Notes From The Tech Man

Your account has been compromised

April 5th, 2009

I had a visit with a client this last week which involved a successful phishing expedition.

At first my client thought she had been afflicted with the Conficker worm that’s been going around since the event occurred on April 1. On the positive side, she didn’t have any infections as her system was fully updated and the antivirus program was working fine. All other diagnostics pointed toward clean.

However, on April 1 she received an email purporting to be from her provider saying that there was a problem with her account and she needed to confirm some details. She clicked on the link and followed along with the questions that were asked. It was basically over at that point.

The first she heard of a problem was when someone else notified her that she was sending out spam and that maybe her computer had a virus. A likely reason that this was not the case was that she was using one of the popular web-based email services. While using one of these services can be convenient (you don’t have to get a new address if you change your internet service provider and you can read it anywhere), getting support to fix this kind of a problem can be nearly impossible.

Among other things, I did help her get situated with a different e-mail address and started the process of securing other accounts so that anything present in the compromised account couldn’t be used against her.

This situation is not unlike what can happen with offline identity theft. You almost end up having to make the process of correcting the issue a second occupation.

What can you learn from this?

No legitimate company (bank, online service, etc.) will ever send you an email saying that your account has been compromised. If you think about it, if your account was truly compromised, would you actually get an email about it? One of the first things that would be done by the compromiser is to change email information in the account so that the true user wouldn’t be able to know or fix the problem.

In the fine print of an email that received from my bank, it said:

Emails from [bank] are intended to inform you of our offers, promotions, and updates. [Bank] will never ask you for confidential account information to be sent by unsecured email or provide a link to a sign on page that requires you to enter personal information. If you need to communicate sensitive customer information to [bank], you should go to [bank's web site], sign on to Online Banking, and communicate with us via the secured messaging center.

All other services I’ve used have similar language.

Tags: e-mail email conficker
Posted in E-mail, Internet | No Comments »

Read this and save money on software to fix your computer.

August 24th, 2008

Last week I got an e-mail from a woman who had a problem with her Windows-based computer and had tried several different titles of software (including the one I mentioned in this post). She had contacted one manufacturer who gave her an enormous list of things to do to try to clean things up. She mentioned that she felt it odd to be given this list when the software should have done it for her (the first half of which were just deleting temporary files). I agreed.

I believe she found my earlier post when searching for help with the software she’s already tried. She had a problem, tried a number of software titles to fix it, started following the instructions she got from the one manufacturer, and now her e-mail program doesn’t work. She found me and asked what software I would recommend. In the end, I had to give her the bad news that it was a little late and her best option was to backup, reformat, reinstall, and restore.

Now, on to the question of which software I would recommend to fix problems in Windows. The answer is a clear one based on years of trying various titles and encountering various issues. There is not a single software title that I would recommend to fix problems with Windows. I honestly believe that if you spend any money on such software you may as well get used to a lighter wallet and being no closer to solving the problem than you were before.

Many years ago I had tried one title that purported to keep Windows from crashing and allow you to figure out what went wrong or to at least be able to save your work before Windows came to a complete stand-still. The version of Windows I was running at the time was 3.1. This version was fairly notorious for crashing any time you blinked (and even then it was more stable than its 3.0 predecessor). My system was running fairly stably at the time, however. I installed this software and immediately regretted it. I went from a crash frequency of a couple or so each week to several per day. The feature that was touted to keep Windows running never worked as advertised. Thankfully, when I removed the software, my computer returned to its original reliability. As a result, I’ve been cautious of any other software to make these claims.

One of the problems with using software to fix problems with your computer is that not all of the problems you have are going to be software related. You may also have some malicious software on your computer which will fight off being fixed. I can’t think of a single title that would be “find problems in my hardware, fix problems in my software, and remove bad software you find” software. If you have the talent and experience, you either won’t need software or you’ll know exactly what would be used to properly diagnose the problem. If this isn’t your area of expertise, you may not get the correct combination of software to do yourself any good. There’s also the possibility that you wouldn’t be able to interpret the results.

That being said, there is software out there that you can use to maintain your computer. One that I use on a semi-regular basis is called CCleaner. It’s an all-around good utility for removing excess junk from your computer which is running Windows. By default it will purge your temporary file caches, internet browser caches, Recycle Bin, and a bunch of other caches. I am conservative in what I allow it to delete. As one example, I don’t allow it to delete browser cookies as some of them are convenient for the user. I would use Spybot Search & Destroy instead to selectively remove ad-related cookies. CCleaner can also clean up your registry. I’m of a mixed opinion about this as the Windows registry (under current versions of Windows) is fairly self-maintaining. While useless items won’t delete themselves, they generally aren’t harmful, either. If you find this feature scary, don’t use it. How much will you pay for this software? Nothing. The developers of both CCleaner and Spybot offer them for free.

There is a lot of good, free software out there. There’s probably more bad, free software, though. If you have a need, I’m probably aware of a good, free title that will do the job. It may not have the polish of a commercial title, but it won’t cost you anything but a little time to give it a try.

Tags: ccleaner, finallyfast, Maintenance, Software, spybot
Posted in Maintenance, Software | No Comments »

Annoying malware out there, hits Macs as well.

August 17th, 2008

While there have been some proof-of-concept exploits out there, malware that affected the Macintosh operating system has been an extremely rare beast. A new exploit out there appears to affect both Windows and Macintosh systems equally. This new one appears to hit Firefox on both platforms. It may affect other operating systems and browsers as well. In fact, this post suggests that it will affect Safari on the Mac.

I’ve read about it on a few sites but a concise description can be found at The Register. The gist is that it affects your computer by taking over the clipboard and permanently implanting the URL of a web site. The only remedy appears to be to reboot your computer. There may be other remedies, but a reboot appears reliable and effective.

