- What is Phishing?
- Protecting Yourself
- Educating Yourself
- If You Fall Victim
- Fast Facts
- About This Site
- Advanced Malware
- anomaly detection
- application telemetry
- big data
- Black Hat SEO
- Black Hat USA 2011
- Black Hole
- Blackhole exploit kit
- Collective Threat Intelligence
- Comment Spam
- control panel
- crash reports
- CUNA News
- Data loss
- data theft prevention
- Deputy Dog
- dr. watson
- Ephemeral Hydra
- exploit kit
- exploit kits
- Google News
- Incognit Exploit kit
- Internet Explorer
- Malicious emails
- malicious iframes
- Mass Injection
- Money Laundering
- Monthly Reports
- MSIE 0-day
- National Credit Union Administration
- Neutrino exploit kit
- Nuclear exploit kit
- Phishing Alerts
- Point Of Sale Malware
- POS malware
- Product Information
- QR codes
- Reverse Engineering
- RIG Exploit Kit
- Rogue AV
- security conference
- Skype spam
- Social Engineering
- Social Networks
- Spear Phishing
- Targeted Attack
- Targeted attacks
- Tuesday Patch
- US-CERT Security Tips
- US-CERT Security Tips
- Vulnerability Analysis
- Web 2.0
- Web Research
- Web spam
- Websense Security Labs
- windows error reporting
- Zeus PIF
- Keep Your Browser Updated to Reduce Threats!
- CUNA, Coopera release new toolkit for outreach to Spanish-speaking members
- ‘Patent troll’ hearing furthers conversation on combating abusive demands
- Amias Gerety nominated for Treasury’s asst sec of FIs
- CUNA: Cyberthreat center could be helpful, more needed to address CUs’ concerns
- CUs as public funds depositories high on Fla legislative agenda
- Tweets tell savings story during NCUA Twitter chat
- Bankrate highlights CU affordability vs banks: ‘No surprise,’ says Nussle
- CUNA’s Tiffany: Tips to hasten payment of a long-term mortgage in MainStreetcom
- DHS workers can rely on CUs in case of gov’t shutdown
- McCarthy, Heck visit Calif, Nev CUs
- CUs’ youth fin lit initiatives get FLEC spotlight
- CFPB may temporarily suspend credit card agreement submissions
- Legislators take notice during Wash CU advocate visits
- CUNA continues to press for patent law reforms
- What Can An ID Thief Do With My Social Security Number?
- Ransomware – No Sign of Relief, Especially for Australians
- Calif, Nev wine auction uncorks record $1M for CU4Kids
- America Saves survey: Savings behavior on upswing
- NCUA issues joint agency guidance promoting youth savings programs
- Mich league keeps CU voice strong with state testimony
Posted in Home | Comments Off
When’s the last time you checked your privacy settings on Facebook? If it was more than a few months ago, you might want to check again: Facebook frequently updates how its settings work, so you may inadvertently be sharing information you’d rather keep private.
Consumer Reports has a great how to video that walks you through the Facebook Privacy Settings. Please give it a watch and make sure your settings are how you want them. While you are there, check out Consumer Reports free Guide to Internet security.
Financial news website Quizzle offers up the top 10 myths about credit scores. Take a look and make sure you are informed on what actually affects your credit score and how you can manage it properly. Some of them are common sense, or things you already know, but there might be a few surprises on there too.
Here’s an interesting article from back in September about PIN Numbers. Using a database of exposed passwords as a proxy for PIN Numbers, the researcher does some statistical analysis on the most common and least common PIN Numbers.
Statistically, with 10,000 possible combinations, if passwords were uniformly randomly distributed, we would expect the top twenty passwords to account for just 0.2% of the total, not the 26.83% actually encountered in the database.
The article is filled with many interesting tidbits of number data: The most popular PIN code of 1234 is more popular than the lowest 4,200 codes combined!
Read the article and find out what the most popular and least popular PIN Numbers are. Note, that now that the least popular PINs have been published, bad guys will probably add these to their lists to just give them a try.
