Get Tech Support Now - (818) 584-6021 - C2 Technology Partners, Inc.

Get Tech Support Now - (818) 584-6021 - C2 Technology Partners, Inc.

C2 provides technology services and consultation to businesses and individuals.

T (818) 584 6021
Email: [email protected]

C2 Technology Partners, Inc.
26500 Agoura Rd, Ste 102-576, Calabasas, CA 91302

Open in Google Maps
QUESTIONS? CALL: 818-584-6021
  • HOME
  • BLOG
  • SERVICES
    • Encryption
    • Backups
  • ABOUT
    • SMS Opt-In Form
    • Terms and Conditions
    • Privacy Policy
FREECONSULT

Keep Your Hard Drive Clean

  • 0
admin
Tuesday, 21 January 2014 / Published in Woo on Tech
Windows Recycle Bin

“Keep your area clean.” You’ve been hearing it all your life. First, no doubt from your mom or dad, and then from your teachers. You’ve probably heard it throughout your professional career, and possibly offered it as guidance yourself to others. Regardless of how tidy you are in your physical space, I’ve only encountered a lonely few who also keep their digital space clean. Cheap, large hard drives and superfast searching have allowed us to sprawl digitally all over the place, and just like Nature abhors a vacuum, cyberspace will expand to fill all empty gigabytes when you aren’t watching. In one extreme case (that will probably go down in my personal record books!) I encountered a client whose nearly full one-terabyte hard drive (1000 gigabytes) was over half full with junk and temporary files. That’s nearly 500 gigabytes of wasted space! Aside from the lost storage space, there was another, even more critical issue caused by all those useless files.

What this means for you:

Well written and properly configured internet programs, such as web browsers, will regularly keep their areas (browser and history caches) containing those temporary files clean, but sometimes they don’t. In the case of the above client, the 500 gigabytes of junk was created over time by a browser and operating system malfunction, and then exacerbated by a virus infection. The result was tens of millions of small files that the antimalware software had to scan everytime it was checking for viruses. If you thought a regular anti-virus scan was painfully slow, multiply that by 100 and that’s what was happening on the machine in question. As you can imagine, the antimalware software (and the computer in general) just gave up and stopped working properly, leading to further infections and actual damage to the filesystem. How can you avoid this?

  1. Make sure your web browsers are keeping their caches tidy. Here’s an all-encompassing guide on how to do that.
  2. Always keep an eye on your available hard drive space. A good rule of thumb is to keep a minimum of 20-30GB free at any given time. If you suddenly start running low, there might be a problem.
  3. Know the approximate size of your document space and evaulate whether it makes sense for what you do, and what you are required to maintain. Office documents typically aren’t very large on average (thousands of them can easily fit on a 16GB thumb drive), but high-res photos can easily be several hundred megabytes easily. If your document space seems unexpectedly large, you might have a problem.
  4. Don’t interrupt your anti-malware scans. If they are taking too long, note where it’s getting stuck, pause the scan, clean out the affected area (usually temp files as mentioned above) and see if scan times improve. They should, even if the total space cleared doesn’t seem to be much. Browsers create thousands of tiny temp files everyday, and if they aren’t cleared properly, they add up really fast.

​In a worst-case scenario, where millions of files have built up in a temporary folder, removing them could take hours, even days, as was the aforementioned case. Luckily for the client, I didn’t bill straight hourly, otherwise the cure would have been worse than the disease. Savvy technicians will have tools at their disposal to help clean up cluttered and infected drives, but when there are millions of useless files there are only two ways to clean it up – delete those files one at a time (via scripts, of course), or nuke the whole drive from orbit, ie. re-format. There are advantages and disadvantages to both approaches, so make sure you discuss which option makes the most sense for your data and your budget.

anti-virusantimalwarebrowser cachehard drive spacescantemporary files

Ten Ways to Be Safer in 2014

  • 0
admin
Wednesday, 15 January 2014 / Published in Woo on Tech
Security Switch

Though it sounds crazy to hear it, I’m pretty sure I’m not the only technology professional who wishes computer security was as easy as flipping a switch. Fixing broken technology is a major part of how I make a living, and nothing breaks technology like security breaches. In fact, I don’t want anyone to get infected, hacked or for their data to get corrupted, just like doctors don’t want to see their patients get sick. In keeping with the medical metaphor, there are technology guidelines and practices that can act as preventative medicine for your technology lifestyle. Here are ten suggestions that I hope you will resolve to follow to keep your technology streamlining and not derailing your path to success.

