step you will demote any other administrator-level accounts. Once you do so, they will no longer have administrator control. If you didn't give the new account administrator privileges, you won't be able to "administrate" your computer. Not good!

 The next step is to demote all other users to Standard user level. I've provided links at the bottom for Widows 7, 8, and 10. Select a desired user and change to Standard. Then log off the computer and log in again as that user, just to test the user can still log in.

 You will notice a change on the computer after doing this: If you try to install software or make system-wide changes as a Standard user, you'll be prompted for the administrator password. 

 Again, this is a best practice for computer security. It applies to Windows computers, Apple computers, and Linux (in Linux, administrator is called root.)

 Thanks for reading.
Sam
---
If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Thanks for reading.
Sam

---

Links for changing account types

Windows 7
http://www.sevenforums.com/tutorials/103538-user-account-type-change.html

Windows 8
http://www.eightforums.com/tutorials/5518-user-account-type-change-windows-8-a.html

Windows 10
http://www.tenforums.com/tutorials/6917-account-type-change-windows-10-a.html
Posted by at No comments:
Labels: , ,
Location: Waimea, HI 96743, USA

Friday, March 11, 2016

GWX means Get Windows 10 - And Yes, You Still Have A Choice - Resistance Is Not Futile

GWX means Get Windows 10 - And Yes, You Still Have A Choice
Resistance Is Not Futile
Way back in June of last year I posted a piece titled "Windows 10 - Upgrade Optional, Can Wait And See." You can see it here

 The clock starts ticking
My post was written in midst of the buzz around Microsoft trumpeting the official release of their latest operating system - Windows 10 - and how they were graciously offering it as a free download to existing customers, beginning July 29, 2015. (You could upgrade as long as you were running Windows 7 or 8.1, that is.)

Many early adopters jumped on the bandwagon. Some had problems, some didn't. Some were impressed, some weren't. Most organizations wisely didn't bite the hook - they played the wait and see game. (This is mainly because they have much more to lose if new software doesn't play nice on their systems.)

 Pushing the product
Microsoft has been pushing the Windows 10 upgrade pretty aggressively ever since that hallowed day last July. One of their main tactics to influence users is to run a little icon in the system tray at lower right, tempting one to install the upgrade. 

 Fiasco
One of my clients felt so pestered by this icon that she did the install. Sadly, it didn't go well. I had to spend hours afterwards making things right, including calling Microsoft tech support to get the upgrade to recognize her previous Windows license, which it should do seamlessly. What a fiasco! And it cost her money, i.e., my time. 

On the other hand, after due consideration to hardware and software versions, and to appease the desires of certain clients, I've installed the Windows 10 upgrade on several computers, upgrading from Windows 7 or 8.1, and haven't had any issues. This I've done on my home systems too - my version of beta testing.

 Businesses, be careful
But again, for organizations, especially those which may have legacy (older) programs or equipment, the last thing they need is the headache of dealing with a post-Windows 10 upgrade snafu. 

 Blocking the upgrade
If you want to play it safe and prevent the pernicious little GWX (Get Windows 10) agent from harassing you, you can do this: Install a free program named GWX Control Panel. I've been successfully doing this for many of my business clients. (After all, we want do the upgrade on our terms, not because Microsoft is bugging us.) You can get this program here

Privacy concerns
If, however, you do take the leap and upgrade to Windows 10, and you are satisfied with the upgrade (you can always roll back if not, at least for short period of time), I suggest you check out the default privacy settings. These are disconcerting to me, because they give too much information and control Microsoft and its bevy of installed apps. I suggest you turn off all the privacy slider bars that concern you.

To see the privacy settings in Windows 10, click the Start button, then PC Settings, then Privacy. You can go item by item and turn off whatever you don't feel comfortable giving Windows access too. If you turn off anything that disables another program, such as Skype, you can always turn it back on. I have turned off everything with no ill effect.  

 Upgrade deadline
A last word: The latest news is that Microsoft is providing the Windows 10 upgrade for free until July, 29, 2016. If you want to upgrade after then, you may have purchase Windows 10 from the Windows Store, likely for over $100. 

My suspicion is that Microsoft will somehow extend the free offer. They really want the entire Milky Way Galaxy to migrate to Windows 10 so they can better monitor people's computers and "provide what consumers want" from the "mother ship" in Redmond. Those privacy settings mentioned above have a lot to do with revenue streams collected from being in "close" (i.e. creepy) partnership with you as long as you are online.

---
If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Thanks for reading.
Sam

Posted by at No comments:
Labels: ,
Location: Waimea, HI 96743, USA

Wednesday, February 24, 2016

Ransomware Attacks Are On The Rise

Ransomware attacks are on the rise
One of the latest ploys cybercrooks are using is to lock up your computer, or the files on it, and demand payment to re-enable access.
Via links in emails or website scams, the crooks trick computer users to install software that encrypts all or parts of a computer's files. The only way to decrypt is to pay a ransom demanded by the perpetrators.  
This is happening not only on home computers but also on government and business systems. Recently Hollywood Presbyterian Medical Center was subjected to this scheme. The hospital said it paid a $17,000 ransom in bitcoin to the hacker who seized control of the hospital's computer systems. Apparently it was worth it to regain access to the data asap instead of struggling to restore it.
The most important defensive tactic against ransomware attacks is to be very, very careful which emails you open, links you click, sites you visit. Even so, we are not perfect.  
So the next best thing is to use an online data backup service, like Mozy.com. Online backup enables you to restore files if you are hacked by ransomware. Worst case, after an attack, you can have a computer tech erase your computer’s hard drive and reload software, then restore the backed up files. Or you can buy a new computer.
Either approach can be cheaper than the ransom requested. And you avoid dealing with the ransomware jerks at all, effectively not supporting their vile business model. That’s cold comfort, but any comfort counts when we’re victimized by criminals.
If you'd like to read more about this, here's a story in the LA Times:

 And here's another story about two more hospital ransomware victims, these in Germany:

http://www.scmagazine.com/ransomware-holds-data-hostage-in-two-german-hospitals/article/479835/

 If you like to beta test software, click here to install an anti-ransomware software program I'm trying out. It's made by Malwarebytes, whose anti-malware program, Malwarebytes Anti-Malware, I recommend.

