Today marks the first day of NCSAM. Here in the United States, NCSAM stands for National Cyber Security Awareness Month.
on Podcast 114 of TSB, we started talking about passwords with a very interesting article that covered passwords in a different light, and tonight on the Security Hour, we’ll talk about the same article.
On this first post, I want to highlight how bad Phishing really has become. Note that you can read more on Phishing through wikipedia as a source, or check the blogs that talk about Phishing in great detail. One such blog is the the Phishlabs blog. It covers this very extensively, but some of the posts may not be bof value to you as it may be more geared to business, but maybe you can learn about it in case you’re in business too.
This first post on NCSAM is a great one to start with, as yesterday’s post may have just been a ploy to get me to hand over money. Although it didn’t ask me to hand over information, it is possible that an email similar to that could have asked for information to verify what they had.
The problem is that it gave me a web site I maintain and haven’t touched in awhile. It claimed that they took my database. That web site doesn’t even run under a database, it is straight HTML for the most part. This proves that if you run a web site, better know how you’re running.
While that email was sent through my contact form, it could’ve just as well been sent without the aid of a form by someone clicking on the link to email, and copy the email address provided. There’s no real getting around spam like that, or what I’d call that post, scare tactics.
Kim Komando and her staff are warning us today that just because you get an email claiming your info is on the dark web, doesn’t mean its necessarily known.
They link to have I been pwned which is a site ran by Troy Hunt. You can put your email address or telephone number in to the search box and find out for yourself to which breaches you are a part of with that data provided. It also lists tables of top breaches, and other info that might be of interest.
They do not store data, they collect the info from leaked databases and just cross reference it. Some of the information provided and linked will be information on the breach itself.
Two of my email addresses on jaredrimer.net are leaked, one of no fault of my own because it was purchased somehow by a broker who collected it. The other was provided to services like Dropbox and Adobe as I have dropbox and had to sign up for Adobe to get reader working once.
Suffice it to say, the article titled If you get an email warning your info is on the Dark Web, here’s what to do is our first NCSAM article for this month.
It talks about email that you might get telling you that your info is on the dark web and possibly asking for more to cross reference what they have.
The JRN can take your emails and questions on what you are seeing to assist you on what you should do. Contact the JRN through the web site and let us know what you need.
We want to be causcious, so make sure that you read blogs and things you trust so you get accurate information. Let’s start teaching.
Discover more from The Technology blog and podcast
Subscribe to get the latest posts sent to your email.