  1. Put a password or pin on your smartphone. This bears repeating over and over. I know it’s inconvenient, but think of how inconvenient it will be if someone got ahold of your unsecured smartphone and used it to access your private information, or worse, your clients’ information.
  2. Encrypt your mobile devices and thumb drives. If your device happens to fall into unknown hands, encryption provides a layer of protection that will discourage casual data thieves. In the case of certain smart devices, it may even give you time to remotely wipe and deactivate the device. Certain types of data (especially confidential client or customer information) should always be stored with strong encryption.
  3. Open attachments and links from emails with extreme caution. The most common vector of infection is via email, either by opening attachments or clicking links to compromised websites. Even if the email comes from someone you know, pay close attention to every aspect of the email for hints that it may be a fake, and if you are at all uncertain, pick up the phone or delete it and ask the sender to resend the email.
  4. Check your anti-malware software regularly. I know plenty of people who know they have anti-virus installed, but don’t know the name of the product, whether or not it’s up to date, or even if it’s working. Check your antimalware at least once a week to make sure it’s updating and if it’s caught anything recently.
  5. Don’t allow unsupervised, non-professional use of your computer. Originally, this rule was about keeping work and personal use completely separate, but I realize that is near impossible these days, so I amended it to focus on a potentially dangerous aspect of computing, which is allowing less security-conscious individuals access to the devices you use for business. If you wouldn’t trust this person with your business, don’t grant them unfettered access to your business devices.
  6. Back up your data. Viruses, thefts and hard drive crashes happen. Like death and taxes, hard drive crashes are inevitable, and it will fail when you can least afford it to fail. Unlike the first two, countering the negative consequences are handled by a simple process.
  7. Ensure confidential customer/client data is stored securely. If you are in a regulated industry, you are more likely to understand why this is important. But if your business services clients who are part of a regulated industry, you might be held to the same standards of security as your clients. Know what data you are storing, know where you are storing it, and how you are storing it.
  8. Familiarize yourself with the privacy policies of any social networking platforms you use. Even if you’ve managed to avoid the big names in social media (Facebook, LinkedIn, G+, Twitter, etc.), any community you participate in that has a digital component should have a clearly stated privacy policy that governs how your personal information will be used by that organization or platform. Don’t be surprised if you’ve inadvertently relinquished much more control and/or privacy than planned over information and the content you author on that platform.
  9. Make sure you have a proper firewall anywhere you use the internet. For the moment, you should consider the internet a wonderful AND dangerous place. Your office probably has a firewall in place (check anyways if you are the least bit unsure), but make sure you have a proper firewall working at home, AND on your desktop or laptop (where practical/allowed by corporate policy). Yes, they can be a bother sometimes, but weigh the inconvenience against a data breach, virus infection and uncomfortable client conversations about losing their data.
  10. Practice constant vigilance, and encourage it in everyone around you. You may be always on your toes, but you are more likely to let down your guard when interacting with co-workers, friends and family. The more you educate them about the above practices, the safer they will be, and you will improve your odds of keeping your own technology safe.

As in just about every facet of normal life, there are no guarantees, and no magical security switches to flip on and forget, but taking the above ten practices to heart can better prepare you for rougher aspects of technology and the internet. It also helps to have a guide while you are navigating the twisting paths of technology, and you should always consider C2 Technology ready to help you find your way to success with technology.

Image courtesy of Stuart Miles / FreeDigitalPhotos.net

2014backupsbest practicesconfidential datadata breachespasswordsresolutionsafetysecuritysmart phones

Snapchat Hacked – Millions of Mobile Numbers Exposed

  • 0
admin
Wednesday, 08 January 2014 / Published in Woo on Tech
Snapchat Hacked

Another day, another social networking site hacked. This time, unfortunately, it was new internet darling SnapChat that was breached, exposing over four million mobile numbers and user names. The hacker(s) who published the data did so purportedly to compel Snapchat to take action on security flaws in its platform that have been known since earlier in the year, but remained unpatched up to (and even past) the public release on Dec 31, 2013 of the information harvested by exploiting the security flaws.

What this means for you:

SnapChat is very popular with younger generations who moved to the service for a variety of reasons, not the least of which was more privacy (from Facebook-savvy parents and authority figures) and less permanence (Snaps are deleted forever within seconds of being shared). Irony aside, the data exposed in the security breach reveals sensitive personal data from millions of individuals, many of whom are probably minors, a demographic that may include your child(ren).

