The Central Texas IT Guy

Web Development Austin, SEO Austin, Austin Search Engine Marketing, Internet Marketing Austin, Web Design Austin, Roundrock Web Design, IT Support Central Texas, Social Media Central Texas

Category: Security Page 66 of 79

How To Detect And Prevent Keylogger Attacks

By

On February 22, 2016

In Security

February 22, 2016

Keylogger, or keystroke logger, is one of the most feared computer security threats in the present times. It is a type of software program that attempts to intercept a user’s personal information by tracking the input from the keyboard. The data stolen can either be stored locally on the user’s computer or sent out the hacker’s system through a remote server. Most keyloggers have rootkit functionality, i.e. they are able to remain undetected in the computer system, working in the same way as Trojan programs. They can be used for various purposes, such as to steal confidential financial details and passwords or simply to monitor the online activity of the employees.

How Does Keyloggers Infect A Computer System?

Keylogger software can be installed on a computer through a number of ways. It can either come as a part of an application downloaded from a malicious source or website scripts that exploit browser vulnerabilities. Attachments in emails, text messages, IMs, social networking websites or peer-to-peer networks can also infect your system. Hardware based keyloggers can be installed by a hacker who has physical access to the target computer.

Keylogger Prevention Tips

  • Be Cautious While Opening Attachments: Files received through emails, IMs or social network should be opened cautiously. More importantly, you should not view or download any attachment received from an unknown sender. These may be embedded with malicious software comprising a keylogger.
  • Install Antivirus Software: Make sure you install and constantly update anti-virus software on your computer system. These applications identify most of the keyloggers as a threat and ensure complete protection against them.
  • Use A Firewall Always: In order to steal information, a keylogger needs to transmit information from the computer to the hacker. The bandwidth used in this process is usually undetectable in the network usage. Installing a firewall is a great line of defense against most keyloggers as it closely monitors your computer’s activity. If any program attempts to send out information, it will either display an alert or ask for your permission to do the same.
  • Use Virtual Keyboard: As far as possible, you should use a virtual keyboard for all the sensitive information you need to enter, such as credit card numbers, bank account details, passwords etc.
  • Change Passwords Frequently: Changing your passwords at frequent intervals will help to minimize the occurrence of a keylogger attack. With this, the information stolen will no longer be useful to the hacker.

For more tips on preventing keylogger attacks, feel free to contact Centex Technologies at (855) 375 – 9654.

How To Avoid Security Pitfalls While Staying Constantly Connected

By

On February 15, 2016

In Security

February 15, 2016

In this digital age, staying constantly connected to the internet has become quite important. However, every new technology comes with its own set of security risks. If you do not take the requisite precautionary measures, your device may be targeted by cybercriminals to carry out hacking or malware-based attacks.

Here are some of the tips to avoid security pitfalls while browsing internet on a mobile device:

  • Be Cautious While Using Public Wi-Fi: If you are using a public internet connection or Wi-Fi hotspot, never access any website that requires you to enter sensitive information such as your bank account details, credit card number, password etc. Most hotspots do not use WPA or WPA2 protection, hence, the information you share over these connections is not encrypted. This may lead to session hijacking and all your personal data can be accessed by a cybercriminal.
  • Do Not Follow Links: You should never click on any attachment or link embedded in email from an unknown sender. It may be a malicious code that redirects to a spam site in order to infect your system with a malware or steal your personal information. Instead, manually type in the URL to make sure you are visiting a legitimate website. Also, do not click on ads that appear as pop-ups on websites.
  • Look For HTTPS: If the information shared between your device and the website being browsed is in a plain format, it can be accessed by anyone who manages to breach your internet connection. When you access a website, verify that its URL begins with ‘HTTPS’ instead of ‘HTTP’.  A padlock icon will also be displayed in the address bar which indicates a secure connection.
  • Improve Device Security: Keep all the mobile applications software updated with the latest patches. You can enable automatic updates or regularly check if any upgraded versions have been released. Enable your device’s firewall to monitor incoming and outgoing connections as well as detect any unusual activity. You should also install anti-virus software and frequently update it to stay safe against commonly found malware.
  • Get A VPN: Another way to be safe while on a public internet connection is to use a Virtual Private Network (VPN). It acts as a barrier between your device and the web by routing your traffic in an encrypted format through a secure network. VPN helps to protect your identity and privacy online.

For more cyber security tips, feel free to contact Centex Technologies at (855) 375 – 9654.

Smartphone Security Tips

By

On February 5, 2016

In Security

February 5, 2016

Keeping your smartphone properly secured is extremely important. Considering the wide range of tasks you carry out through your smartphone, right from social networking and banking to online shopping, following the right security measures has become a pre-requisite. It will help you protect your device against different forms of malware attacks.

