Ken has a number of emails running in Outlook. A few are Gmail. Everything works fine at home, but Gmail thinks he's being hacked and won't let him log in when he uses a hotspot or VPNs. So he has to go outside the VPN to log into Gmail in order to register the IP. And that only works sometimes. Leo says to go into the Outlook settings and make sure you have a proper profile created using GMail's SMTP for those Gmail addresses, along with your login and password. Leo suspects that is where the hiccup lies. Also, turn on two-factor authentication.
2 factor authentication
Ed wants to know if he can use a YubiKey authenticator with his iPhone. Leo says it works great with the iPhone. It's what he uses every day, and he thinks that a hardware key is the best two-factor option. How does it work? Leo says you can get one with a Lightning connector or use the NFC mode and tap it on the phone.
Will it work for Linux? Leo says most flavors of Linux, yes. But there are a few that don't support it, but you can add some code to it to make it work. Here's how.
Ed wants to know if he needs 2-factor authentication if he's using a fingerprint to log in. Leo says that having a secondary authentication makes him more secure. But a fingerprint is pretty secure by itself. Banks also require a password plus the fingerprint or face recognition. That's pretty good. He will want to be sure his phone is kept in good control.
Larry keeps getting notifications about a video he posted on Facebook. People are complaining that they can't open it. Leo says that it's a phishing scam and they likely got his email address on a mailing list, then hacked into his Facebook page. Larry changed his password. But it happened again a day later. Could his LastPass password be compromised?
Daniel is having an issue with Windows 10, getting a notification that his Microsoft account has had its password changed. He has to verify his account. Then after a few days, the process repeats. Leo suggests turning on two-factor authentication and installing the Microsoft Authenticator app on your phone. It may be that someone keeps changing Daniel's password. Using two-factor authentication that will alert you and require an authenticator will prevent that.
Alex's iCloud account nearly got hacked, but fortunately, his 2 Factor Authentication feature stopped it cold. Leo says that more companies are going to require authentication as a security measure. Everyone should use it.
Joe is having trouble using Authy to log into his social media accounts. Authy is an authenticator that will give you a secure way to log into websites.
Joe also had to get a new phone after dropping his old iPhone into a pool. He took out the SIM, but now, the Authy issue has cropped up. Leo says the only way to fix it is to log into Authy, download the codes to your phone, and then try again. If that doesn't work, select "I don't have my authenticator," and they will email it to you. Then try to use it again.
You can also try turning on 2 Factor Authentication.
Rick posted a few pictures on Facebook, and he sees one picture with a caption he didn't add to it. How did that happen? It also seems to come from a group he isn't a member of, rather than from himself. Leo says that Facebook makes a group of your account automatically so you can share images. So that's probably the group he's seeing. You can also add filters or frames that can be added. It's possible it was added by accident. Check the picture and see what the privacy settings are. If it's public, you may want to change it to friends only.
Jim is getting a ton of emails, that his accounts are being reset. He's worried. Leo says that if your password has been changed, that could be a bad sign you've been hacked. So go into all your accounts and change the passwords again. Set up 2 Factor Authentication for your phone. This will prevent someone else from doing that. Stop using related passwords. Use passwords that are random and distinct for every site. The only way to handle that is with a password manager like Last Pass. You can also set up an authenticator, like Google Authenticator or Authy.
Joe got an email from Facebook saying his password has been changed. He changed it and turned on 2-factor authentication, but the password keeps getting changed back. Leo says that's a scary thought and he probably got bit by a phishing scam and that Facebook didn't send him an email at all. Leo says if it was legit, the first thing the hacker would do is change the email notification.