How to Spot an Email Containing a Virus/Spyware Threat

December 13th, 2011
Last month I was going through my emails when I spotted one addressed to me from myself!
I looked at it for a few moments racking my brains to recall why I had sent myself an email from my Yahoo account. What’s more I noticed that several other people had been copied in on the email. My suspicions were definitely aroused when I noticed a single link in the email contents.
Within about five minutes of seeing the emails I had two calls from people that had received the email, asking me why I had sent it to them.
 
Email Spoofing
Wikipedia defines email spoofing as follows:
‘Email spoofing is email activity in which the sender address and other parts of the email header are altered to appear as though the email originated from a different source. Because core SMTP doesn’t provide any authentication, it is easy to impersonate and forge emails.
 
Although there are legitimate uses, these techniques are also commonly used in spam and phishing emails to hide the origin of the email message.’
In short my Yahoo account had been ‘hijacked’ and people listed in my contacts were being targeted by villains to cause mischief and mayhem. Fortunately I use the Yahoo account mainly for test purposes and don’t really store contacts on the account – If I did the fall out could have been a lot worse.
Here’s some top tips on how to spot an email containing a virus/spyware threat:
1.       If you do not recognise the sender (no good for spoofed emails) don’t open the email – delete it.
2.       Be especially careful opening emails that could be legitimate. E.g. you are waiting for a parcel and get an email from Parcel Force or some other well known carrier.
3.       An email that suggests that your password has expired and you need to click a link to reset it! Why would an organisation who process thousands if not millions of accounts, stop to ask ‘little old you’ to change your email password! Responsible departments like Government offices, banks, building societies etc would never contact you to ask you to log in and change or confirm account details.
4.       If the email contains no ‘Subject’ treat with extreme caution.
5.       If there is only a link in the message treat with extreme caution.
6.       If you receive a combination of an email with no ‘subject’ simply containing a link from a ‘known sender’ treat with extreme caution.
Good Anti-virus products that contain plug-ins for email scanning are not fool proof but another layer of protection you should opt for.
 
Hacking of Web Mail Accounts
Regular readers of our newsletter may recall an article I did earlier this year about the problems users have experienced with online email accounts.
The fact that my Yahoo account has been ‘hacked’ brings up another serious point of consideration. How safe are accounts held in the ‘CLOUD
Without wanting to scare monger, I did a quick web search for ‘hacking of Yahoo account’ on Google and found a surprising amount of disturbing information. Although I have not tried any of the suggestions it appears that hacking an account is simple.
I went onto the Yahoo website to see what could be done about my hacked account and found the following information:
‘If spam is being sent from your account, or data is inexplicably missing, it is likely that your account has been compromised. We urge you to complete the following steps immediately to protect your account:
1.       Change your password immediately. This will prevent a third party from continuing to access your account. If your password no longer works, please visit our password reset wizard. 
2.       Verify that your account’s alternate email address has not been changed. If it has, correct it to match your records. This ensures that a third-party will be unable to access your new password. 
3.       Check your inbox and your Yahoo! Contacts list to ensure that data has not been deleted. If data is missing, there is a limited time frame in which it can be recovered. Please contact us immediately to request a restoration attempt.  
Please visit our security centre to learn more about protecting your online security and your Yahoo! Mail account.’
 
For more help or information about Computing please visit my website at http://www.bryansdataprogramming.com/
Regards, 
Steve Bryan

Posted in Uncategorized | No Comments »

Problems Sending Emails from Tablets and 3G Phones

November 30th, 2011

As IT consultants we get a steady stream of customers asking how to configure their Tablet to send emails from their pop accounts.

If the Tablet is being set up to use at home or a fixed location that has a Wi-Fi connection the solution is generally very easy. The SMTP needs to be set to the details of the ISP provider. Because of problems with spam most ISP suppliers do not allow the open relay of emails over their servers, so authentication is required.

The problem however occurs if the Tablet is being used on the moved and connection to the Internet is via 3G.

Most 3G service providers do not provide the facility for sending of emails from pop accounts. After spending hours trawling through the internet, it appears that this is a common problem. There are several different popular suggestions for solutions to the problem. However a solution that may work for one tablet, may not work for another – very frustrating to say the least.

We have come across a number of third party products that provide a facility allowing the routing of emails from devices like Tablets and Smart phones. These products do all require that you sign up for them. Nearly all the ones I have found make a charge for the service and prices vary depending on your ‘expected use of the service’. Trying to follow the many options available requires a considerable amount of effort to get the best deal for your circumstances.

