Ron is getting email popups from the "FBI." Leo says the FBI would never email you, they'd visit you directly. He thinks it's probably someone trying to turn you off from his ex, like a roommate or a new boyfriend. And if the emails get more aggressive, including death threats, then Leo advises going to the police and showing them the emails. If you feel you're at risk, you have the right to be protected.
Midnight Rider works for a city that runs on Windows XP. They are going to be running antivirus on their computers after Microsoft ends support for Windows XP, and he's wondering if that's going to be adequate. Leo says the antivirus, including Microsoft's own antivirus program will still be kept up to date. However, it won't protect against a user installing software that could be malicious.
Bob says that Windows 8 has changed the way make a user run as "limited user." Leo says it's frustrating that Microsoft doesn't make it easy. Apple makes it really easy to create a limited user, and Windows should do the same. Installing software should be something that only an admin can do, but it should also be easy to escalate to Admin in order to do so. Apple requires an admin password challenge, rather than a yes or no clickbox.
We talked last week about a flaw in iOS and OS X Mavericks called "Goto Fail" that would allow a malicious user to intercept the traffic of any secure transaction. Apple patched the bug on iOS with iOS 7.0.6 quickly, and just earlier this week they patched Mac OS X Mavericks. Make sure to update both iOS and OS X so that your computers and mobile devices are secure.
An analysis of all the patches that Microsoft released in 2013 shows that nearly 100% of all exploits and vulnerabilities could be removed if administrator rights were revoked, and users ran as a limited user.
Admin rights key to mitigating vulnerabilities, study shows (ZDNet)…
John is going digital in his company, and he's bought several old Motorola Zoom tablets for his employees. He wants to know what security software he can install. Leo says first thing is to update the Android software to the current OS, Kit Kat. He can also set his password and PIN to only allow 10 tries. He can also install Lookout to remote wipe it should it get lost or stolen.
Leo says that the domain name server (DNS) is basically the phone book for the internet. When you type in an address, the DNS then takes that address and looks up the actual IP address of the website. It's numbers separated by periods. Tom can change his DNS on his computer quite easily. On the Mac, it's in the network settings of OS X.
The default firmware that comes pre-installed in a lot of new routers can be insecure and problematic. For instance, a lot of new routers use something called "WPS" (Wi-Fi Protected Setup) which is enabled by default and is supposed to allow users to easily secure their network. Unfortunately, this is flawed and can give a remote attacker access to the network. In some cases, it's not even possible to disable this insecure feature.