Category Archives: computing

cybercriminal

Kill the Java Exploit

16 Replies

cybercriminal

Kill the Java Exploit

You must by now have become aware of the recent Java exploit. Unless you have either been sleeping the past week or two, or use a Mac. Apparently, Apple uses a different version of Java and, as far as I know, that one is OK – we’ll see.

In case you missed it, you need to do two things. First, make sure that you are using the latest Java release (that’s 1.7 update 11). Next, disable Java in your browser.

Java Control Panel

The second action is a little more tricky, because you will need to go to the Java control panel, which they hide fairly carefully (for some unknown reason!) Go to your program files and find Java\jre7\bin\javacpl.exe and run it.

Suggestion: Put a shortcut to that link on your desktop. Then, when you need it any time, you can run the program without having to hunt for it again.

When you run it, check the Java tab to see what version(s) you have installed, and make sure that 1.7.0_11 is enabled. (I disabled the others, which seemed like a good idea, since they are the versions that get hacked.)

Now go to the Security tab. Your security should be set to “High”. Uncheck the box that says “Enable Java content in the browser”.

Click “OK” and you’re safe!computer-security

The downside is that you won’t be able to use Java in the browser. I found, for example, that instead of scanning checks in my browser to deposit them, I have to take them to the bank or mail them. This seems, however, to be a small price to pay for the security of knowing that the latest Java bot won’t infect my computer.

(You can, of course, run the Java control panel again and enable Java in the browser temporarily.  However, you have to shut down and restart the browser for it to take effect, which means logging in to your bank account again, and so on.  I tried that, and it didn’t work for me, so I decided the mail was a quicker alternative.)

What security measures do you use on your computer? Have you had any problems recently?

Alan Jenkin

Author
Alan Jenkin has posted to several blogs for a number of years. His subjects include health and fitness, running, personal development and internet marketing. He lives in Texas and has a vacation home in the Caribbean, where his hobbies include boating and scuba diving. He is married to best-selling author (and expert Pisco Sour mixologist) Billie Willmon Jenkin.

laptop computer

Laptop Battery Life

8 Replies

Who remembers the song “Does Your Chewing Gum Lose Its Flavor On The Bedpost Overnight?”

Well, I just read an article on maximizing laptop battery life, and somehow that reminded me of the song (I know, twisted mind!)  There are few things as frustrating as running a laptop off the battery and having it die on you.  Why does it always happen at a critical moment?

Murphy’s Law of laptop batteries states that if you need to run your laptop from the battery, that is the time the operating system will decide that you need to make an immediate critical update.  If you try to ignore it, it will keep reminding you that it is going to shut down your computer any minute.  So you frantically try to save everything you need so that you can shut it down yourself, because you know the battery will expire in the middle of the update!

The article described five things you can do to help the battery last longer.  Here they are, together with my comments and a bonus item.

Defrag Regularly

A fragmented drive uses up battery power fast, so defragging (when you’re on external power!) will help the battery last longer.  If you’re using Windows 7, this is done automatically for you (unless you’ve turned it off), and I’m told that Mac systems have less of problem with fragmentation anyway.  Presumably OSX has a better algorithm for handling it.

Cut Back on External Devices

They burn up the power, so it makes sense to minimize their use when you’re on battery. If you’re like me, all your USB ports are full whenever you’re connected to the power, so it makes sense to remove unnecessary devices when you’re on battery (including the mouse).  Wi-fi also puts an extra load on the battery.  Turn off your bluetooth, too if you’re not using it.

Maximize RAM

Memory costs a lot less than it used to, and maximizing your RAM will reduce the amount of disk activity, lessening the load on the battery.  The extra RAM will use more power, but unless you’re not planning on doing much computing it will be less than the disk thrashing will use.  And if you’re not doing much computing (including watching movies) you’re not worried about battery life!

Dim Your Screen

Laptops provide a simple way to do this for “power saver’ mode.  The screen uses a lot of energy.  Some other tricks may be available in your power saver mode, such as cutting back on the fan: use all the tricks you can.