I haven’t tried to infect myself to see what else can be done. I generally try to avoid this as I don’t particularly like playing with fire.

One of the recommendations for preventing is by using a plugin for Firefox called NoScript. I use this myself on my Firefox installations. It combined with Adblock Plus keep me not only fairly safe, but allow web pages to load a little faster with fewer ads and other annoyances. The downside is that NoScript itself can be an annoyance. You have to use its menus to permit sites to run scripts either on a permanent or temporary basis. It prevents Javascript, Flash, and pretty much any other scripting language out there. I don’t normally recommend it to others unless they are willing to go through the additional hassle it creates.

Whether you use some kind of protection or prevention software, the big thing to take from this is to browse carefully. The exploit appeared to have come from ads placed on popular sites that most will not usually think as being a source of bad things.

Tags: firefox, Internet, mac, malware
Posted in Internet, Software | 1 Comment »

Lock up that wireless

May 15th, 2008

I am a regular listener to the Clark Howard show. He is a consumer advocate with a daily radio program. You can listen to him locally on KCMX 880 AM or do as I do and download his podcast through iTunes or directly from his site.

A couple of weeks ago he had a caller who was curious about whether she should drop her Verizon broadband service in favor of this free “Linksys” one that she had access to which appeared to be much faster. As I gathered from her call, she was using Verizon’s cellular-based broadband service and not DSL or FiOS. The Linksys network was a neighbor of hers who hadn’t changed any of the settings on the router and just plugged it in.

In my travels, I would say that at least a third of the people who buy a broadband router will never customize any of the settings. I’ve even noticed similar issues with the DSL or cable modem products which include wireless functionality (although this is beginning to change with the defaults having some form of security included).

One of the reasons why Clark told this caller to not use the free wireless that she could use was that she was at risk of having her user names and passwords to banks and other financial institutions skimmed while on an open network. In general, this is not true as your bank will have an encrypted browsing session that goes directly between your computer and the bank so that nothing in between can capture that information. Some reality, though, is that most people use the same user name and password for all sites they log in to and not all of them set up a similar amount of encryption. It would then be trivial for a bad person to see where you were going and just try to use the credentials from a site which didn’t encrypt to try to get into your bank.

Clark did touch on the idea that using someone else’s open wireless connection without permission is a gray area under the law. Since I’m a geek and not a lawyer, I’ll echo that sentiment. However, if you own such an open network, you may be subject to whatever bad things these unknown users may do while using your internet connection. I’ll go so far as to say that I’m very sure that the biggest risk you have with owning an open wireless connection is not that someone will steal your information as you attempt to use the internet but that the unknown user or users could do almost anything using your connection and your ISP, the police, or some lawyer could come after you as a result.

Whenever I am called to install a wireless network, I will ask three questions so as to lock down the network. The first is the name of the wireless network. All wireless networks have what’s called the SSID or Service Set Identifier. Each wireless network in an area should have a different name, but if you have more than one wireless access point on a single network, they should all have the same name. So, your wireless network name should be different than what your neighbors may use. I usually recommend against using anything related to your name or address. I’ve used words on a poster in the room to names of former pets. What you name it doesn’t really matter at that point.

The second question is always the password for the network. This is the encryption and security portion of your wireless. I will always set the highest level of encryption that all the equipment (your router, computers, and anything else that may connect) will support. The password will need to be at least eight characters long and should not be the same as anything you may use for anything else. Why? What if you have guests over that want to use your network? Maybe you want to be stingy and not let anyone else in (and I won’t fault you for that). If you’re more accommodating, you certainly don’t want to give your guests the same keys that would unlock your e-mail and bank accounts.

The third question will be for the password of the router or access point. It’s okay for this to be the same as others (although I’d recommend keeping all your passwords for every account different, but that’s a different article) since the only time you’d be using it is to change the settings on the router. How often will you need to do that? Generally, almost never. Once set, you’d usually only need to change these if you want to change the passwords or if you changed internet providers. Another good reason is if you want to restrict which computers can get on the internet at any given time (e.g. your children’s computers).

Care to do it yourself? By all means. All of these routers will come with a manual or some easy to use software to get you going. Otherwise, you can call me, give the answers to the three questions, and I’ll take care of it.

Tags: network, Networking, networks, password, passwords, wireless
Posted in Networking | 1 Comment »

The XP SP3 blues

May 12th, 2008

Service pack 3 for Windows XP has been out for a week or so now and reports have been pouring in from people who have applied it and seen it hork their computers. The most common symptom has been a computer that does nothing but reboot after the service pack has been applied without allowing the user to get into Windows to do anything useful.

I applied it myself on a computer running XP in my household and I didn’t see anything crazy as a result. However, just because it worked for me doesn’t mean anything. Maybe I’m just lucky. I’ll try another computer here and see what happens. :)

There is, however, light at the end of the tunnel. Jesper Johansson, a Microsoft MVP, has investigated the issue and come up for some solutions for the more common reasons why a computer may choke after the upgrade. Check out his site for some solutions.

I strongly believe that you should install service pack 3. However, if you have a computer such as the one Jesper describes (name brand with an AMD processor), you may want to enlist some help before doing so if you don’t feel comfortable with the steps that Jesper outlines. The good news is that if you’ve already upgraded and are having this problem, it can be fixed without reformatting and reinstalling everything.

One other place I read suggested using the service pack which is available on the disc image from Microsoft. Traditionally, you’ve been able to purchase a service pack disc from Microsoft. I haven’t investigated that for this version as I was able to download the image instead. You can find links to the downloads here: gHacks list of SP3 downloads.

Good luck and happy upgrading!

Tags: fix, service pack, sp3, xp
Posted in Maintenance | No Comments »