Richard is getting notified by Google that several websites he's visited have been hacked and he should change his password. Leo says Google has been doing that to advise users that their passwords are showing up on the dark web. Leo says that using a password manager like LastPass to generate all passwords would be a good option. They will also go through user passwords and let them know what ones need to be changed. So all he will need to know is the master password. That's what Leo uses.
Looking at Internet of Things phenomenon, the Portland FBI issued a blog post talking about how connecting your computer to the same network as your internet-enabled refrigerator could pose a security risk. They advise changing the device password settings from the default, make them as long as possible and unique. Leo says that it's not practical to have a separate connection for your IoT devices. But regularly updating your devices and giving them a good password is a good idea.
Doug likes to visit the Aviation Weather Service online, but he's been having trouble with it lately. Leo says that's because it uses Java and the Java browser plugin has probably been disabled. Doug should go into his browser settings and be sure it's installed, updated, and enabled. But it's getting harder to use Java in the browser. If he has Firefox version 52 or higher, or Chrome 42 or higher, or even Safari, the plugin would have been disabled for security reasons. So his only choice may be to use Internet Explorer for that site. He'll have to turn on scripting for Java apps.
John is going to college soon and he's concerned about Wi-Fi security. Should he have a VPN? Leo says he can. He can find out how open the network is by going into iTunes to see if he can see someone else's iTunes library. If he can, then it's insecure. If he can't, then it's locked down.
Scott is looking for a secure internet solution for his apartment tenants. Leo says he'll want to have a business version, which will give him a more reliable and faster connection. Leo suggests buying four different routers in bridge mode with a main Ubiquity Edge Router X. That will enable you to route traffic through the other four routers via a VLan connection. They will have a secure and isolated connection, while still sharing the connection. The other option is to let your tenants secure their own internet connection.
Tom's wife hasn't been able to log into Facebook since last Friday. Leo says that last Friday Facebook logged over 90 million people out of their accounts due to a hack. Many were deactivated until they can prove it's their account. And with over 90 million compromised accounts, it could take awhile. When her account is reactivated, she will have to re-login manually, turn on 2 factor authentication, and it would be a good idea to change her password.
Art bought an Amazon Fire TV and wants to know if he can hardwire it for security. Leo says that a standard Fire TV is Wi-Fi only. The Fire TV Cube offers an adapter dongle for it. And if his Fire TV has an ethernet port, he can do it. But if it doesn't, then he can't.
Paul is concerned about internet of things and security. He wants to know if Plume would be a good, secure mesh router that can protect his network from the outside hacking his IoT. Leo says that Plume requires a yearly subscription to keep it up to date. Leo says it's somewhat justified because it can keep his network more secure. He's paying for security on his network, but his IoT devices may not be getting updated, so they're not secure. And his internet is only as secure as his weakest device.
Kimberly is having issues with her U-Verse internet access after wiring her computer directly. She sees things on her browser she doesn't like. Her "IT guy" says it's an IP issue. Leo says someone is overthinking it. It's not an IP issue. IPv6 is invisible, so that shouldn't make a difference. Not all sites are secure, the only ones that are should be the ones she's giving private information to. And a log in form could be secure while a page is not. Yahoo isn't the greatest ISP to rely on, either.