iHelp Innovate

You may have heard about it in the news, earlier this year two researchers from the University of Leuven, Belgium submitted their research for review, exposing a flaw in our WiFi security. They discovered a critical vulnerability they dubbed, KRACK, which affects the WPA2 security of ALL client WiFi devices. For clarity, examples of client devices are your laptop, phone, tablet, e-reader, etc.

Is this something you need to be concerned about? Short answer is, YES!

If you’re using any Android device, it is of particular concern, because this attack executed on an Android-based client can result in a complete breakdown of the devices wireless security until this is patched. Fortunately, the security patch is relatively simple, but you can expect manufacturers will want to test it to make sure it doesn’t cause issues before releasing. Expect to see big companies like Apple publishing it as beta (aka, not ready for primetime) at first.

Devices such as WiFi access points are at lower risk unless they also act as client devices themselves to connect to other access points. Examples are wireless extenders and the new “Mesh Network” devices such as Eero, Google WiFi, and Linksys Velop that connect together to extend wireless access throughout your home. However, unless you’re very tech-savvy, you may not be aware of a client capability your wireless router has, and there is a long history of exploits against wireless routers. Although less likely, it’s not impossible that a router could be attacked, have its client capabilities enabled, and then compromised. Therefore, please do update if possible, or check that your ISP has done this for you, if you are one of them millions that rent a wireless router as part of your Internet service.

Although sites such as banks and Google are already HTTPS encrypted, the researchers warn that this was easily bypassed in a “worrying number of situations”. The good news is, if you’re using a VPN such as StrongVPN to encrypt all your Internet traffic, you’re safe from attack, because all of your data is rendered unintelligible to prying eyes the entire time you are connected to the VPN service.

Additionally, Mac and PC users do not need to be concerned, because the WPA2 protocol was never properly implemented by either Microsoft or Apple, which consequently made them immune to the attack, and official patches are already available.

Should you update everything you own that connects by Wi-Fi? In a word, yes, but since it may be very difficult to know whether or not the manufacturer has updated your device automatically, or if it must be done manually, whenever you have the opportunity to connect securely via a VPN, we recommend you do so. This will make your life easier and take a lot of worry off your mind.

It’s also important to know that this attack is very sophisticated at the moment, and requires an attacker to be within radio proximity, such as free Wi-Fi in a coffee shop. But, black hat hackers do not wait to take advantage of vulnerabilities like this, and you can be sure a method of simplifying this attack is in the works, seeking those that are unknowingly still vulnerable.

To find detailed information about the KRACK vulnerability, be sure to visit the EFF post about it. For a list of updated devices and those not yet updated, BLEEPINGCOMPUTER is one site taking the lead on tracking this complicated issue.

Have a comment or question? Please gives us your feedback in the comments sections and do join in the discussion on Twitter @dougkrug where you'll find us posting about the latest news in tech, IoT and smart home innovations.

No comments

The rise of "Ransomware", has been steadily growing and the most recent spread of the ransomware identified by the names WannaCry, WannaCrypt, WanaCrypt0r 2.0 and Wanna Decryptor is BIG!

If you're not familiar with Ransomware, you should be. It's a very disruptive and costly threat if you have no protected backup to recover from. Ransomware is malicious software that extorts victims by encrypting ALL files on their system and demanding payment to release the key necessary to decrypt user files and regain access. The victims are threatened with permanent loss of access to their files if they fail to pay-up within a typically short time frame.

Widespread Damage

Reports suggest that upwards of 230,000 PCs running the Microsoft Windows operating system in 150 countries have been infected with WanaCry. Organizations such as the UK National Health Service, FedEx, Deutsche Bahn, LATAM Airlines, Telefónica and others have experienced widespread infection. These are obviously large organizations with very capable IT departments, so this is not a simple matter of incompetence as some are quick to suggest.

The researcher who inadvertently activated a kill switch that stopped the spread of the ransomeware virus said in a quote from The Guardian, “This is not over. The attackers will realise how we stopped it, they’ll change the code and then they’ll start again." No one should get too comfortable.

Preventing Ransomware Attacks

Windows users:

If you're running Windows on a PC make sure you're have the latest critical updates installed, you are running anti-virus software AND anti-malware software.

