Here is another loophole for all iPhone enthusiasts and it has something to do with a security hole that has been categorized as a minor glitch by apple. Apparently the immediate resolution for this security hole is to reset the settings but the real issue has to do with potential openings given to attackers that can exploit the security holes and get access to files or maybe even do some mischief as most hackers are known to do.
Apple spokesperson Jennifer Bowcock said, “The minor iPhone security issue which surfaced this week is fixed in a software update which will be released in September.”
There is a simple workaround, Bowcock said: iPhone owners can simply change the settings so double-clicking the emergency button returns a user to the home screen, which will present a password login field if password protection is turned on.
Source
So a patch will be released by September and hopefully this issue will die down. But expect new problems to crop up once this has been settled. Being in the limelight and open for criticism is bound to result in a lot of things that should be considered and apparently iPhone has to be ready for them.
For a gadget that costs a lot, the iPhone is in for a lot of rougher sailing from the users and the critics. But before we advance a bit, it would be best to see first if this security glitch will be resolved with their so-called patch software due for release.
Tags: access, Apple, iphone, passcode, security
Categories: IT Security Basics, Network Security, News, Operating Systems, Real-World Issues
Give it much thought and you may be surprised that some IT personnel may not even know how to be able to make security policies for groups and users on the main server. There are default ones programmed when you get the traditional Microsoft Server software but for sure, these security policies are not enough.
This is something that IT people often disregard. For them, it is all about passwords and usernames. But what if the person you are granting access would want to let his curiosity get the better of everything? Apparently this may lead to dire consequences and glitches that can affect not only their accessed modules but the entire server as well.
There are books, certifications and references you can turn to. But while that could help, hiring IT personnel seems to lack this certain qualification. Network security seems to be taken for granted these days and the outcome may be totally tedious. In fact, at the rate that cracks and hacks are growing in numbers, this is something that people have overlooked until now.
Take your cue from the news we get over the web. While authorities can easily track them down, preventive measures can be done on the end of hired IT people. They may be there for programming issues but security is something that is important as well. If your IT guy doesn’t know this, well, just consider your options. It can make a difference especially when you talk about safeguarding your business and internal operations today.
Tags: administrator, manager, mis
Categories: IT Security Basics, Network Security, Security Policies
We all know the importance of having good and difficult passwords once we have access to a site or a network but one thing that many would have to consider would be the length. Others would want it short, but these are people who would not care of why they are given access. Others want it long normally something that they can easily remember such as their address or birthday. But how long should it be?
Traditionally, it should be at least 8 characters. Some are fine with 6 characters but for security reasons and avoiding hackers, it would be best to make it longer. A combination of alphanumeric characters would be better as it makes harder to crack for people who love to do mischief. So if this were the case, the potential combination would perhaps be your car plate number, bank account or even your driver’s license codes. With that in mind, you better make sure you also write it down and keep it in a safe place. This is in case you may forget it for some reason due to the tons of information you have stored up in your mind.
Regardless, a user should always make sure that the password he chooses is something he is familiar with. For most sites, we are asked to put secret questions to which we can answer for ourselves. But in choosing the right one, we must make sure that it is something only we know and not something that can be easily guessed by anyone. Failing to do so may put your access and credibility at risk.
Tags: encryption, passwords, security
Categories: Cryptography, Privacy & Anonymity
Here should be a piece of good news to WiFi networks. Apparently, finding a solution to how hackers are able to use wireless access to do their dirty work has been a growing concern. For some reason, they are able to access vital information and computers and then create havoc as they wish. Apparently they have a modus operandi to which do-gooders often have something malicious in mind, mostly to do something foolish such as injecting viruses or even accessing another computer and perhaps deleting some files without them knowing it.
But now, the Perspective System is being groomed as a low cost that will answer these issues. Apparently the biggest targets are the websites and online businesses and security in transactions is definitely in question. One this system is installed, security for various issues that include domain names system software will hopefully be covered.
“It’s very, very, very easy for someone to convince you to go through their computer” when making connections through public WiFi, said David Andersen, assistant professor of computer science. A user who thinks he is linked to an airport or coffee shop “hot spot,” for instance, might actually be linked to a laptop of someone just a few seats away. “A lot of people wouldn’t even know they’ve been attacked,” he added.
