August 2011 – Paul M Tate

August 21, 2011August 21, 2011

Love Fiscal the Fraud Fighting Ferret!!

Thanks to Graham Cluley (@gcluley) of Sophos and the Naked Security website for introducing me to Fiscal from the Queensland Police.

I love his little videos, the third in the series covers ATM fraud and skimming:

All about ATM Skimming

The first covered Identity theft where Doris Pennywhistle, receives a phone call supposedly from her bank, asking her to confirm her account details. Unaware the caller is an offender and of the risks involved in providing personal information over the phone, Mrs Pennywhistle soon realises when Fiscal steps in. This animation is primarily aimed at raising awareness amongst our senior population and how to avoid becoming a victim.

Identity Theft danger

The second covers social networking safety (Sofie (aged 13) learns of the risks involved in online social networking. This animation is primarily aimed at children and teaching them about how to enjoy the internet in a safe way.)

Social networking safeguards

In a week where we have seen the local police forces joining Twitter these videos from Queensland show some of the way forward. I also found Thames Valley Police Channel but no UK Fiscal Ferrets.

The original article that made me look was http://nakedsecurity.sophos.com/2011/08/19/do-you-know-enough-about-atm-skimming/

August 20, 2011February 15, 2012

DNS and the way we search points out mistakes

I was browsing my twitter feed this morning and remembered one of my followers/followees (?) had just spent some time changing their website and thought I would have a look.

Their twitter profile had their website link in it and I duly clicked it and found the landing page for their hosting company – oops.

What had been forgotten was that “www.domain.com” is a different website to “domain.com” they had omitted to make a second entry in their DNS server for “domain.com” easily done in the rush to launch. Some companies actually use it for a second machine for redundancy or extra pages. I have found internal servers using this function and being presented with Microsoft Small Business Server login screens before now, giving access to the local network with some username and password social engineering, not really where you want customers to end up even by mistake.

borrowed this image from SBS Diva’s blog, thank you.

I recently had a big debate with the branding department of a major UK organisation where they said that “domain.com” looks better in documents than “www.domain.com” they had no idea of the ramifications when they did it on sites that they had no control over.

This made me think of how lazy our web browsing has become, we now use the browser address bar as a search bar:

This means we stop typing http:// or www and just enter the company name. We could end up anywhere !! Mostly Google, Bing etc. show you the right sites (after having noted your search history) but there are a lot of phishing sites out there ready to grab your details and they have been known to sell to you and take your money before you know anything about it.

I am not the only one that thinks this, HMRC has a page on it, all about emails but note the web links lower down

As do Microsoft, note the misspelt links on the page

Google’s search shows over 7m examples when you search for “examples of phishing scams”

The answer is to be very careful about DNS and your use of the search bar when you are surfing somewhere which holds your personal information and when you shorten things for Twitter feeds etc.

August 18, 2011August 18, 2011

Now I have a new Smartphone

Do I have to worry about mobile malware and virus apps?

I do according to this infographic from Bulldog via ReadWriteWeb

Make your own mind up but I am always here if you need help and advice

At some point I will review my new phone a Samsung Galaxy S II Android one.

August 12, 2011

Find your local IP address Windows 7

This is the Windows 7 version of how to find your local IP address, Vista is similar.

In the Task bar is a small computer icon
Click and Open Network sharing Centre You will note it will say if the computer has internet access
Second row right hand side click the live connection, in this case Local Area connection
Click Details
This should show you the IP address

August 12, 2011August 12, 2011

Find your local network IP address XP

I keep talking people through the process of finding their local IP address, not their internet facing one, just the one issued by their router. This post shows one way of checking it on an XP computer the next one does Windows 7, Vista is somewhere in between.

From the Start Button go to Control Panel
Click Network and Internet Connections
Network Connections
Right Click the live connection, usually " Local Area Connection" or the Wi-Fi Connection and
click status
Click the Support Tab on the top
IP address is in the middle Internet router is the default gateway.