We suggest Google Chrome as a web browser to reduce the risk of system wide infections executed through browser code.

To check if Windows auto update is enabled:

Start > Control Panel > System & Security > Windows Update

Macintosh users:

If you're a Macintosh user, make sure you're up-to-date with the latest MacOS security updates. Even though this particular ransomeware virus does not apply to Macintosh computers, there is no guarantee a previously undiscovered vulnerability in the MacOS won't also be found and exploited in future attacks. If you are using a Macintosh operating system older than 10.9, you are at risk of many type of attacks and should update your operating system if possible. If the computer does not support MacOS 10.9 or later, it's time to upgrade.

We suggest Google Chrome as a web browser to reduce the risk of system wide infections executed through browser code.

To check MacOS is up-to-date:

Apple Menu > About This Mac > Software Update...

Backup properly - Not to a USB Flash Drive

As always, after updating the operating system and any applicable protection software, the best line of defense is a complete backup of your computer.

Macintosh users should utilize the built-in Time Machine backup software. With the exception of a few system settings, Apple Time Machine can restore your Mac or migrate to a new one as if nothing had changed. In the case of a new computer, you get the benefits of the latest OS, with all your existing files and programs intact, and exactly where you left them.

Windows users have many choices, but we prefer Acronis True Image for it's ability to return the system to a state where it would seem nothing had ever happened, and for painless migrations to new machines when it's time.

Backing up is more important than ever before!

While any backup at all is a good backup, redundant backups are always better. Ransomware can often attack ALL drives that are attached and mapped to the operating system. Keeping data on a separate drive that is not connected is one method, but the problem we see often is, people forget to plug it in, so their backups are out of date. A single backup drive is also a risk when it's used for double purpose. We see this often with laptops that don't have enough storage space. Data, photos and videos end up on the backup drive because it has lots of free space, but then it's only in one place.

Drive failure is also a very real risk. It's a great feeling when we're able to recover data from a hard drive that has started to malfunction. Our clients are happy and that make us feel great too. Unfortunately in some cases, it's not possible.

With drives that won't spin up or with some solid state hard drive failures, the only choice is an expensive recovery service. Expect companies that specialize in data recovery to charge anywhere from $500 for just a small amount of your data to $1000 or much more, depending on how much data has to be recovered and how difficult the steps required are to get it back.

If you have data in just one place, you are at risk

Don't fall into the trap of not backing up because it's inconvenient. If you know you're not disciplined enough, don't have the time, or simply don't want to spend a lot of time manually duplicating backups, take action and get a reliable automated solution. It's painful when we can't recover a drive that had our client's family photos on it, but we know our pain is nothing compared to what they are feeling. Most can't afford to take their faulty hard drive to one of the expensive recovery services, so it makes sense to invest in comparatively inexpensive automated backup solutions

Three backup are best - One off-site

Theft and fire are also very real risks. When a client recently came to us with the news of a stolen laptop and a single backup drive that could not be accessed, we were happy the story ended well and we were able to recover the 5 years of data they had backed up on that hard drive. They made the smart choice of purchasing a Synology NAS (Network Attached Storage) drive after that experience.

In March 2017, we wrote about the benefits of a NAS (Network Attached Storage) drive to reduce dependency on cloud backups, but these devices are also capable of automatic redundant system backups, including one of them on a cloud drive for automatic off-site backup.

Synology NAS drives can also be configured to keep an external backup drive off-line and only connect it when it performs a backup of your backup files in the middle of the night. When the backup is complete, the drive ejects until the next backup. This is a great way to keep backed up files secure from many type of ransomware attacks.

If you are not regularly backing up your system, photos and videos on three different physical drives (one of them off-site), ask us about a Synology NAS for your home or business. We can provide a free quote for automatic worry-free file backup. Your system can even backup via a wireless connection where appropriate.

Please reach out to us and we'll help you choose the right fit for your home or business. Ask us about free demonstrations so you'll know you're getting the right solution before you buy.

Image courtesy of thanunkorn/Freedigitalphotos.net

No comments

When we founded iHelp Innovate, there was and still is a primary goal in mind. Make it simple.

