Vicky works out of her house in California, while her office is back East. Since they've added McAfee on her computer, her passwords aren't being saved in her browser. Leo's not a fan of McAfee, but since Vicky has no choice, she should check her settings to see if there's something triggered that's preventing it. Can she use post it notes? Leo says sure, because she works at home and that's not going to hurt. She can also keep a notebook.
John's router from the ISP is very easy to get into, and there's no way to change the password. Will LastPass protect him from a brute force attack? Leo says LastPass will only help him if he's able to change the password on the router. Then he could use LastPass to generate a secure password and store it for him. Leo says if he can turn off WLAN Administration, then he should at least do that. Even if an outsider were to log into his router, they only could really change the settings. But this still isn't a great solution.
Cecil is using LastPass and wonders if he's safe using it even on a public Wi-Fi access point, like a hotel. Leo says absolutely. It encrypts all of his passwords and he'll be safe that way. Not even LastPass knows what his password is.
He should make sure he's also encrypting his email. Google is planning to do that through Android later this year.
Aiden made the switch to a Mac and his Time Capsule takes forever to backup. It works just fine in Windows, though. Leo says there are a number of different protocols, and Windows uses that SMB, which is the default language. Apple uses its own protocol called AFP, which is based on the older AppleTalk. Leo advises going into the settings and turning all the protocols on. That will allow it to use the fastest available.
Bob has lost his hotmail password and he can't get any support to help him recover it. Leo says that it may be that the password was hacked and the account taken over. There's a two factor authentication, where if the password is changed, you have to input a code sent to your cellphone in order change the password. But in this case, it's likely they guessed your secret questions with a brute force attack and hacked your account. Secret Questions are a vulnerability because people actually answer the questions. Leo advises to change the password aNd then enable 2nd factor authentication.
Dan has installed LastPass on his computers and his mobile phone. Leo says it's an excellent password vault. But Dan wants to have all devices time out after 15 minutes to lock it down. Leo says that's a good idea. There's a way to do this in the settings. Leo says it may be that the automatic password option has been checked and that's why he can't get it to time out and demand the password to reactivate.
With the news that eBay's servers were breached and passwords were stolen, Leo says users should not only change their passwords, but also should use a password manager or password vault like RoboForm, 1Password, LastPass, etc. They can generate long and random passwords that include punctuation and variety that makes brute force attacks pretty much useless. Then all you need to do is remember one password.
eBay announced a massive data breach and Leo advises users reset their passwords. What's interesting is that the news broke on Wednesday, and eBay has known about it for three weeks. It makes Leo wonder just how bad the breach was. eBay says it was a leak of encrypted passwords. Regardless of how bad, Leo says it's best to change your password. And if you use that password elsewhere, time to stop doing that and use a password manager like LastPass.
OpenSSL is a widely used protocol for providing secure internet traffic. The "Heartbleed" bug takes advantage of a hole in OpenSSL to peer into the memory of SSL servers. It can allow a hacker to ping 64K of random memory repeatedly, thereby allowing them to glean usernames and passwords, and even fake a server certificate.
Marie got the FBI Virus Scam popup that has locked up her computer. Leo says it's highly customizable by the hacker who sends it out and in Marie's case, it demands she call to address the issue. So Leo thinks that it may be an offshoot of the cyrpto locker virus. Or just a malicious website. Regardless, her system has been compromised. The only real way to handle it is to backup her data, wipe the drive and reinstall Windows from a known, good source. She can also run the system restore discs, then update the OS completely.