|
Post by MCDemuth on Dec 28, 2019 23:04:19 GMT
This is not surprising, considering all the Online, Drone, Wireless, ETC. tech being used these days.
These problems ALMOST NEVER happened with the using of old fashioned hard wiring to connect devices.
|
|
|
Post by mslo79 on Dec 28, 2019 23:45:03 GMT
Yeah, I tend to prefer wired connections over wireless especially on devices like mentioned in the topic that never get any updates etc. but personally if I had a average 'smart TV' that does not really get updates, I would likely just disconnect it from the internet as this way even if there are security flaws, no one can exploit them. but anything I have that's wireless is secure as my router is running FreshTomato 2019.3 firmware (instead of the manufacturers outdated stuff) and it's configured well as no one can even attempt to access the routers configuration page on a wireless connection as I disabled the routers 192.168.1.1 configuration page if anyone is connected wirelessly they simply cannot access that page as only wired connections can. but they can still connect to the WiFi like usual but it's protected with the usual WPA2 etc connection which is secure and it has a decent password on it etc (but where I live, not many would be within range of my WiFi anyways). I totally agree with you as I am probably more security aware than most online in general and would never trust those home security things with cameras and audio when they are connected online simply because you can't guarantee someone won't be able to exploit it and spy on you, especially when the company behind it is not that serious about maintaining the devices security. like for example when it comes to some basic security online... many people don't use password managers which is generally a bad idea as many end up using the same password across multiple websites which means if their password becomes compromised a shady person could potentially take over their other accounts. plus, not to mention someones email address tends to be tied to quite a few important things they do online and just someone compromising that can be a big issue which is why for something like Gmail I suggest a YubiKey (the most secure 2fa(two-factor authentication) option available) as with that (you need two of them, one as a backup in case you lose your primary key, as this helps prevent you from getting locked out of your account) even if hackers got a hold of your Gmail username/password through say a Phishing attempt, they still can't login to your account without the YubiKey (a pair of the basic USB based YubiKey's cost about $30-40(they have ones that work with smart phones etc but they can get a bit expensive)). but either way, YubiKey or not, a password manager is a must if people care about anything they do online, especially more sensitive accounts. because with a password manager it generates random/secure password for each site you use, so even if one site got compromised, you ain't got to worry about it effecting other websites you have since each password is different. all the user has to do is remember the password (make it a decent one, nothing too easy) to their password manager program and then they have access to all of the websites they use online. some password managers have versions across many things like Windows/Linux/Android etc so you can use your database file between different operating systems. personally I would avoid smart phones for doing anything too important online simply because they tend to be behind in security updates (I would imagine this is especially true for Android smart phones as, off the top of my head, I would imagine IOS(iPhone) does a better job) vs a Windows or Linux based computer which gets security updates much faster so your more secure online in general.
here is some solid advice for those who have say a couple of computers (desktop or laptop) in their home... like if you got a older computer you don't use all that much but it's nothing too ancient, install Linux on it and use only that computer for doing any sensitive stuff online because in general your unlikely to run into a virus etc using that (I suggest pairing your Firefox browser on Linux with the Firejail sandbox for a further boost of security and it has a minimal negative effect (as in limits where you can save files to) on function of the browser). also, another thing... for some sites that use 'security questions' to help someone regain access to their account if they forgot their password... these needed to be treated as secondary passwords because for example... even if you had a really long randomly generated secure password with a password manager, if someone can guess the answers to your security questions, which are often simple enough if you answer them honestly, they can bypass your super secure password which is why I tend to generate long/random password for those security questions to. just make sure you make backups if your password managers database file. because if you only have one in say your computer for example and it's hard drive dies, it's going to be a major pain in the butt getting access to your accounts again which is why you always want to have backups of that file so it's very unlikely you would lose that database file even if one of your devices dies.
just using some of the suggestions I mentioned above will make a solid boost to ones security.
also, another thing I heard is if your browsing random sites online and something asks your for username/password info to some random thing you did not actively seek out, just assume it's a scam. like even if it's from your bank for example... instead of clicking on anything in a email, just manually go to their official website in your browser and check there. or if your browsing online, like say Facebook for example, and a screen pops up asking for your username/info to sign in, I would be very cautious about that and instead of entering it there, manually load up the official Facebook page and see if it's still asking for you to sign in etc. hell, I would say roughly in the last few years or so I was searching for random stuff on I think it was Bing.com and clicking a link took me to what 'looked like' my ISP's sign in page but I know it was a Phishing attempt.
one last thing one can do, which is simple enough, and gives a little boost to security is change their DNS server from your ISP's (internet service provided) to Google or OpenDNS... Google's is 8.8.8.8 and 8.8.4.4 ; preferably set that in your routers configuration settings so this way any devices connected to your router will use the new DNS server by default. but if you can't do that for whatever reason you can manually change it on a per-device basis. but once you setup your DNS, you can test it with... www.dnsleaktest.com/ ; just click the 'standard test'. then you can see if it took effect in whether it's using Google's or if it's still your ISP's.
|
|