It’s time to update your Google Chrome browser!

It’s time to update your Google Chrome browser!

It’s time to update your Google Chrome browser!On Friday 1 March, Google announced it had discovered a Zero-Day Vulnerability “CVE-2019-5786” in its Google Chrome browser. It’s time to update your Google Chrome browser!

Whilst only limited details have been published on the Chrome Releases blog, it is strongly suggested that you update Google Chrome if you are using this as your browser.

It is important to check you are running the latest version of Chrome, which at the time of writing is 72.0.3626.121.

To check for and install updates in Google Chrome on the PC or Mac:

  1. Click on the three vertical dots on the right-hand side near the address bar.
  2. Point to Help and click About Google Chrome.
  3. This should then check and install updates, which may take a few minutes depending on your computer and internet speed.
  4. If it has performed an update, you may need to relaunch Google Chrome to finish updating. If it says “Google Chrome is up to date”, you are good to go.

If you are running Google Chrome on your mobile phone or tablet, you should do this as well. Go to the Google Play Store or iTunes Store to download and install the required update.

This is a good reminder to always keep your computer’s software and devices’ apps up-to-date with the latest security updates. If you are looking for assistance with this, CyberGuru provides a computer maintenance service where provide scheduled proactive review and upkeep of your ICT environment and keep it up-to-date on your behalf. We can do this both face-to-face and remotely depending on your requirements. Please contact us for more information.

“Collection #1” Data breach lists 773 million accounts online

“Collection #1” Data breach lists 773 million accounts online

Collection #1

Barely a day goes by without news of another data breach or new security issue. But late last week security researcher Troy Hunt announced the discovery of what is possibly the largest data breach ever. Known as Collection#1, the data breach contains approximately 773 million accounts online from multiple sources.

Collection #1 is a large collection of email addresses and passwords which was made available on a public hacking forum. It appears to consist of multiple breaches across several websites.

Since the original announcement by Hunt, it is further now understood Collection#1 is just one of seven collections, so it is likely that the number of breached accounts is likely to increase dramatically when the remaining collections become public.

The recommendations made are always:

  • Set strong passwords and don’t use the same passwords on multiple websites.
  • Change passwords where you may have used the same username and password.
  • Set up multi-factor authentication on your accounts to ensure that you require a secure code as well as your password.

We strongly suggest everyone review their accounts on the Have I Been Pawned? website (link opens in new window) to see if you have any vulnerable accounts. You can also check your password to see if it on any known exposure.

If we can be of any assistance to you in implementing these recommendations, or would like any further advice on cyber security, please let us know.

Ask CyberGuru: Have I been hacked?

Ask CyberGuru: Have I been hacked?

Ask CyberGuru

In this month’s Ask CyberGuru, we are asked: “I received an email advising that my email account has been hacked and a RAT installed on my computer. Further, it says I have been filmed using my webcam and personal information has been downloaded and will be shared on my social networks if I don’t pay the ransom in crypto-currency. Is this true?”.

There has been a series of emails doing the rounds recently advising that “RAT” (remote access technology) software has been installed onto your computer, threats of a personal nature are made and advised that this software will be made available to your social media if you don’t pay via crypto currency. Along with this, in some cases, the information include may include a password that you may have used.

This type of scam is the current flavour of the month and we have heard of several forms of this scam. One of the reasons these emails have particularly spooked clients is that the emails often contain threats of character assassination such as releasing “video” of the recipient watching adult content to their friends and family on social media, irrespective of whether they have done so or not.

Whilst this email seems threatening and intimidating, generally this email is an attempt to blackmail the recipient into paying money to the scammer. Oftentimes, the password may have been made public through a previously compromised website, and these passwords are often what makes this email more concerning.

If you suspect you may have been compromised in any way, protect yourself by:

  1. Changing all passwords on accounts with the password if displayed or not. Please check the “Have I been Pwned?” website (link opens in new window) to identify if your email account has been listed as being compromised in a data breach. If so, make sure you change any passwords immediately. As the email address and password is known, leaving these changes may cause issues in the future.
  2. Performing a full antivirus scan of your computer using a reputable internet security program. Further, please ensure you use secure (HTTPS) websites only to ensure your information is encrypted and remains safe. Always use internet security software on your computers and devices when online.
  3. Deleting the email and do not respond in any way to the hacker, and most certainly do not pay the ransom. Be wary of emails requesting you click to open a website or to access an important file. Do not take any action on the email.

If you are concerned you may have been or are compromised in any way, please contact CyberGuru for further advice. If you believe you have been the victim of identity theft or any information has been leaked, we strongly recommend that you seek immediate assistance.

CyberGuru talks cyber safety at Seniors Safety Forum

CyberGuru talks cyber safety at Seniors Safety Forum

CyberGuru talks cyber safety at Seniors Safety Forum

Last Friday 17 August, Chris Jeffery, Chief Guru of CyberGuru presented to over 80 senior citizens of the Brisbane’s northside community on Cyber Safety, including both phone and internet scams at the Seniors Safety Forum.

The Seniors Safety Forum, the third of which Chris has presented, is an annual event held in the local area and hosted by Stirling Hinchliffe MP, Member for Sandgate and Councillor Jared Cassidy, Councillor for Deagon Ward, as part of Queensland Seniors Week.

In his session, Chris discussed a range of phone scams, including charity scams and the more recent NBN scams. He also addressed spamming and phishing, as well as tips for online shopping, passwords, internet security software, backups and more.

CyberGuru joined alongside other local organisations, including Council for the Ageing, Queensland Fire and Emergency Services, Queensland Ambulance Service, Queensland Police Service, All About Living Sandgate, Home Assist Secure Sandgate, iHear to discuss safety in the home and in the community in the joint forum.

Chris fielded a range of questions from the audience after the session and provided copies of The Little Black Book of Scams to all who visited his display.

We thank Stirling and Jared for having us. If you would like any information on cyber safety, or presenting at an event which you feel would benefit, please contact us.

If would like any information about Seniors Safety Forum or other upcoming events as part of Queensland Seniors Week, please visit the Queensland Seniors Week website.

CyberGuru presenting at the Seniors Safety Forum

CyberGuru presenting at the Seniors Safety Forum

CyberGuru presenting at the Seniors Safety Forum

Calling all seniors! Chris Jeffery of CyberGuru has been invited to speak at the Seniors Safety Forum at Sandgate on Friday 17 August at 1:00pm.

As this is the first year he will have access to a projector, Chris will be able to show examples of spam and phishing emails and demonstrate what to look for when determining if an email is legitimate.

The forum is hosted by Stirling Hinchliffe MP, Member for Sandgate and Cr Jared Cassidy, Councillor for Deagon Ward as part of National Seniors Week.

Seniors Safety Forum 2018 Flyer

For more information and to register please visit the Queensland Seniors Week website or call 07 3639 9100 (Stirling Hinchcliffe MP) or 07 3667 6011 (Cr Jared Cassidy).

Looking forward to seeing you there!