I’ve always said that it was unsafe to run as administrator in Windows. I was always sure that this was good advise but I did not know how much this would help. At last months RSA Conference (a cryptography and information security-related conference) a paper was introduced that shows that 85% of all critical Microsoft…
Tag: security
LastPass, Good For Now
October 13th on Security Now Steve Gibson and Leo Laporte had Joe Siegrist of LastPass to talk about the acquisition of LastPass by LogMeIn. Looks like for now Joe will remain at LastPass to run things. Joe said that LogMeIn had no plans to change things, at least for now. I gather from this conversation that…
LastPast Purchased by LogMeIn
A few days ago I learned that LastPass favorite password manager has acquisition by LogMeIn a provider of software as a service and cloud-based remote connectivity services for collaboration. I’m not sure where this leaves LastPass but for now I think it is OK. I would stay with LastPass until I hear something from Steve Gibson of Security…
ProXPN and Introduction to VPN
ProXPN is the easiest to use free VPN. Quickly secure your Internet connection and unblock any website. Our VPN works with Windows, Mac OS, iOS, Android, and more. ProXPN is free to use forever but it limit your speed through the VPN to 300kbp. If you login to a lot of open wifi it is a must….
uBlock Origin, Best Ad Blocker
uBlock Origin is an effective ad-blocker for your Firefox, Chrome, Opera Safari web-browsers that is effective and easy to use. uBlock Origin is effective in blocking unwanted ad content and worst of all malware without any configuration of any kind but it can easily be configured to allow or disallow as much of the content you want…
LastPass Not Broken!
The news about the LastPass network breach has been completely blown out of proportion by the media. None of your private data has been exposed. What may have been exposed was a salted and hashed version of your email address, master pass-phase, per user salts and authentication hashes. All of this appears as random gobbledigook and requires…
FIDO and the Yubikey U2F
The FIDO (Fast IDentity Online) Alliance is an industry consortium launched in February 2013 to address the lack of interoperability among strong authentication devices and the problems users face creating and remembering multiple usernames and passwords. PayPal and Lenovo were among the founders. The FIDO U2F Security Key by Yubico is a specially designed YubiKey,…
Crap-ware on your system maybe worse then you think!
Crap-ware on new systems has always been a nuisance. It slows down your new computer, you get pop-ups telling you to register the software and a lot of other annoyances. Resent news has got me thinking that this software can be bad for your security as well. Lenovo maker of the Thinkpad line of notebooks…
More SQRL to chew on!
Last month I told you about SQRL and the benefit of a login that does not require you to enter any username or password. I told you about SQRL but I was not prepared to demonstrate it. This month I am prepared with at least a partial demonstration featuring the Android application. If have the…
SQRL
SQRL or Secure, Quick, Reliable Login (pronounced “squirrel”) is a draft open standard for secure website login and authentication. The software solution typically uses a QR code, which provides authentication, where a user identifies anonymously rather than providing a user ID and password. This method is thought to be impervious to a brute force password…
Good-N-Free Meetup 