Here are some tips to keep your smartphone secure:

  • Use A Screen Lock: This is probably the most basic and often overlooked security tip. Make sure your phone screen is locked at all times, either with a PIN or password. Create a password that is difficult to crack in case your phone is lost or stolen. You can also use a pattern lock but keep your screen clean to avoid leaving fingerprints.
  • Protect Sensitive Data: Even if you have used a strong password, the data stored in your device is still at risk. A cybercriminal simply needs to plug-in a USB cable to connect the smartphone to a computer and access the files stored within. To avoid this, you should keep all your important files and folders password locked or encrypted. With this, the user will be required to enter a pre-set code before the file can be viewed or copied.
  • Set up locate and remote wipe: Most smartphones allow the users to locate the device in case it is lost or stolen. They can even remotely wipe the information stored in the phone or simply change the PIN/password to lock the thief out of the device.
  • Download Apps From Trusted Sources: Allow apps from only genuine sources to be downloaded and installed in your smartphone. Also, check the app’s ratings and reviews before downloading, particularly if it is not so well-known. Read its privacy policy to know what phone features and data the app needs to access.
  • Turn Off Wi-Fi And Bluetooth When Not In Use: Ensure that your phone’s Bluetooth, Wi-Fi and all other wireless protocols are switched off when you are not using them. Else, put your phone in a non-discoverable mode to avoid making it vulnerable to a hacking attack. Also, turn off automatic connections to open Wi-Fi networks to leak out your smartphone’s useful data.
  • Install Security Software: Download a credible and trusted security app to protect your smartphone against malware and viruses. Make sure you frequently update the virus definitions. Some applications also offer additional features such as remote wipe, app lock, data backup etc.

For more smartphone security tips, contact Centex Technologies at (855) 375 – 9654.

Tips For Getting The Most Out Of Your Firewall

By

On January 27, 2016

In Security

January 27, 2016

Firewalls have become a critical component of any organizations’ cyber security program. Though most businesses implement sophisticated security practices, a minor vulnerability at the core can put their sensitive data at risk. In an era of advanced persistent threats (APTs) and other emerging hacking attacks, firewall has continued to be an effective line of defense in most circumstances.

Here are some tips organizations can get the most out of their firewall technologies:

  • Disable Remote Administration: Many routers have the facility of enabling remote administration. This feature allows an external user to administer your firewall settings. Disabling remote administration can make your firewall a lot more secure.
  • Lock Down VPN Access: VPN clients can bring about a lot of security threats as they use unsecure operating systems that are not guarded by firewall. Hence, you must be clear about the data that each VPN user is allowed to access. Avoid giving complete control of the entire internal network to the users. Create a well-defined access-control list to determine different categories of users and the internet services they need to use.
  • Change Default Password: Regardless of how well-configured your firewall is, it can be rendered ineffectual if the hacker is able to crack the password. Therefore, it is important that you change the default password and use a strong one that can’t be easily guessed. The password should be at least 8 to 10 characters long and include a combination of numbers as well as letters. Also, the password should not be used for any other online accounts.
  • Enable Attack Detection: This feature is not available in all network firewalls or may be present with another name, such as Intrusion Detection System (IDS). If possible, ensure that it is enabled so your firewall can detect and prevent common hacking attacks.
  • Keep Settings Consistent: Allowing employees to customize firewall settings can put every computer’s security at risk. When a malware or malicious code breaches the firewall, it becomes difficult to assess where exactly the vulnerability is located. Therefore, the firewall settings should be kept consistent across the company’s network. Even minor changes such as allowing pop-ups or plugins in a single computer system should not be permitted by the firewall administrator.

For more tips on increasing the security of your firewall, feel free to contact Centex Technologies at (855) 375 – 9654.

The Rise Of Cyber Extortion

By

On January 23, 2016

In Security

January 23, 2016

Cyber extortion is a relatively common online crime wherein a hacker demands money to stop or prevent attack on an organization’s website, computer systems/servers or internet network. Since a large number of businesses depend upon internet, cyber extortion has become an increasingly common cybercrime. Most cyber extortionists use malware laden email attachments or spam URLs to infect the target computer systems.

Types Of Cyber Extortion Attacks:

  • Ransomware: This is the most common cyber extortion attack that involves the use of a ransomware to infect an individual’s computer, steal confidential information or encrypt the stored data. The victim needs to pay a certain sum of money in order to retrieve the files. Examples of ransomware Trojans include CryptoLocker, CryptorBit, CryptoWall and CryptoDefense.
  • Denial Of Service: A denial of service attack occurs when a business’ internal network is flooded with unauthenticated traffic that it denies access to the legitimate users. The company’s website may even be shut down for an indefinite period of time. This type of attack primarily targets start-up businesses as they do not have the sophisticated IT infrastructure and security software.
  • Hijacked Accounts: Online account breaches can be quite serious, particularly if they involve financial or social accounts. Cyber criminals are specifically targeting social media accounts as they are not fully protected by the users. In these attacks, the hacker may threaten the victim to erase, alter or leak out the sensitive information until the extortion amount is not paid off.

Tips To Safeguard Your Business Against Cyber Extortion

  • Know Your Data: Understand the type of data your company needs to store and what risks are involved with it. Depending upon the nature and the amount of sensitive information, you should implement cybersecurity practices in your organization.
  • Set Limits: Restrict the administrative privileges for computer systems and corporate network. Limit the number of employees who can access or use the computers containing all the important information.
  • Enforce Strict Password Policies: Educate employees about the importance of creating strong and lengthy passwords for their online accounts. Also, a single password should never be used for more than one account. You can further increase password security by implementing two-factor authentication, wherever applicable.

We, at Centex Technologies, can help you to prevent cyber extortion attacks in your organization. For more information, you can call us at (855) 375 – 9654.

© Copyright 2022 The Centex IT Guy. Developed by Centex Technologies
Entries (RSS) and Comments (RSS)