Securing the Home Network

enter image description here

Thousands of Americans suddenly working from home has brought uncertainty into how companies operate. It's also tested network capacity and opened up organizations to security risks.

COVID-19 presents opportunity to hackers

As the pandemic has grown, so have cyberattacks. Starting in late January, Proofpoint saw an increase in business compromise emails – phishing – that prey on virus concerns.

Home networks are not necessarily as secure as an office, so, hackers have a better chance of business email compromise, credential phishing, malware and spam email campaigns working and doing great harm.

Request a free consultation today!

Data breach - Email Provider

enter image description here The data of more than 600,000 Email.it users is currently being sold on the dark web.

The hackers claim the databases contain plain text passwords, security questions, email content, and email attachments for more than 600,000 users who signed up and used the service between 2007 to 2020. The Email.it hack came to light on Sunday, when the hackers went on Twitter to promote a website on the dark web where they were selling the company's data.

The hackers -- going by the name of NN (No Name) Hacking Group -- claim the actual intrusion took place more than two years ago, in January 2018. We cite from their website:

We breached Email.it Datacenter more than 2 years ago and we plant ourself like an APT. We took any possible sensitive data from their server and after we choosen to give them a chance to patch their holes asking for a little bounty. They refused to talk with us and continued to trick their users/customers. They didn't contacted their users/customers after breaches!

Full story here

DNS Content Filtering

enter image description here We’re big fans of Cloudflare’s fast DNS 1.1.1.1 service because of speed and privacy and now it offers “1.1.1.1 for Families,” new DNS servers with built-in parental controls. To use the new parental controls, you’ll need to change your DNS server setting. We recommend changing the DNS server on your router, as that change will apply to every device on your network but you can also override your device configuration.

Cloudflare DNS, no blocking: Primary DNS: 1.1.1.1 Secondary DNS: 1.0.0.1

Cloudflare DNS, blocking malware only: Primary DNS: 1.1.1.2 Secondary DNS: 1.0.0.2

Cloudflare DNS, blocking malware and adult content: Primary DNS: 1.1.1.3 Secondary DNS: 1.0.0.3

Override DNS on Windows 10 Override DNS on Mac

Zoombombing!

zoom Zoombombing is a type of cyberattack. It describes when someone hijacks a Zoom teleconferencing chat.

How can I prevent Zoombombing?

  1. Make shure you have the latest version.
  2. Password protect your meetings.
  3. Do not share a link to a teleconference or classroom on a publicly available social-media post. Provide instead the link directly to specific people. Using https://privnote.com/ you can make it private with auto-destroy feature.
  4. Manage screen-sharing options. In Zoom, change screen-sharing to "Host Only".

Working from home. Security tips

lock Over the last decade, remote work and working from home has grown in popularity for many professionals. Almost 70% of employees around the world are working remotely at least once a week. However, the coronavirus pandemic and resulting lockdown in many parts of the world have forced a large number of employees into unfamiliar territory—not just remote work, but full-time working from home.

Given these circumstances, we figured it would be useful to share some of the security tips:

  1. Keep your security software and computer OS up to date. Use different passwords (long, strong and unique: at least 12 characters that are a mix of numbers, symbols and capital and lowercase letters) on all your devices and apps and enable 2-factors authentication when possible.
  2. Secure your network. Make sure you are connected using a Wi-Fi with WPA2/3 encryption. If you need to use a public network you must use a VPN.
  3. Securely store Devices and Data. If you’re using a laptop, make sure it is password-protected, locked and secure. Never leave it unattended – like in a vehicle or at a public charging station.
  4. Dispose of sensitive data securely. Don’t just throw it in the trash or recycling bin. Shred it. Paperwork you no longer need can be treasure to identity thieves.