No 'slide' images have been detected!
How To Add Images To Your Slider
  1. View your project in edit mode by clicking the edit button.
  2. Import or drag and drop an image into your editor.
  3. Double click the image and in the popup menu change the filename to something that starts with 'slide'.
  4. Add as many images as you want and make sure to also change the filenames to something that starts with 'slide' (e.g. slide-2.jpg, slide-3.jpg).
Site logo

Nov 2016

Phishing Scams

This week I want to talk about Phishing Scams. Phishing is a way in which fraudsters try to obtain your computer user names and passwords, and from there be able to access the rest of your online life.
Most of these scams come in the form of emails, although they can also arrive via text message, instant message, posted letters or phone calls. They will claim to be from organisations such as Internet Service Providers, banks, PayPal, eBay, Google or Apple. They will look genuine with the all the right icons, trademarks, copyrights and fonts that you’d expect to see.
The emails and text messages normally contain genuine-looking links to the relevant, but of course bogus, websites, asking you to simply login to the secure page of the website with your email address and password. Some may ask you to install a piece of software to do a security scan (installing viruses or keystroke loggers along the way).
Once your details have been “phished”, crooks can then use this information to commit crimes such as identity theft and bank fraud. They may even use your details to target you deeper by earning your trust in such a way as to convince you that they are from organisations such as the police or the fraud office. This is called “Spear-Phishing” because they already know their target.
Phishing isn’t restricted to just individuals - businesses are also targeted using specific requests for information or quite often legal or tax threats.
What can you do to stop it? The short answer is not a lot - crooks use systems that work. So, while you can’t stop them sending you the email in the first place, you can be aware and proactive. If you receive an email from, let’s say, PayPal that looks suspicious, you should forward it onto their fraud team who will inspect it and try to stop the crooks from using that email server. Almost all big companies will have an anti-fraud team that you can contact.
Other things to be aware of are:
  • When responding to emails, phone calls or texts, never give your login or personal details.
  • The email address that appears in the ‘from’ field of an email is not a guarantee that the email came from the organisation that it claims to have originated from.
  • Contact the organisation that has sent you the message by using a phone number that you have personally sourced. Speak to them directly to confirm if the message is genuine.
  • Use the spam filter in your email program to mark the message as spam and delete it. This ensures that the message cannot reach your inbox in future.
  • Never respond to a message from an unknown source. Take care not to click any on links to web pages. Even unsubscribe links can be bogus.

Dangers of IoT

In our last article, we wrote about the Internet of Things (IoT) and how it is being used to create a “Smart Home” by connecting IoT ready devices to the internet and controlling them with your smart phone or computer.

However, a lack of security in IoT devices, just like in desktop computers and traditional mobile devices, can potentially offer an easy way in to your network and allow hackers to access, collect and misuse your personal information. Many hackers are moving away from businesses and governments, which nowadays have highly reliable internet security, to easier targets. And they don't come easier than the IoT connected smart home with its growing array of web-connected devices, from clever fridges which notify you when you are out of milk (yes really!) to thermostats and smart lightbulbs.

The Internet Society warned last year that: "The interconnected nature of IoT devices means that every poorly secured device that is connected online potentially affects the security and resilience of the internet globally."

So how do we protect ourselves from our networks becoming compromised? The first and most important thing is to change default passwords as soon as we buy an IoT gadget. NEVER use default accounts or passwords as many of them are posted on the internet. In almost every article we write, we reiterate the necessity of a strong password for your computers, bank accounts, email accounts etc – it should be made up of letters, numbers and punctuation (“iwantaCheeseSandwich4lunch!” is a brilliant example except that now most the Fenland Citizen readers know about it!!). Well the same applies to any IoT device you decide to connect to your network.

Simple tools such as Bullguard's IoT Scanner software can also help spot weaknesses. In addition, BullGuard has also published an IoT manual that gives a checklist on what to check and how. (www.bullguard.com/blog/2016/06/internet-of-things-consumer-devices.html).

Other ways to increase IoT security is to keep product software and firmware up-to-date and to buy only from trusted brands like Philips or Nest.

It is also important to be aware that, in the rush to bring new products to market, some manufacturers of IoT devices add on privacy and security features after the fact, rather than including them in the device at the outset. One of the reasons why some IoT devices are cheaper than others is that manufacturers cut corners on security which is akin to putting cheap tyres on an expensive car.