You can check this website to see if any of your family’s mobile numbers were leaked by this SnapChat hack. While the data released isn’t as sensitive as bits like Social Security numbers, birthdates or debit card pins, some other services do use mobile numbers as identifying data, alongside usernames which many people (including Snapchat teens) like to re-use as part of their online “brand.” Armed even with these slender morsels, clever social engineers can wedge their way into someone’s online presence and use it as a stepping off point for a complete takeover of an identity, leading to credit fraud, theft and much, much worse.

breachexploithackleakmobile numbersprivacysecuritysnapchat

Can the NSA hack your new iPhone?

  • 0
admin
Wednesday, 08 January 2014 / Published in Woo on Tech
Eye (of Sauron) Phone?

German newspaper Der Spiegel launched a media frenzy last week with the provocative story that the NSA can (and probably has) compromise the iPhone in a way that gives them complete “ownership” of the device for the purposes of surveillance. Fueled by documents released by infamous informant Edward Snowden, the article details a specific program called “Dropout Jeep” that could completely compromise an iPhone…in 2007.

What this means for you:

Today, in the internet economy, media outlets have priorities that aren’t always compatible: keep their audiences informed, and get as many eyeballs/clicks/likes as possible. As you can imagine, stories about iPhones and NSA spying are hot commodities right now, so when the two subjects align, how can you not lead with such an explosive story?

Several articles spurred by the Der Spiegel piece speculated that Apple may have been working with the NSA all along. Most suggested that the NSA can and has owned even current gen iPhones. Apple, of course, has denied any collaboration with the spy agency. The NSA itself continues to remain silent on stories like this. But, as mentioned above, the Dropout Jeep program was active in 2007, and required the hacker to have physical access to the device. As many of you have heard me say before, if someone has physical access to your device, compromising the device (regardless of manufacturer or type) becomes much more straightforward. The Snowden document did indicate that the NSA was working on future versions of the spyware that wouldn’t require physical access to the device, but for the moment, there is no proof that they can “own” modern iPhones.

But there’s no proof that they can’t, either.

 

Appleder spiegeldropout jeepHackingiPhonensaspying

In-line video ads coming to Facebook

  • 0
admin
Wednesday, 18 December 2013 / Published in Woo on Tech
Facebook logo

I can count on one hand the number of people that have said to me, “There’s not enough stuff on Facebook!” without using any fingers (and she was new to Facebook). More often, I hear, “I can’t keep up,” or “I have to sort through a lot of fluff to find anything good.” According to an opinion piece published in Business Insider, Facebook appears to be collapsing under the weight of its market dominance that is only exacerbated by the ease of posting anything to their stream from just about any device. So take this fire hose of updates from everyone you know and add video advertisements that will automatically play as they appear (sound muted…for now).

Yep, Facebook is adding commercials to your already overflowing news stream.

What this means for you:

If you weren’t already avoiding Facebook, in-line video advertisements might just push you over the edge. Advertisers seem to be salivating at the prospect, with some analysts predicting 1-day 30-second spots costing millions of dollars, but with the potential of reaching billions of viewers. Seeing as Facebook can segment their users into just about any size demographic target, they may start carving up the ad space into more affordable chunks, giving us the social media equivalent of late-night cable community channel or local TV station commercials. I’m only guessing, but this might raise the banality factor a bit too high for most folks, and Facebook could continue to see an exodus of its highly-prized 18-24 demographic as they move on to more focused and less spammy social media platforms like SnapChat, Instagram and WhatsApp.

advertisingfacebookinstagrammarketingnews streamsnapchatvideo adswhatsapp

Gmail change thwarts some image tracking

  • 0
admin
Wednesday, 18 December 2013 / Published in Woo on Tech
Gmail envelope

Last week, Google made a change to it’s widely used webmail platform Gmail: instead of asking if you want to “show images” in emails, Gmail will automatically display them by default instead of asking permission. This particular behavior is also seen in the other two webmail titans (Yahoo and Microsoft), as well as a common feature in mail clients like Outlook. Why aren’t images loaded by default? Primarily because when you open that email full of graphics and you actually want to see them, the mail client (or webpage) makes a request to the server hosting the images, which is usually the same server that sent the email in the first place.

If that sounds like a sneaky way to confirm that you’ve opened a particular email, that’s because it is. This process reveals certain data about the recipient, including date and time of opening, what browser or mail client you are using to view the email, as well as some rough geographical data about your location, based upon your IP address. So why is Google loading images by default? It’s because now they are caching the images to their own server, and then showing them to you, which effectively acts as a proxy between you and the sender, and blinds many marketers who were relying on the image requests to track you.