Clean the Contacts

When did you last take the battery out and clean the contacts?  This is one of those tips that is so obvious that we tend to forget it.  A cloth moistened with rubbing alcohol works fine: just do it every month or so.

Exercise the Battery

I used to find that whenever I decided to run off battery it was totally dead, having been on charge since the day I bought the computer.  I think maybe batteries have improved now, but they still need exercise, just like the rest of us.  So run them down to exhaustion once in a while. Next month, I’ll be taking a long flight (about ten hours) so it will be interesting to see how long my battery will last after trying these tips.

On second thoughts, maybe I’ll just sleep …

CybercrimeThree

Facebook and Social Promiscuity

17 Replies

Last month a botnet infected more than four million PCs. “The way peer-to-peer is used will make it extremely hard to take down this botnet,” said Roel Schouwenberg, senior malware researcher at Kaspersky. What threats do these attacks present, and how can we avoid them?

Phishing

For anyone who suffered from this attack, the threat is serious. Your private data may have been compromised, including credit card and bank account information, so watch out for money being moved unexpectedly out of your accounts. These “phishing” attacks are behind many of today’s identity theft cases.

Protection

So how can you avoid being a victim of phishing? The first, and most obvious action is to make sure that your software, especially the operating system, is up-to-date and has the latest security features installed. With Microsoft Windows, for example, you can allow automatic updates to your computer.

There are two problems with automatic updates, though. The first is that security against viruses, worms, trojans and botnets can only be supplied after the malware has been detected in the wild. In other words, until somebody else gets infected nobody knows the malware exists.

Apart from the delay this causes, the second problem is that sometimes the good guys goof. Occasionally – not frequently – the Microsoft patches cause more problems for your computer. You might do better to subscribe to a service that tests the patches before you install them manually.

Of course, that raises two more problems: first, additional delays, and second spending your own time messing around with installing patches rather than getting on with serious computing! You’re between a rock and a hard place. In case you think this only a Windows problem, malware Mac attacks have been increasing lately, so the rest of this article applies to you Apple users, too. (If you are using Windows, I suggest you subscribe to the Windows Secrets newsletter service.)

Facebook

Clearly, the best idea is to avoid contracting the infection in the first place. As with safe sex, avoiding promiscuity is the most effective way of avoiding infection. Social media can be powerful, but social promiscuity is dangerous.

Facebook promiscuity is a major source of infection. Do you get requests from friends using various apps that want to connect to your Facebook data? These are often (not always) phishing attacks.

When an app asks to connect to your Facebook data, it doesn’t just mean your public data: anybody can see that, of course. No, they are looking also for your e-mail address and your Facebook password, as well as other private information, such as birth date and family members that you may have included. Since Facebook doesn’t throw away your information, any data you have ever supplied is theoretically accessible.

Given your friend list, the malware can now send out spurious phishing messages to all your friends. And if any of them respond (because they think you’re asking them to) their private data is also available. If you, or anybody you “friend” on Facebook, uses their Facebook e-mail address and password anywhere else, that data is now available to the cybercriminals: once they get in, they have everything they need to access credit card and bank accounts, for example.

Precautions

So how do you protect yourself? There are a few simple steps you can take: as with safe sex, the more precautions you take, the safer you are.

The easiest step is to use a different password for Facebook than you use anywhere else. I know, this is a pain, and gives you one more password to remember, but it’s like using a condom for safe sex. You might also consider other social sites similarly, but Facebook is the one that has been most subject to attack recently.

The second precaution is to avoid rogue apps. When I get a message that wants me to use an app I’m not familiar with, I just block it. If you hover over the message, you’ll find a little “X” appears in the top right corner of the message, giving you several options, one of which is to block the app.

The third is to be careful who you’re friends with. The temptation is to be friends with everyone, but unless you have a serious common interest there isn’t really much point in making a person your Facebook friend. And anyone who keeps sending me requests from social apps I unfriend immediately.

Conclusion

I trust you were not hit by the recent botnet, and hope this post has given you some useful information on how to stay out of trouble in the future. Let me know if you have found it helpful. Stay safe out there, and avoid social promiscuity!