Mark wants to use his Android phone as a hotspot. Leo says that it's under the Internet settings under "Hotspot and Tethering." His phone carrier must support it, usually for an extra charge. But he's having issues using any security with a password. Leo says that's not good. It shouldn't be disabled. Leo wonders if that phone doesn't support WPA2. None is not a good choice. If there's WEP, that wouldn't be great, but it's better than nothing. But he'll ideally want WPA2 with PSK (pre shared key).
One of the ways you can easily protect yourself against malware and viruses is by running as a "Standard" or "Limited" user in Windows. When you run as administrator, programs can easily get full access to your system, including those that might be installed without your knowledge. But when you run as a standard user, you may run into an issue where a program won't run because it requires more permissions. An example of software that would require additional permissions would be a screen recording program. When this happens, you can elect to run that individual program as administrator.
Bob has noticed that Leo hasn't been advocating for antivirus software lately, and his subscription is expiring. Should he renew it? Leo says that most malware hacks are Zero Day now, and security programs aren't really effective against them. Antivirus software even can cause problems. In general, antivirus software isn't really worth subscribing to. Windows Defender is free and offers protection that is perfectly fine. The best defense is his online behavior, and keeping the OS updated.
Facebook reported this week that 50-90 million user accounts were hacked or compromised through three bugs in their interface that would allow a hacker to bypass password challenges through a stolen access token, video downloader access. Facebook says they have fixed the bug and made access tokens unusable for the 90 million compromised accounts. So if you had to re-log in this week, chances are that your account was compromised. Leo also says this is a good time to change your password and turn on 2 Factor Authentication in your Facebook settings.
Mick bought the iPhone XS and wanted to migrate all his text messages to the new phone. Leo says in the iPhone message settings, there is a backup to iCloud feature. But it has to be on beforehand in order to save all messages in the cloud. Otherwise, they are stored locally.
Mick's wife is also having trouble with Face ID, which will unlock for her daughter. Leo says they can train it better using the "setup with alternate appearance" option.
When you get a new router, there are a few things you can do to make sure it's set up securely.
The first thing you'll do is connect it to your computer and check the manual to find out how to configure it.
Once it's connected to your computer, you'll use the browser to navigate to a special address as instructed in the manual. It should be something like 192.168.1.1. This will take you to the login screen for the router.
David wants to know if he's secure surfing the internet on his mobile device. Leo says that nothing is unhackable, but LTE is encrypted and very secure. A phone can be hacked, even at the radio level, though. It's also possible for someone to spoof his SIM card. But it's too much work for the average hacker. It would have to be a state level attack in order to accomplish it. Wi-Fi is less secure, and if he's relying on WPA2 or any other Wi-Fi connection, it's possible to hack it. But that's not easy, either. Odds are, there's really not all that much to worry about.
David is thinking about installing a home VPN. Leo says he understands the security concerns, but he won't like using it for very long. It will really slow down his bandwidth. Leo recommends a service called CloudFlare. It changes his DNS to 188.8.131.52, and then masks his traffic so his ISP doesn't know where he's going. He can set it at the router level and he will protect every device in his house.
Jay's mother is having issues with her bank, that here ATM card is getting accessed over and over again, even though the bank has reissued the card with a separate number. How can that be and what can he do? Leo says that a smaller bank may have lackluster security. Protections are much better on credit cards, than debit cards. You can only be on the hook for $50 with a credit card. With a debit card, the limits are higher. Always keep possession of your debit card and use a credit card for other options, like online purchases, or eating out.
Andy works as a remote IT guy and he's discovered that the company spies on his network. Leo says one way to solve this issue is to disconnect the XFinity router from the company computer. But if they insist on an always on connection, the Tiny Hardware Firewall may be a good solution. It'll connect to the VPN through a separate router and they wouldn't see any other traffic. Another way to do this, is to get rid of the XFinity router and use your own, like the Ubiquity Edge Router X, which gives you discreet lan options.