Remember to always pick good PIN Numbers for your ATM Cards.
While it might seem convenient that a stranger calling you on the phone claims to have discovered a problem with your computer, beware that this common phone scam is designed to trick you into paying for support you may or may not even need. If you didn’t initiate the support call in the first place, things are probably not as they seem. Even if the caller’s company name sounds familiar, it is a good idea to call them back using the vendor phone number from your own bills or records to initiate contact.
Posted in Home | Comments Off
The complexity of computer viruses and malware is increasing every day. Modern exploits simultaneously target multiple vulnerabilities in various technology layers; operating system, web browser, browser add-ons, multimedia extensions and more. Common targets such as Adobe Flash and Oracle’s Java are ripe for exploitation for malicious intent. Stop ignoring those notices that a Java, Flash, Web Browser, Antivirus, or Windows Update is available, and update today. Updates frequently contain patches that close security holes that make your PC susceptible to attack. The most widespread modern computer viruses are spread by what appears to be people you trust, via email, and compromised websites; including friends accounts on popular social networks. Viruses leverage security flaws so effectively that often no user interaction is required. Antivirus software alerts are often the only way you’ll even have a clue your computer security has been compromised. Don’t be a victim, do your computer security a favor and perform your software updates today!
Small changes can have a drastic effect. US News Money has a neat article on how saving just $2.75 a day can have far-reaching changes on your future financial security. Skip that fancy coffee today and read about how putting that money in the savings jar can make a big difference.
Not all computer security is about tin foil hats and anonymous browsing. Everyone who uses a computer has a horse in the security race. Lifehacker.com has put together 4 security checklists for Passwords, Browsers, Home Network and Public Wi-Fi running the spectrum from the bare minimum you need to do to remain secure all the way up to full tin foil hat mode.
Check out Lifehacker’s Checklists:
- Password Security Checklist
- Browser Security Checklist
- Home Network Security Checklist
- Public Wi-Fi Security Checklist
Posted in Home | Comments Off
“With so many purchases being made online these days — and with more people using credit cards to buy things at retail locations — it’s surprising we don’t hear about massive data breaches every day. But alas, ID theft is an all-too-frequent occurrence, so it couldn’t hurt to know in advance the steps to take to minimize the damage.
The folks at the Federal Trade Commission have created a comprehensive guide called Taking Back: What to do if your identity is stolen [here’s the PDF] that not only provides detailed information but also sample letters, forms and contact info for various private and federal agencies.”
It’s vacation season! Hope you are having fun with your family out in the sun. But remember to play it safe. Lock up your house before you leave, and stop the mail and newspaper from being delivered and piling up. Pretty standard, second nature things. But also think about Social Media. Posting that you are on vacation or out of town for an extended period of time on Facebook or Twitter broadcasts that your home is unattended.
Ars Technica has a story about a a couple in South Carolina who used Facebook vacation photos to determine when friends and acquaintances were out of town and took that opportunity to break in and rob the house.
Post your pictures and status updates after you get back.
In case you needed another reminder, your passwords should absolutely not be a single dictionary word. The news that over 8 million user password hashes have been leaked from LinkedIn and eHarmony this week should be enough to convince you stragglers that you should protect yourself by always using strong passwords! And if you’re like us, you’ll also make yourself far less vulnerable by never reusing the same password for multiple sites and services. That helps, because when your password is leaked by a site like LinkedIn, that password can’t be used by hackers to log in to your Facebook, email account, etc on other popular sites to gain more control over your identity. The price of security is often convenience, but you can make it easier on yourself than trying to remember all these passwords by using a password safe like KeePass or PWSafe that can remember them for you, or even automatically type them into websites for you. The time to improve your password security habits is now!
You may also be interested in reading Ars Technica’s article 10 (or so) of the worst passwords exposed by the LinkedIn hack.
Or this article explaining how long it takes to crack passwords based on length.