Saturday, July 14, 2018
What is spearfishing?
Spearfishing has recently been in the news with the Mueller investigation mentioning the Russian operatives doing spearfishing in July 2016 on Democratic Party accounts. Spearfishing is a special kind of phishing.
Phishing is when emails are sent to a bunch of email addresses to attempt to get people to reveal personal information. Quite often phishing emails are sent telling you that you need to click on a link about a package delivery or something wrong with a bank account etc. What they are then wanting in these emails is for you to enter your account number/name and password and it is a factious login screen and that they now have your login information.
Spearfishing is a specialized kind of phishing. Instead of sending the emails to every email address in a domain they send to select addresses as they are looking for login or other type information only from certain people, usually higher-ups or people in positions to have privileged access. In the case of the spearfishing with the Democrats we know at least one of them was the head of Clinton’s campaign and that he clicked on the link either giving them information or downloading a file that then gave them access to his account. In that specific case we know he was suspicious and did what he should have done and asked his IT people but was given wrong info and told it was ok email.
If you get an email like was in that spearfishing attempt the best bet is always don’t open it and delete it. A fair number of computer hacking jobs occur from the inside so even being told by someone in the company it is ok, may have been untruthful information. Best bet is don’t open and delete if any question in your mind and then contact the company/person/organization separately to see if it was real. If it was they will get information from you in another way.
It is strange that phishing for information is spelled with ph and spearfishing is with an f. However Mueller news reports have it correct and a Cisco cybersecurity class I am taking spells the same.
Sunday, June 3, 2018
Does shutdown really mean shutdown?
With the latest updates to Windows 10, one of Microsoft’s claims is that Windows shuts down and faster now. While it does startup quicker when you turn it on it is not as a result of speeding up the shutdown process, but no longer actually shutting down. Windows by default now goes in a sleep state when you choose shutdown instead of a powered down state.
A sleep state is where Windows saves an image of what all is in memory and turns off power but has not shut down all the items running. Then when you turn the computer back on, Windows does not go thru starting everything from scratch but puts everything back in memory as it was when it was shutdown (actually went to sleep). You will find your browser opens all tabs that were open previously (and no prompt about if you want to restore tabs as Chrome does when tabs open when it closes.
If you want your computer to actually shutdown when you choose to shutdown (in the Windows world words mean different than in real world, see start for stop) there is a few steps you can do to get the prior way of operating.
Click on start button then choose control panel (the gear shaped icon above the power icon). Then choose the System icon. Choose Power and Sleep in the list on the left. Under Related Settings choose Additional Power Settings. Click Choose what the Power Buttons Do.
Now click Change Settings That Are Currently Unavailable. Uncheck Turn on Fast Startup.
Click Save Changes and you can close Control Panel.
Sunday, October 15, 2017
What is a security hash?
When machines exchange passwords across the network or the Internet there are three basic ways the password could be sent.
The first way is that it sends the password to the server in plain text form. This way should never be used for a password as a person who picks up the signal across the network can easily read the password.
The second way is by sending encrypted communications. This means that what ever is sent is basically scrambled using some format and at the other end the information is unscrambled. This makes it harder for the password to be stolen while being sent but knowing the method used to encrypt the communications, the password and message can be decrypted and read. This is basically a good method and most often used and works fine as long as the code to do the scrambling or encrypting is long enough.
The third way is by using a hash. This is not something that we eat. This is taking the encryption to a new level. Your credit cards that use the chip on them use a hashing method. With the hashing method the password is not actually sent (either encrypted or decrypted. The sending device used a method and key to create a hash of the password which is then sent. The hash creates a whole new code and even knowing what code and method was used to create the hash will not allow you to decode the hash and create the password (with encryption you could do this). The receiving machine knows how the hash was created and either creates a hash from the password on file (or better yet created a hash when you set up password an never kept the password) and then the receiving machine compares the hash sent to the hash it has or just created and sees if matched (similar to just sending passwords). Now there is a special code (the hash) that is created each time and compared and no way to recreate the original password (it is theorically possible but such complex math and so much work involved it would take way to long (years) to do and not worth it)
You really do not need to understand how hashing works but you want to know when passwords for credit and debit cards and financial information are sent across the network that they use hashing which is a very strong security. However keep in mind the bad hackers, etc. are always trying to find ways to beat the system so constant improvements must be made by the good security people.
Send me your questions about computers to me at the paper or to my e-mail dwight@dwightwatt.com and tell me you read this in this paper. I will pick a question to answer each week.
Dwight Watt does computer work for businesses, individuals and organizations and teaches about computers at a college in nw Georgia. His webpage is www.dwightwatt.com His e-mail address is dwight@dwightwatt.com
Saturday, January 7, 2017
Intelligence and election fraud
We have seen in the last month charges of election fraud and reports that the government intelligence agencies have determined that the Russians were hacking things related to our electoral system. President Obama has declared that the intelligence agencies have determined it did occur and that we are going to strike back which would be a form of cyber warfare.
Let’s pause and think back. For 15 years now we have been told that Bush led us wrongly into the war in Iraq because of the claim that the government intelligence agencies lied to Bush (and Clinton before him) that Iraq had weapons of mass destruction. Reports have said the stories of yellow cake in Nigeria were wrong. Obama and others have repetitively said that we should never have trusted the intelligence agencies
For years anytime any bills are considered in state legislatures to combat election fraud the loud response we hear is there has only been a few isolated instances of election fraud and that laws such as securing the registration process and cleaning the voter rolls are not needed.