What this means for you:

Whether you realized it or not, your email client’s annoying tendency to not show you images in emails was actually in your best interests. Because displaying images required you to actively “opt in” by choosing to view the graphics, if that email was sent by a marketer, you sent them a nice packet of data and a positive affirmation that you saw the email, whether you intended to or not. With Gmail’s image caching, some of that data is no longer being unwittingly sent by its customers, however, notice that I wrote “some.” The more clever marketers out there (including Mailchimp, the service I use for my own email) tag email images individually, so they can still track opens, as Gmail still has to load the image to its servers before showing it to you. In my case, this is merely so I can tell if anyone is reading my newsletters, but even that one point of data is still valuable information to email marketers, and you can bet they will find other ways to track your online activity.

cachingemailgmailGoogleimagesmarketingmicrosoftoutlooktrackingyahoo

Chrome not as safe as you might think

  • 0
admin
Wednesday, 11 December 2013 / Published in Woo on Tech
Chrome Logo

Back when Google’s Chrome browser was brand new in the browser market and demonstrating how poor Microsoft’s Internet Explorer security was in comparison, it was easy to recommend it as the faster, more secure option. However, with market share comes concessions to convenience and feature-creep, and it seems that Google may be stretching itself too thin to be the browser on everything and for everyone. Aside from the rather disturbing and glaring security flaw pointed out earlier this year in the desktop versions of Chrome (and steadfastly refuted by Google…until it was fixed), Chrome has typically been viewed as the “most secure” of the big three Windows browsers (the other two being IE and Firefox).

Unfortunately, security firm Identity Finder has burst this bubble by revealing another weakness in Chrome. In the spirit of convenience, Chrome offers to save information used to fill out the countless webforms we all run into on a daily or even hourly basis while surfing. Most of these fields are what would be considered personally identifying information (names, addresses, account numbers, etc.) and Chrome stores them in plain text on your hard drive so as to be able to retrieve them for autopopulating other web forms. The problem with this, of course, is that anyone with access to your hard drive can read that data and use it to nefarious ends. And in case you’re still trying to sort out why this is bad, access isn’t limited to someone working on your computer or stealing your hard drive. Unauthorized access is most often gained now through malware infections.

What this means for you:

Sadly, achieving better security is no longer simply a matter of changing your browser, no matter how much any company (even Google!) would have you believe otherwise. If you want to disable the above mentioned “feature” in Chrome, you can do so by visiting Settings -> Advanced Settings -> Passwords and Forms and unchecking “Enable Autofill to fill out web forms in a single click.” You should never rely on just a browser choice to determine the totality of your security. Good security is a combination of browser choice, settings, malware protection and constant vigilance. Chrome still remains a solid choice as a browser but beware convenience features like Autofill and saving passwords in your browser, as this convenience may come at the price of security.

autofillchromeGoogleidentity theftmalwarepasswordssecurity

Was your password exposed?

  • 0
admin
Tuesday, 10 December 2013 / Published in Woo on Tech
Exposed password

A new website entitled “HaveIBeenPwned.com” recently launched that indexes millions of accounts that have been exposed in some of the largest data breaches in the past 3 years, including the most recent data theft from Adobe, in which over 153 millions accounts were dumped onto the internet. This website allows anyone to punch in their email address to see if their credentials were a part of the haul the data thieves looted in these attacks. Interestingly enough, I punched in my personal email address and discovered (as expected) my account was one of the 153 million exposed in the Adobe breach. Other breaches covered in this database include Yahoo, Sony, Stratfor and Gawker. If you happen to use any websites from those companies, it may be worth your while to check to see if you might have a password issue.

What this means for you:

If you happen to score one or more hits in the database on this website, and you know you’ve used the same password exposed in the above data breaches on other sites, you should stop using that password immediately and head out to change your other passwords ASAP. Even if you didn’t score a hit in the database, there are data breaches happening constantly, and computers have become strong enough to crack the encryption used to store and ostensibly protect them. Where possible (and reasonable), you should be using unique, strong passwords for all your important web services, especially the ones that have access to your sensitive data and money. Programs like Passpack (what I use) and LastPass are indispensible tools to assist in making strong password use practical. Each has a bit of a learning curve and will take some getting used to, but the time spent will be a worthwhile investment in protecting yourself online.