The Perspectives system is designed to aid in authenticating Web sites for financial services, online retailers and other transactions needing secure communications. By independently querying the desired site, the system can double check whether each is receiving the correct authentication information, called a digital certificate.
Source
Tags: domains, hackers, perspective system, software, wifi
Categories: Real-World Issues, Security Policies, Wireless Security
If you have had problems with viruses and malware, one thing you will notice these days that some of them still manage to get through your anti-virus barriers. Just when you though that your PC is already fully protected, you will notice at some point some abnormal behavior such as blue screens or sudden shutdowns occurring.
At this point, many would attribute it to hardware or faulty software. But if you have the chance, do some research or access online scanning services from leading anti-virus software companies. Scan all your hard drives and leave it for a couple of hours. For sure you will be surprised at the various viruses present in your computer and immediately check if you can update the virus definition files to keep your software up to date.
While that would be a good recourse, chances are the viruses will still not be detected. One thing about software manufacturers in the anti-virus category, most of them differ in terms of identifying security risks and viruses that make their way into your computer. Whether they come from careless opening files from storage devices or from online access using your browser, there will always be files that will get through.
If there is one consolation from it all is that not all files are dangerous. Some of them may be cookies or adware and would normally be categorized. This is what separates software these days. They have their own level of threats to which some may be exaggerated.
Tags: adware, anti-virus, cookies, Malware, Spyware
Categories: IT Security Basics, Malware, Operating Systems, Spyware
We keep on talking about how important it is to build on security for our computer and our network but we fail to realize that it will ultimately lie on how responsible the assigned user will be when it comes to safeguarding his username and password as far as access to the computer or network is concerned. Apparently, there is always a human error in these cases and if we look at some news briefs, we will notice that majority of hacking or intrusion issues originate at the hands of one person.
This is not actually saying that an assigned user has the ability to control or have companies at the tip of his fingers. Remember, one act of illegal practice can be a cause for legal action. In fact, it is easier to uphold the law on such a person to safeguard the interest of a company. So either way, no person in his right mind would want to bear the burden of being sued and taken to court for something that was bestowed upon him with complete trust.
Hacking is one thing but divulging is another. This is a practice that should be corrected in most cases. People fail to realize the importance of their participation in a network. No matter how great a security barrier is against any outside intruders, security protection includes making sure that the trusted employee is indeed a reliable one. In short, cleaning up the bad vibes and potential threats start internally rather than external.
Tags: computer, legal action, network, password, security, username
Categories: IT Security Basics, Network Security, Security Policies
Wireless networks which are normally evident in homes right now does provide a lot of comfort as far as Internet options that we see common these days. The same is likewise present in companies, doing away with the standard cable infrastructure and making it easier to clean up your homes without having to worry about tripping on any cable for that matter.
But while such a privilege is another fruit of technology, duty calls as far as limiting network access. Passwords are still the wise investment for securing your wireless network and at the start it does look like a lot of work and a bit complicated. Limiting access by providing a (Media Access Control) MAC address and disabling the SSID broadcast can help in making sure your wireless network cannot be found or detected.
With various technology means today, practically anyone is trying to look for wireless internet. That is how much Internet is being demanded these days. But this includes both sane and malicious people who may want to give problems.
So for people who want to protect their wireless networks, here are some tips you can consider:
Don’t use defaults. It is almost always a good idea to change default usernames and passwords and your wireless router is no exception. One of the first things you should do when setting up your wireless network is to change the default administrator username and password.
Additionally, most routers have a default name, or SSID, for your wireless network (i.e. belkin54g). It’s a good idea to change this for several reasons. First, if you don’t change it, it will serve as a hint to intruders that you probably left the defaults in place everywhere. Second, once an intruder knows what model router you’re using, it’s not difficult to find the default username/password and to look for known exploits.
Use encryption. Every good router supports encryption and if you’re not using it, your network’s security is likely to be compromised. If you have newer equipment, use WPA or WPA2 encryption. WEP encryption is less secure.
Use MAC address filtering. Every network card, whether it’s wireless or wired, has a unique Media Access Control address (MAC address). A good wireless router will allow you to specify that only certain MAC addresses be allowed to access the wireless network. This can help prevent unauthorized computers from accessing your network.