Finally after all my online digging I struck gold! I’ve found there is one supplier of SMTP routing that stood out from the crowd, and would be ideal for the small time user. The service is FREE if you send less than 200 emails per month and allows you to have a generous 20 MB of data.

Most Tablets allow more than one outgoing SMTP settings to be configured. If the first fails it defaults to the next and so on. When we tested our preferred product we noticed it required to be the first SMTP settings. This is not really a problem because when you can access the Internet via Wi-Fi settings the others can be disabled.

I hope this is of help to anyone who wishes to use their tablet for sending emails whilst on the go! One of the reasons the tablet was first created!

Posted in Uncategorized | No Comments »

No Backup Today = Tears Tomorrow

November 30th, 2011

What would you do if you lost part or all of your data?

Nothing strikes more terror into a computer user than when they realise, for whatever reason, that there is a problem with the system and the data is in danger of being lost.

This can be disastrous for both business and home users.

The truth hits home with the equivalent force of being hit by a bullet at point blank range. You can literally see the colour drain away from the face of anyone facing this issue. Even if the data is relatively small, the prospect of rebuilding it is daunting. For some, the consequences are more severe. the Sunday Times reports the following sobering statistics:

80% of all companies suffering a computer system breakdown go out of business within 18 months, and a further 5% cease trading within 5 years.

Only recently a customer called for help after discovering that the hard disk drive had failed in the server machine running the network. This computer contained the full trading history of his business, going back many years. He did not have a single backup he could go to. He was not even able to access the programme disks.

Protection against life’s uncertainties
Insurance is available to protect us against life’s uncertainties. The greater the potential financial loss, the more likely we are to take out insurance. Here are a few examples of situations where insurance is compulsory or highly advisable:

  • Life assurance
  • Buildings and contents
  • Motor
  • Employer’s liability
  • Travel
  • Sickness and accident
  • Loan repayments

Of course individual priorities will vary according to personal needs.

  • Death is an absolute certainty. Failure to take out life assurance would be very short sighted indeed.
  • If you own property you will not get a mortgage with a recognised lender unless you take out buildings insurance. You will also be taking a big risk if you do not cover the contents.
  • If you own a motor vehicle, you are legally required to take out insurance if you intend driving it on the roads.

Protection against computer failure
If you use computers to store valuable data you should regard it as inevitable that one day, today or tomorrow, sooner or later,  your system will encounter some sort of system that puts it at high risk. Failure to protect your data by the use of backups is like failing to take out life assurance. If (or when) the day of reckoning comes, you may wish that the ground would open and swallow you up.

It should be pointed out that the value of data should not be under estimated. Personal data on a home computer is just as valuable to a home user as data held by a business.

Imagine that you have spent weeks putting together a homework project, or years collecting data about your family history. What would your reaction be if you discover a problem that causes you to loose all of your work?

Failure to backup your data is to live under a false notion: ‘it will never happen to me.’

Types of backup:

  • Tape streamers
  • Raid controllers and Backup servers
  • Compression software
  • USB and High capacity drives
  • Off site backups

Tips about backing up

Keep backup media in a safe place
There is no point going to the trouble of backing up if you leave the backup medium in the computer. If there is a fire, or your computer is stolen, what do you do then?

Use high standard quality backup media
Failure to do so is like making a copy on a scrap or screwed up piece of paper. Don’t be suprised if you can’t read it when it matters.

Backup everything you cannot afford to loose
Gamblers have a rule that you should only bet what you can afford to lose. Use the same rule for your data. If it is important to you, back it up.

Test the backup
We know of companies that night after night have backed up religiously but come the day of reckoning they discovered that the backup does not work. A backup cannot be guaranteed until it has been tested.

Never test a backup by restoring over live data
If there is a problem with a backup you will almost certainly corrupt live data if you restore it. Test backups by restoring to a different location, or better still, to a diffrent computer.

Have a backup Strategy
If you use tapes, do not use the same tape each time. If you do, you are destroying the previous backup. Have a number of sets of tapes, clearly labelled, that can be used in rotation. Keep a written record of the backups you are doing.

One copy is not a backup
Many people use USB drives as a backup. USB’s can fail, be lost or put into the wash in your pocket easily. One copy is not a backup!

Disaster Recovery
If you ignore the need for backups there is a ‘last resort’ option avaliable. you can employ the services of a disaster recovery company. There are no guarantees that they will be able to recover your data, but one thing is certain – you are looking at a large bill that could have been avoided!

Im off to do my backups now.

Posted in Uncategorized | No Comments »