Image courtesy of Salvatore Vuono / FreeDigitalPhotos.net.

adobedata breachexposedgawkerpasswordsecuritysonystratforyahoo

Hacker Drone hacks and enslaves other drones

  • 0
admin
Wednesday, 04 December 2013 / Published in Woo on Tech
Parrot AR Drone

Just in time to ride the publicity wave created by Amazon Prime’s Delivery Drones, infamous MySpace hacker Samy Kamkar has created a flying drone that can hack other drones and take over control of them. Before you grab your bug-out bag and head to that bunker in Montana, it may ease your fears somewhat to understand the drones in question are of the toy variety, versus the death-dealing military variety. The popular Parrot AR Drone is controlled from an iPad or iPhone via unencrypted Wi-Fi, a feature that Mr. Kamkar takes full advantage of in his miniature drone predator, aptly dubbed, “Skyjack“.

What this means for you:

While Skyjack is a long ways away from hacking the various UCAVs that are in extensive use around the world, it’s not hard to imagine how this could escalate the high-tech arms race fueled by the highly-publicized arrival of combat drones in the Afghanistan invasion. The idea behind Skyjack is a drone that can hunt out other Parrot AR Drones autonomously and enslave them. Fly Skyjack into a park where enthusiastic drone pilots are taking their Parrots for a spin, and the more unscrupulous Skyjack pilot can steal away the $300 devices in a blinking of an LED. Now extend that idea to a drone that can fly around neighborhoods, hunting out unsecured Wi-Fi networks or routers, hacking them, logging their locations, and then returning to its owner with map and database of ripe targets. Have I frightened you enough yet to get you to change the password on your home router to something a bit harder to guess?

Image Courtesy of Wikipedia.org

combat dronedroneshackerHackingparrot ar dronepasswordssecurityskyjacktoyucavwi-fi

Goodbye Passwords, Hello Accessories

  • 0
admin
Tuesday, 03 December 2013 / Published in Woo on Tech
Yubikey by Yubico

Once again, Google is blazing a new technology path, not necessarily by innovating, but by having the size and influence to make change happen in an industry that seems at times to get stuck in a vicious circle. In this particular case, technology has been navel-gazing on the password issue for years despite having the solution in hand decades ago: multi-factor authentication. In its most simplistic and well known form, you have probably been using two-factor MFA for years without even realizing it: your ATM card and PIN. In MFA terms, this is “something you have” (your ATM card) and “something you know” (your PIN). Without both present, authentication doesn’t happen.

Using its thousands of employees as guinea pigs since early 2013, Google is testing a technology platform it plans on releasing in 2014 based on MFA. The “something you have” in this case is a small USB FOB that is paired with your user login and a simple 4-digit PIN (“things that you know”) that authenticates you on a computer or an NFC-capable mobile device. If this sounds familiar, it may be because this device I wrote about previously does essentially the same thing. Instead of having to remember a bunch of different passwords, whenever you needed to prove who you are on the web or in an app, you could plug in your Yubikey (or tap your Nymi!) and viola, “Identity Verified!”

What this means for you:

The Yubikey Neo isn’t available yet, and Google hasn’t given a firm date as to when it will be available other than “2014”. Also, the utility of the device is highly dependent on a wide variety of services adopting the authentication platform, so even if they made it available as early as next month, you may find it to be somewhat useless until your favorite providers implement the technology, if they do at all. If you want to show your support for the death of the password, you may want to jump on the Nymi bandwagon, as even if the product never gets widely adopted, you can still accessorize with a wearable conversation-piece!

Googlemulti-factor authenticationnfcnymipasswordssecuritytwo-factorusbyubicoyubikey
  • 50
  • 51
  • 52
  • 53
  • 54

Recent Posts

  • code in a laptop screen

    Software Updates: When to Install, When to Wait, When to Worry

    On July 19, 2024, CrowdStrike pushed a routine ...
  • half open laptop

    Technology Transparency: Why We Don’t Hide Our Markups

    Go look up Microsoft 365 Business Basic on Micr...
  • mid year check-in

    Mid-Year IT Health Check: 10 Things Professional Services Firms Should Review Now

    Most firms set their technology priorities in J...
  • Cloud Migration for Professional Services: When It Makes Sense

    Cloud Migration for Professional Services: When It Makes Sense (And When It Doesn’t)

    Every vendor in the technology industry will te...
  • mid age man working on laptop while floating in the sea summer vacation

    Summer Vacation Security Checklist for Professional Services Firms

    Summer is the one time of year when professiona...

Archives

  • GET SOCIAL
Get Tech Support Now - (818) 584-6021 - C2 Technology Partners, Inc.

© 2016 All rights reserved.

TOP