Binary Code
Computers and other electronic devices store information as Binary Code (which is a series of 1s and 0s that might look like this: 10101001 01101100 11001010).
Network Topology Map
A Network Topology Map is a diagram of a computer network's components, including network access points and connections between its various parts.
Fake Anti-Virus Software
Fake Anti-Virus Software - also known as 'scareware' - is designed to trick you into buying worthless anti-virus protection that you do not need.
Domain Name System
The Domain Name System (DNS) is like the ‘telephone book’ of the Web – it translates a website's name into its corresponding numerical IP address on the Internet.
Social Engineering
A Phishing e-mail is an attempt to trick the recipient into giving up information, such as account, credit card or password information.
Data Encryption
Data Encryption is the intentional scrambling of information into unreadable form - until it is later converted back into its original form by the intended recipient.
Botnet, or Compromised Computers
A Botnet is a collection of computers compromised by a malware attack that can be controlled remotely (via the Internet) to attack websites, send out spam emails, etc.
Distributed Denial of Service Attack
A Distributed Denial of Service (DDoS) Attack can use a botnet to force a website, network or other resource to shut down by overloading it with requests for data.
USB Flash Drive
A USB Flash Drive, aka a 'stick drive' or 'thumb drive' is a portable data storage device which connects to a computer's USB port to send and receive data.
Electronic vs. Static Media
Static Media is something like a book, magazine or printed photo, while Electronic or Digital Media (websites, digital photos, etc.) requires power to be viewed.
Administrative Access
A user with Administrative Rights has unrestricted power to create, modify or delete files, folders, settings and programs on a particular computer.
Computer Security Tip of the Week
Scott Aurnou – Computer Security Tip of the Week: A lot of modern medical equipment is software-controlled and many manufacturers do not update that software regularly. This can make it very difficult to keep that equipment free from malware (and potentially even hackers). What can you do to try and safeguard that equipment? Find out more here…
If you enjoyed this video, you can see more on TheSecurityAdvocate YouTube channel (and subscribe if you like).
By Scott Aurnou
This past week, mobile security start up firm BlueBox Security announced that it had found a serious vulnerability in Google’s Android mobile operating system (the software underlying most of the world’s smartphones and tablets), which it dubbed a ‘master key’ (a fairly accurate description). Using this flaw, an attacker can completely take over an Android mobile device, unbeknownst to its owner. This includes listening in on any conversations either on or near the device, stealing any data stored on it and co-opting the device into a mobile botnet to send spam messages to others. Moreover, the flaw can be found in every version of the OS stretching back to 2009’s version 1.6 (known as ‘Donut’) and affects 99% of all Android devices. Yes, this is a serious problem and the story was soon picked up in mainstream news sources like the BBC and NBC News.
BlueBox had intended the announcement as a ‘teaser,’ with details on the flaw to be offered at a security conference on August 1st, but hackers figured it out within five days. As a result, this is not a theoretical threat.
Read more ›
Computer Security Tip of the Week
Scott Aurnou – Of course it’s easier to just use the same password over and over again on different websites (referred to as ‘daisychaining’), but there’s a real risk in doing that. What is that risk and what can you do about it? Find out more here…
If you enjoyed this video, you can see more on TheSecurityAdvocate YouTube channel (and subscribe if you like).
By Scott Aurnou
‘Phishing’ attacks are designed to steal your personal, financial and/or log in information. This can be done in a few ways, including via email or text message (referred to as ‘smishing’). They often contain links to websites that look legitimate but are really there to steal your account log in information or host malware ready to attack your computer as soon as you click on the link. These emails and messages can also be used to lure you into contact with scam artists posing as potential clients or officials offering to release substantial funds to you if only you would be so kind as to give them detailed personal information and/or a sum up front. Phishing attacks are generally designed to make you take action by either frightening or tempting you. Some of them are actually very well crafted. Some not so much. And some border on the ridiculous. Each month at The Security Advocate, we will present a few examples, along with explanations of what to look out for to avoid falling victim to one of the scams.
The image above depicts a message received from an account on Match.com. The message reads:
Hi,
How are you? I signed on match and i can’t believe i checked your profile on match and came up with what i never believe, you can see it for yourself, just follow this link [scam link redacted] and put it on your browser and see what am talking about, im surprises and it amazes me…
Await your response
Read more ›