Be sure to read your router’s documentation to find out how to set up MAC address filtering. To find out how to determine the MAC address of your network cards, click here.
Use your firewall. Most good routers have some sort of firewall built in and it should be used in addition to a good software firewall that is installed on the devices accessing your wireless network.
Disable SSID broadcast. By default, most routers “broadcast” their existence to the world. This makes it easier for devices to detect their presence and connect automatically. But this broadcast also gives intruders a target. By making your network “invisible” and setting up devices that need to access it to connect manually when in range, you can make your network less of a target to less-savvy intruders.
Source
Tags: firewall, home, mac, networks, ssid, Wireless
Categories: Network Security, News, Wireless Security
For many people, adding technology is not always like a bed of roses. In fact, heightened security measures like eye scanners and thumb print access do not sit that well with them. Apparently there are people who want to be on time for appointments or simply by their desk at record time. With these new gadgets, they have to consider some time constraints since verification must be done before they are granted entry.
But much of this is not really to make lives hard. It is meant for sectional security. Any part of an office today is really important. These measures were normally restricted to the computer rooms where servers have to be heavily safeguarded. These days, it goes as far as the main entrance of a building.
While many consider them as discomforts, there are for safety measures not only for the company but for personal interests as well. When something goes wrong these days, suspects and culprits are enumerated. Through this added security, the list goes down and may even exclude innocent people who were not even around during occurrence.
A little bit of consideration is in order though. Personal access also includes the diligence to ensure that you don’t go out sharing the same with other people your access codes or passwords. That is a cardinal sin. If through this effort an authorized user is unable to safeguard his access, then it can only lead to trouble and perhaps put him in a deeper hole.
Tags: eye scanners, passwords, security, thumbprint
Categories: IT Security Basics, Network Security, Physical Security, Tips
Closed Circuit TV Cameras (CCTV) have indeed become a new face of overall protection and security. At the rate that security is breached and terrorism growing rampant these days, it is apparent that any place or business establishment needs to work up its security measures to ensure maximum protection for the innocent consumers and people who are unaware of threats that may come their way.
But one issue that has been heard all throughout the world is on their reliability. You can monitor various activities but then what? What action would you take? If you do, would it be enough to avoid any accidents that may suddenly occur.
Apparently, many establishments just want to avoid the trouble. Mischief lingers anywhere these days and the best thing that you can do is to try and avoid them. Compared to the early days, tighter security through videos allows the place owners to monitor abnormal and suspicious behaviors to which the proper steps to avoid them can be done.
The list goes as far as advanced security measures such as the high security of sealed places where new technology as thumbprints, eye scanners and card swiping for better monitoring of accessing people limits the list of potential breaches in a certain area.
This has helped a lot and in times where something unfortunate may happen, investigators can have a better time catching culprits thanks to these hidden monitors. These days, that is why most mischievous people have made it a point to survey before attacking. Sadly, some of them have found a way to get around CCTV security as well.
Tags: access, cctv, monitoring, security
Categories: IT Security Basics, Physical Security, Real-World Issues
As far as security when it comes to computer or network access is concerned, does the real beef in being safe and secure really lie in passwords? There are about billions of potential combinations before a hacker can be able to find out your password but just the same, there are other ways to get it like phishing or probably common passwords that some take for granted these days.
Unless you have been among the many victims of being hacked for access on certain programs or events, chances are you may not even care if and when another person would suddenly gather interest in hacking your account. Surely, not all people may have something interesting to go all through the trouble of but just the same, the bragging rights and distinction of being able to crack the access granted to a certain program, site or email is still vulnerable.
Passwords are slowly losing their use. They are indeed security precautions but perhaps the best person to make sure that they still serve their purpose would be the person who is given access. It is not all about making it hard to guess but making sure that you are the only one who knows it by heart and mind.
Also, do not be content with being assigned one. You should have the freedom to set your own password without anyone knowing it. This is one thing about security administration these days. Administrators should not be the only one to set passwords but the actual users themselves.
Tags: access, hackers, passwords, phishing, security
Categories: General, IT Security Basics, Tips