Now consider what Obama has just told us. Government intelligence has assured him that the Russian government hacked the DNC and Hillary's campaign and that we must attack them back to prevent this from happening again. Secondly he tells us this is election fraud and we are hearing lots of people claiming the election was stolen and should be voided or changed because of this.
Think about this carefully. The same agencies that supposedly lied and provided the information that Bush used to put us in Iraq war, and which information we assume Hillary used in voting for us to go to that war. Now Obama says he has seen information and will attack Russia (without Congress authorization) in cyber warfare. We have seen some stories say not an intelligence heads were on board with the Russian government charge. In addition, now we will go to cyber-war over election fraud led by the party that has told us again and again that there is no election fraud and that we do not need to do anything about it.
Before we attack Russia in cyber warfare we need to consider all this more closely and whether the hacking occurred from Russia (either from there or China or a former Soviet satellite is a statistical strong possibility) and whether it was the government (under orders from Putin they claim) or was it some non-government group. We need to work to make our elections not have fraud. The voting machines are not connected to the Internet so they cannot be hacked during voting. They could have stuff planted in the software but we need to make sure it is all secure. An attack on Russia could be much more deadly for us than Iraq was. We know Russia has nuclear weapons
Do I have a Yahoo account?
This fall Yahoo has announced two data breaches with 500 million and a billion accounts stolen.
There are a large number of people hacking in various business, government and individual accounts all the time. There is no way to have a server connected to the Internet that is completed protected from breaches. You can make it securer and the data securer but you cannot stop a break-in from possibly happening. In addition, the more you make your material available to people the more openings to break in. So be assured there are break-ins and attempted break-ins of all systems all the time. Think of t like a store. If you allow people to touch merchandise, then shoplifting will occur.
You may have accounts at yahoo that may have been stolen and not realize it. The media has played it up like it was email accounts stolen, but yahoo is lots more than that. Any account at Yahoo is in the breaches.
Accounts that may have been stolen (Yahoo has not been clear yet) include Yahoo email accounts, email accounts that Yahoo administers, Flickr (Yahoo’s photo service), their fantasy sports programs, their blogging service Yahoo Groups and others.
Email accounts run or administered by Yahoo include most of the former Bell telephone accounts like AT and T, BellSouth and others. When you go in your email
look at the top and see if says powered by Yahoo. If so it is probably in breach. Google also administers accounts for others and Microsoft does so also. A lot of college email accounts are administered by Microsoft.
What should you do if think you have a Yahoo account? Change the password on the account. If you have other accounts that use the same password and username change their passwords. I would encourage you to use different passwords everywhere. Easy way to do that is use something about site in the password (but not just that). CNN was saying to delete your old emails but that makes no sense. If they were stolen they already have them so doing does not stop them.
Strange election
It is a strange race. Everyone seems voting against not for someone. Republicans say how horrible Clinton is and democrats say how horrible trump is. And then you hear lots of Democrats saying Clinton not liberal enough and lots of republicans saying trump not conservative enough. And trust of both candidates really low.
Sunday, November 6, 2016
The election
We have watched a wild election for the USA presidency this year from the primaries to the final election day next Wednesday. Candidates have run campaigns in ways that always have been said to not work but won primaries. Both final candidates have a large dis-like number
Everyone who is a USA citizen needs to vote. You can early vote in most states (37 is last count I saw on states with early voting). Whether you like either of the two major candidates or like just one or dislike both or do not like any of the major 2 and the Libertarian and Green, you need to vote. It may be choosing the best or choosing the least of the worst, but vote. I voted Friday in early voting Friday. If you vote (no matter how) you can complain about what the person elected does for next four years. If you do not vote you chose to not participate and you can't complain until after 2020 (which will be the year we all have perfect vision in selecting a president and everything else).
All this campaign cycle we have heard Hillary would win the primaries and the general election in a landslide. Of course we hear the same thing 8 years ago until someone named Obama appeared. We have also heard the whole time that Trump had absolutely no chance and would lose substantially in primaries and lose election in landslide. Sanders challenged Hillary thru the primaries and was in that much later than expected (he was predicted to be gone after 2 or 3 primaries). Since winning nominations the claims have been Hillary will have biggest landslide in popular vote ever over Trump and he has stayed close all the way to now.
Things to consider about 2016. First Trump and Sanders ran sas outsiders. Brexit was essentially same issues in Great Britain and was expected to fail all the way and in the end it passes to surprise of establishment and polls. I suspect there is a lot of information being given wrong or not given to pollsters and the polls here may be off as there. Polls show close but could turnout a rout by one of them. The fallout on both sides (mud is flying thick) with emails continuing and sex tapes, etc. In addition the independent conservative (never Trump movement) and the libertarian may win electoral votes.
What will be the outcome at the end of November 8, 2016, who knows. It may be weeks until settled and even possibly go to House. Remember Electoral College electors are only pledged and can change their votes. One did in a Nixon election. The important part is that your vote is in there too.
Subscribe to:
Posts (Atom)