Monday, May 22, 2017

FIDO U2F Security Key Review And User Guide – 2017

What is U2F Security Key

You have probably been asked, when signing in to web accounts like Facebook, Google, Instagram, or others, to preform two factor authentication. Usually, this means giving them your phone number, getting a text, and entering a string of letters and numbers into the webpage. The idea is that because only you have your phone, if you can put in the correct code, you can prove your identity. This provides more security for your account because it prevents a malicious hacker who knows your password from taking control of your account – they don’t have your phone, e-mail, or other second authentication. The downside is that typing in numbers and letters all the time is annoying, error prone, and sometimes not even secure.

The Solution: FIDO U2F Security Keys

Fortunately, we can solve this program with a FIDO U2F Security Key. Basically, it’s just a little USB stick that hangs on your keyring, and uses the same technology as the golden chip in your credit card. Having it is proof to the outside world that you are in fact you. To use it, all you have to do is plug it in to your computer and have your accounts set up to accept it as authentication – no typing of keys required. Like the chips in credit cards, it contains a unique signature that proves your identity, but because it uses modern encryption technology, not all of the information is transferred to websites you use it with. In fact, even if someone intercepts your traffic, they cannot impersonate you or steal your key, because to send data that says it is from you, you need the physical key itself. What makes it especially useful is that it is organized by the FIDO Alliance, a nearly universal group of tech companies including Google, Microsoft, PayPal, AmEx, MasterCard, VISA, Samsung, Intel, and Bank of America. This means that all you need is one FIDO U2F key to log into and protect most of your online presence.


How do I get a U2F Security Keys ?

How do I setup my key on Facebook And Google ?

Many websites offer this option. Here’s how, for Facebook and Google:

How To Set Up U2F Security Keys On Your  Facebook Account

1. Go to the Settings page by clicking the arrow in the top right corner, then “Settings
2. Go to the “Security” tab on the right of the screen
3. Click “Login Approvals“, the second item on the list of options
4. Next to the entry “Security Keys” and a blue and gold U2F Key Icon, click “Add Key
5. Follow the directions to connect your FIDO U2F Security Key

How To Set Up U2F Security Keys On Your Google Account

1. Go to your google accounts page. You can get there however you want, or go to https://myaccount.google.com/
2. Under “Sign-In & security” on the left side, click “Signing in to Google
4. Scroll down and click “2-Step Verification
5. Click “Get Started
6. Enter your Google password
7. Complete the process to turn on 2-Factor Authentication using your phone. This will involve entering a code from a text message.
8. Now scroll down to the section on alternative second authentications. Under “Security Key” click “ADD SECURITY KEY
9. Follow the directions and insert your key to tie it to your account.

From now on, securely logging on to either account from any computer will be as simple as plugging in your key.

New, Simpler, and More Secure Accounts. Most popular web browsers, including Mozilla Firefox and Google Chrome, automatically integrate FIDO U2F Security Keys. This means that it’s a significant upgrade to security over traditional second factor authentication systems, like the security key in a text message. This is because of the way that encryption works – the key goes from your USB Key to your computer’s browser to the website you’re browsing directly – a hacker listening in has no opportunity to steal the key you’d otherwise have to type in. This will keep your banking and data safer than ever before possible.Security keys promise to significantly simplify and improve online security. They offer the possibility to end having to memorize long and complex passwords, reduce the risk of hacking attacks and compromised accounts while on public networks, and a more pleasant, universal, and secure solution than security text-messages. Very easy to obtain at a very low price, they are the future of account security.

Thursday, May 18, 2017

How To Protect Computer From Ransomware Attacks (Update 2017)

Table of Contents [hide]
A recent global-scale cyber-attack hit thousands of computers, locking them down of their own personal files and demanding up to $300 worth of bitcoin to restore the original state of the computer – that amount doubles up after three days whether you want to get the decryption key or lose your files forever. Making matters worse, it goes through networks and servers that infect like a worm virus. This is now called the WannaCry ransomware. As of writing, it has infected more 200,000 computers in more than 150 countries – comprising hospitals, government authorities, banks, and even universities. Personal computers are also vulnerable – targeting old Windows OS without the latest patch available.

How To Protect Computer From Ransomware Attacks (Update 2017)

Ransomware Affected OS

Only three old OS can be affected by the WannaCry ransomware: Windows 8, XP, and Server2003. The latest OSsare free from the attack IF they are installed with the latest update: Windows 10, 8.1, Vista, 7, Server 2008, Server 2008 R2, Server 2012, Server 2012 R2, Server 2016. Non-windows OS is free from the attack.
If you are one of the unlucky ones, here is a step-by-step process on how to protectcomputer from ransomware update 2017 .

Keep Windows Update and turn on auto-update

How To Protect Computer From Ransomware Attacks (Update 2017)

 

The best way to keep yourself from being attacked by the ransomware is to update to the latest Windows patch that you are using. You manually check all the available updates here. To download and install automatically from your computer: click the windows logo at the bottom-left, type “Windows Updates”, and open “Check for Updates”. Most users hated the auto-update feature of Windows 10 – as they turned it off, for good. But in this case, auto-updating might just save your files from being deleted.

Install Ransomware Blocker update 2017

 

How To Protect Computer From Ransomware Attacks (Update 2017)

 

One antivirus software is not enough to protect your computer, sooner or later, it can get passed by the security that the computer is currently using. To make sure that you’ll be able to protect yourself from ransomware, it is ideal to install a dedicated ransomware blocker like Malwarebytes Anti-Ransomware or CybereasonRansomfree – both are free.

Block port 445


MalwareTech posted on Twitter that “If you turn on a system without the MS17-010 patch and TCP port 445 open, your system can be ransomwared.” An in-depth guide how to block port 445 can be seen here.

What if it is affected by ransomware

How To Protect Computer From Ransomware Attacks (Update 2017)

 

Apparently, there is no way to remove the ransomware for free – with customers opting to pay the ransom fee to restore their files and the computer to its original state. Luckily, the guys from Bleeping Computer provided a step-by-step process, though it’s not yet verified by trusted sources, it’s better than nothing, at the moment.

Back it up to the cloud storage

 

 

Cloud storage platform like Dropbox, Google Drive, One Drive provides a good backup storage, in case your file were infected. This way, you can still restore the important information if the computer being used is affected. Carbonite – works the same way as other cloud platforms but can recover all the wannacry-encrypted files by running through the earlier versions. If you’re not affected yet by the ransomware, it is now a good idea to use a cloud platform as a backup storage. It’s free to register and the allowance for online storage can be expanded by paying a certain fee.
For affected users reading this, do not pay the ransom fee just to get your computer unlocked. It is not fixing the problem permanently and you are just letting your computer to be ransomware-free for a while and is still left vulnerable by the attacker, in case they did unlock your computer.Make sure to ask assistance from a trusted friend who knows something about computers and/or,browse the internet for the latest update regarding the attack and how to prevent it. The Internet is a free commodity that you have and thousands of users are already trying to prevent this attack and helping others by posting a prevention process just like this one.
Moving ahead, it is essential to give importance to the updates delivered by your OS, and not turning on the auto-update feature is costly for users as you leave yourself vulnerable to any kinds of attacks. Again, we can not stress this enough – updates are very important. By installing them, you are basically adding another layer of security in preventing hackers or attackers getting a hold of your files