Vee wants to know if she needs any more protection than her router to keep her safe online while she's teaching. She doesn't need to add anything to the router itself, but the best thing is to guard her online behavior and keep everything online up to date. Update the OS regularly, when available, as well as the apps. Your browser should automatically update. Also, the router needs to be kept up to date and periodically, it pays to look for an update for it. Also, change the password from default. Turn off WAN administration. And turn off UPnP (Universal Plug n Play).
Richard is having a major problem with Facebook. Someone hacked into his account and altered all his information. So he's lost complete control of every account he uses. Leo says that's what Two Factor Authentication , with an authenticator app. It can guard against. You can also set up trusted contacts, which can aid in verifying who you are as you are trying to get control back. But since it's too late for that, you can only hope to get ahold of someone at Facebook to get help in getting control of your account back.
Ed wants to know if he can use a YubiKey authenticator with his iPhone. Leo says it works great with the iPhone. It's what he uses every day, and he thinks that a hardware key is the best two-factor option. How does it work? Leo says you can get one with a Lightning connector or use the NFC mode and tap it on the phone.
Will it work for Linux? Leo says most flavors of Linux, yes. But there are a few that don't support it, but you can add some code to it to make it work. Here's how.
Karen's work stores their data up in the cloud, but her boss wants to password protect all files because he isn't thrilled with anyone in the company having access to all their data on One Drive. Leo says that Microsoft's Sharepoint is a collaborative security service, which allows companies to provide permissions to folders, files, and other data. Microsoft One Drive for Business also has that feature.
We tend to visit a lot of websites throughout the week. However, it's important to keep an eye on what kind of websites you visit or even links you click on: you can compromise your computer when visiting unprotected websites or click on malicious links. Here are some tips you can follow to more securely browse online:
Dwayne is concerned that he won't know if a website he visits is safe. What if it's been compromised by a hacker? How would you know until it's too late? Leo says that most of us aren't really the target of a hack unless it's a mass attack. And those are a lot easier to defend against. Website attacks are a very common attack, where a hacker will forge the look of a website in an attempt to get you to log into it and steal your login credentials. This happens with bogus bank links. So it's important to be very careful on the links you click on.
Diego got hacked. He was online, and someone gained access to his desktop through remote access. He saw them start open files and folders. So he shut the computer down. He then tried running Malware Bytes and his AVS, but neither found anything. Leo says there has to be a remote access program on his computer. He advises going into add/remove programs and see if there's anything he doesn't recognize. Uninstall anything you don't know why it's there. To be certain, backup your data, format your hard drive, and then reinstall Windows from a known, good source.
Julie's mom uses Windows 7, but she wants to know if it's secure to do her online banking. Leo says that Windows 7 is at the end of life, which means Microsoft isn't fixing any bugs or exploits anymore. So if you go online, you run the risk of being hacked or infected. However, if you only use it for one thing, like online banking, it may be secure. That means no surfing to other sites, no emails, just going to the bank. If that isn't practical, Julie's mom can always upgrade to Windows 10 (it's still free). Download the Windows 10 Media Creation Tool and upgrade.
Here are the five things you need to do with a new router ...
1. Change the SSID and the default password.
2. Turn off WAN Administration (this allows administering the router from the outside)
3. Turn off Universal Plug n Play (UPnP)
4. Turn off WPS WiFi Protected Setup (one button log in)
5. Turn on Encryption and select WPA3 or WPA2. Do NOT use WEP. It's not secure.
Jeff is getting a warning about his WPA2 WiFi encryption. Should he move to a new router? Leo says that WPA2 was cracked, but he'd really have to have someone targeting him to really worry about it. WPA3 is the new standard and routers are starting to include it, but Leo doesn't think there's anything to worry about. He could check the router's firmware update to see if they offer it now. How about separating the SSID for the 2.4Ghz and 5.0Ghz bands? Leo says he can do that, but won't really have to.