 A REMINDER...
If you ever suspect your computer is infected by ANY malicious software, unplug if from the Internet immediately and request trusted tech support. The longer the exploit goes on, the more damage the hackers can cause.
Please feel free to forward this tip to friends, family, colleagues, and others.  

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.

Thanks for reading, 
Sam
Posted by at No comments:
Labels: , , , ,
Location: Waimea, HI 96743, USA

Monday, February 15, 2016

Update or Remove Java - the Only Safe Options

Update or Remove Java - the Only Safe Options 

 Oracle has released security updates to address vulnerability in Java SE versions 6, 7, and 8 for Windows. 

 Exploitation of this vulnerability may allow a remote attacker to take control of an affected system.

 Before worrying about an update, however, consider this: If you don't need Java, you can uninstall it. Usually you would only need it for a gaming program or online database that requires Java. 

 If you determine you don't need it, open the Control Panel, then Programs and Features, then locate all versions of Java on the list; uninstall each. Then close all open programs and reboot your computer. 

 If you do need Java, you should only need the most current version, unless otherwise indicated by your specific software program that requires it. You can remove all unneeded versions as explained above. 

 To check if Java is up to date on your system, visit the site below with Internet Explorer or Firefox, and then click the button: Verify Java version. Follow whatever prompts you receive. (The 32-bit Windows online version is fine for most applications. I recommend to not concurrently install third-party applications offered like Yahoo, McAfee etc.)

 http://java.com/en/download/installed8.jsp

 If you're curious to learn about Java, check this link:

 http://java.com/en/download/faq/whatis_java.xml

 This may all seem a bit of a hassle, but if you want to keep your computer as secure as possible, either remove Java or keep it updated. This pretty much applies to every program on your computer, whether Windows or Mac, smartphones, tablets, etc.

 A good rule of thumb proposed by Brian Krebs, author of the book Spam Nation, is this: 1)If you didn’t go looking for it [software available online for download], don’t install it; 2)if you do want it, keep it updated; 3)if you no longer want it, remove it.

 Please feel free to forward this tip to friends, family, colleagues, and others.  

 If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send.
Thanks for reading, 

Sam
Posted by at No comments:
Labels: , ,
Location: Waimea, HI 96743, USA

Friday, January 8, 2016

Be Careful with Email Attachments and Links


Be Careful with Email Attachments and Links

 I know you've heard this many times, but it's easy to fall prey to scammers while we're zipping through our email.

 Malware is commonly activated when people click on an email attachment or a link that launches the malware. 

 So don't open attachments or click on links unless you're certain they're safe, even if they come from a person or company you know. It's better to err on the side of suspicion. If you're not sure of the source, call the person or company. 

 Be especially wary of attachments with sensational names, emails that contain misspellings, or emails that try to entice you into clicking on a link or attachment (for example, an email with a subject like that reads, "Hey, you won't believe this picture I saw of you on the Internet!"). 

 We live in an age where one click of the mouse can ruin our day. Don't let yourself become another cybercrime victim.  Like they teach us when we learn to drive, be defensive.  Look out for yourself. 
Thanks for reading, 
Sam

 ---

 If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 
Posted by at No comments:
Labels: , , ,
Location: Waimea, HI 96743, USA

Wednesday, December 9, 2015

Microsoft Windows Updates - December 9, 2015

Installing Microsoft Windows Updates

 As part of its monthly "Patch Tuesday" program Microsoft yesterday released 12 updates to address vulnerabilities in Microsoft Windows. 

Per Microsoft, exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system.

 I recommend you close all open programs and check for Windows Updates, then install them

 You should be notified to reboot your computer so the updates can be installed. 

 I recommend checking for updates a second time just after the first batch is installed to ensure you have acquired all the updates. 

 Here's how to install updates in Windows 7:

 http://windows.microsoft.com/en-us/windows7/install-windows-updates

 Here's how in Windows 8:

 http://windows.microsoft.com/en-us/windows-8/windows-update-faq

 Here are update settings for Windows 10:

 http://windows.microsoft.com/en-us/windows-10/getstarted-choose-how-updates-are-installed

 And while you're in update mode, I suggest updating your security software as well (AVG, Norton, Kaspersky, Bitdefender, Malwarebytes... whichever you use. And remember to run a full security scan weekly.)

 Don't forget to update your browsers too: Firefox, Chrome, Opera etc. 

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Thanks for reading, 
Sam
Posted by at No comments:
Labels: , ,
Location: Waimea, HI 96743, USA

Tuesday, December 8, 2015

Please Consider Donating to Mozilla.org

Donate to Mozilla.org
In the spirit of holiday giving, if you enjoy Firefox and other free Mozilla software products as I do, please consider donating to their cause. 

Mozilla is non-profit, non-corporate and non-compromised.

They rely on donations to carry out their mission to keep the Web open and free.

Please consider giving today. 

Here's the link:

---------- 

If you haven't already, you can subscribe to our email tips by visiting www.kokuadigital.com and entering your name, email, and "add to email list" in the request form, then click Send. 

Aloha,
Sam

Posted by at No comments:
Labels: , , ,
Location: Waimea, HI 96743, USA
Subscribe to: Posts (Atom)