For this, we've always been big proponents of cloud based solutions like iCloud, Google, Microsoft Office 365, FreshBooks and LastPass to name just a few. But, as the cloud has grown into serious business, prices have steadily increased and free tiers are either shrinking or disappearing altogether.

Clouds of a different shape

Cloud services are under greater threat of attack with their growth in popularity, and as millions discovered in recent months, the threats from attack and mistakes can result in lost productivity and revenue. We're referring to the highly publicized attack on Dyn, the domain name provider for many large companies like Amazon and PayPal, as well as the massive Amazon Web Services (AWS) outage caused by human error.

Pay up, or else...

Many proud owners of shiny new iPhones and iPads will come to the realization shortly after purchase, that the 5 GB of iCloud data storage that Apple provides free of charge, is quickly filled and they are now expected to pay a monthly fee to store data and pictures in the cloud. Even Macintosh and Windows 10 PC owners are now encouraged to store everything in the cloud, and then a short time later are told they're out of space and will have to pay the monthly fee to continue backing up their data and photos.

Taking back control

Tired of iCloud, Google and OneDrive telling you you're out of space and asking you for more money? We've got new solutions to automatically shift cloud storage so everyone in your office or family can be covered for no more that $1 per month or less. It's not a subscription and you own it. You'll only have to pay for the electricity to run it and that's somewhere between 50 cents to 1 dollar per month, depending on how often you access it.

How about securely and privately accessing content on the internet? Previously we suggested doing this with an additional WiFi router, but as the threat to privacy has grown, VPN or Virtual Private Network providers are no longer supporting connections that don't have ultra strong security. This results in slow performance with routers that don't have the processing power to handle the extra computations required by stronger encryption methods.

What if you could have 24/7 access to your Documents, Music, Photos, Videos, and have every device wirelessly and regularly backed up, plus have instant access to a secure VPN connection, giving every device a border-free internet connection, without slowing it down? Not only do we have that solution, but it will also back itself up automatically, and notify by email or text message of any abnormal events.

Introducing Synology

We're excited to be able to offer all this in a compact, quite device, no bigger than a standard hard drive. It's eco-friendly too, consuming no more power than a typical LED lightbulb.

Meet Synology. A Network Attached Storage or NAS device, capable of all the above mentioned and more, with no extras to buy, no monthly fees, and no heavy support requirements or massive electric bills. Whether you're a home user or a small business owner, Synology makes a powerful, low cost NAS device that fits perfectly.

Features

Music backup and remote access

Free space on your laptop by moving music to a Synology NAS, but still access it like you never left your home or office.

Photo backup

Keep your phone free to take new photos without having to pay higher and higher rates for cloud storage. In fact, you'll pay nothing at all to store multiple terabytes of photos. Your phone can automatically upload photos to a free cloud service, then Synology will backup those same photos locally and then back that up again, even to another cloud! All fully automatic.

Documents and Data

Never worry about losing your data to viruses, ransomware or equipment failure. Not only can Synology backup Macs with built-in Time Machine support, it can also backup PCs, plus backup itself to multiple free cloud services. It can even automatically encrypt all the data before sending it up to the cloud, so no one but you can ever access your private data.

Access the internet privately at full speed

Can't get content because it's not available in your region, no problem. We still recommend a VPN for this, and Synology lets you do it without having to compromise your internet speed. This centralizing of the VPN account also allows a large number of users to access a VPN service without a need to purchase multiple account subscriptions.

Store notes and access your own office software

There's no guarantee the notes you store with Apple, Google or Microsoft will remain private, but with Synology you can store notes and documents securely and privately without ever sending them to the cloud. Plus you can also backup everything locally and privately in the cloud for free. You control the encryption keys, not Apple, Google or Microsoft. There's even free office software included that you run and access on your own Synology device, keeping all your work safe and private. Ready to take back control of your files and save money? We can install simple one drive solutions for home or multi-drive RAID solutions with automatic "Hot Spare" drives and offline backup for worry-free data management in your workplace.

Please reach out to us and we'll help you choose the right fit for your home or business. Ask us about a free demonstrations so you'll know you're getting the right solution before you buy.

No comments

Pages

About Us

Follow Us

Completely Simple Guides

recent posts

Previous Posts