Security and Privacy

Malware, viruses, hacks, and anything else that may compromise your identity online, computer, or digital device.

Russians Crack Popular Encryption System

Episode 1354

Telegram

Telegram is an encryption system that many use to keep messages secure. The news is that Russians have cracked it, though. That could impact other apps like WhatsApp, but Open Whisper Systems says that WhatsApp, Signal, and even Facebook are still secure in encrypted mode. Leo also says that if you want to encrypt your email, PGP and GPG are still solid.

Read more at Mashable.com.

FTC Takes Router Manufacturer D-Link to Court

Episode 1352

Gavel

The Federal Trade Commission is taking router manufacturer D-Link to court over product security and privacy issues. This all relates to the lack of security for Internet of Things devices. The FTC alleged that the company “failed to take reasonable steps to protect their routers and cameras from widely known and reasonably foreseeable risks of unauthorized access.”

Read more at theverge.com.

What's the best password vault?

Episode 1351

Mark from Sydney, Australia
LastPass

Mark was using the same password for every site he went to. Leo said that he used to do the same thing. The importance of password security has snuck up on us, and we should all really be using a password vault like LastPass or 1Password. The main important difference between LastPass and 1Password is that LastPass keeps your vault on their servers, whereas 1Password gives you control over where the vault is stored. Each are very securely encrypted.

Are my passwords safe?

Episode 1349

Yogi from Long Beach, CA
LastPass

Yogi uses a text file to store all his passwords. It's encrypted, and his passwords are randomly generated. He then cuts and pastes the password to enter it. Is that safe? Leo says yes. If his computer has a key logger, it can't read a cut and paste like it can his typing. An easier way, though, would be a password manager like LastPass or 1Password. Steve Gibson also has a password generator at grc.com/passwords

Britain Passed the Most Extreme Surveillance Law Ever in a Democracy

Episode 1341

Houses of Parliament

Britain passed the "Snooper's Charter," which is being claimed the most extreme surveillance law ever passed in a democracy. Current Prime Minister Theresa May introduced it before she was Prime Minister. She's tried two times to pass it, and after four years, it was passed on Wednesday by both houses of Parliament. The law will force internet service providers in Britain to record every internet customer's web history in real time for every place they visit. It discourages encryption. It gives law enforcement and intelligence agencies the power to hack into devices of any citizen.

How could my son get a job in IT?

Manny from Parkland, FL

Episode 1337

Manny's son wants to get into IT, but he's wondering how he could get a job. Leo says that certifications are the diplomas of the IT world. Microsoft and Cisco has CERT programs. He should look at the certs he wants to get and then sign up to get that training. There's even a hacker cert for those who want to work in IT security. Leo suggests ITPro.TV for getting the right training to qualify to test for the certs. Once he gets that first job, then it depends on how good he is at it for getting that second job.

Is it safe to update my browser to read an HTML file?

Rick from Glendora, CA

Episode 1335

Rick has a free file viewer, and it's asking to update the HTML. Leo says don't trust that. HTML is the language of the web and the browser reads it. He doesn't need a special "update" to view it. The first thing Rick needs to do is run Microsoft's Malicious Software Removal Tool. He can do this by pressing Windows Key + R, then typing "MRT" and hitting enter. He should do the full scan.

What do you think of the Tiny Hardware Firewall?

Episode 1334

Patrick from Long Beach, FL
Tiny Hardware Firewall keychain

Patrick heard Leo talking about Tiny Hardware Firewall in the past, and he also uses it. The idea of this is not unique to this company. It's actually created by HotSpotVPN. They buy inexpensive boxes and then put firmware in them that routes everything through their VPN. As part of a subscription to their VPN, or as part of the hardware purchase, you'll get this automatically. The downside is that the Tiny Hardware Firewall must use HotSpotVPN, and can't use a different service.