Group items tagged

Sind Ihre Passwörter und sichern PINs zu? Es ist Cyber Security Awareness Month: Bank Safe und vereiteln die Betrüger http://www.marketwired.com/press-release/are-your-passwords-pins-secure-its-cyber-security-awareness-month-bank-safe-foil-fraudsters-1839193.htm Oktober ist Cyber Security Awareness Month, einer internationalen Bemühungen zur Aufklärung der Verbraucher über Computerkriminalität und der Canadian Bankers Association (CBA) ist Kanadier zu erinnern, was Banken tun, um Cyber-Sicherheit zu erhöhen und ermutigend Kanadier zu sichere bank und vereiteln die Betrüger. Banken haben umfangreiche Maßnahmen zum Schutz ihrer Kunden von betrügerischen Aktivitäten in ihrer Bank und Kreditkarten-Konten, einschließlich der Überwachung von Transaktionen, die auf der Suche nach ungewöhnlichen Aktivitäten, Überprüfungsfragen um sicherzustellen, dass es der Kunde mit online-banking und das Verschieben um mehr Chip und PIN (persönliche Identifikationsnummer) Debit- und Kreditkarten zu sichern. Diese Bemühungen wurden in der Lage, zu verhindern, dass kriminelle Aktivitäten und helfen Kanadier sicher ihre Bankgeschäfte und Einkäufe bezahlen. "Es gibt auch wichtige und einfache Schritte, die Kunden ergreifen müssen, um Betrug vorzubeugen, und eines der wichtigsten Dinge ist, sichere Passwörter und Geheimzahlen, wählen", sagte Maura Drew-Lytle, Director of Communications bei der Canadian Bankers Association. "Dies ist eine Anforderung, die in Ihrer Banking-Abkommen festgelegten und wenn Kunden die entsprechenden Schritte unternommen haben, dann sie von Verluste von der Banks geschützt werden werden keinerlei Haftung Politik." Tipps zur Auswahl der sichere online-Passwörter und PINs Jede Bank haben ihre eigenen Anforderungen zum Auswählen sicherer Kennwörter und PINs, so ist es am besten mit Ihrer Bank online-Zugang Vereinbarung, Bankkonto-Vereinbarung oder Karteninhaber Kreditverträge zu überprüfen, aber es einige allgemeinen Richtlinien g

Source: http://www.huffingtonpost.com/jason-alderman/dont-get-spoofed-by-rogue_b_3574710.html When caller ID first arrived on the scene it seemed like a godsend to many people: Now you could easily identify who was on the line and ignore unwanted calls, whether from telemarketers, an ex-boyfriend or an unfriendly collection agency. But as often happens, unscrupulous individuals soon began manipulating the technology to defraud people by pretending to be someone else. Their scheme is called "caller ID spoofing" and disturbingly, it's perfectly legal in many cases. Here's how caller ID spoofing works and what precautions you should take to avoid being victimized: For a very low cost, businesses and individuals can use widely available caller ID spoofing software to generate calls which alter the telephone number and/or name that appear on the recipient's caller ID screen. Police, private investigators and collection agencies have used legal spoofing services for many years. Others who might have a legitimate reason to hide their identity when making a call include domestic violence victims and doctors returning patient calls who don't wish to release their private telephone numbers. Beyond that, the lines of legality begin to blur. The Truth in Caller ID Act of 2009 prohibits anyone from transmitting misleading or inaccurate caller ID information with the intent to defraud, cause harm or wrongfully obtain anything of value. Violators can be penalized up to $10,000 for each infraction. Unfortunately, such penalties haven't dissuaded many scammers. One common caller ID scam involves spoofers pretending to represent a bank, government agency, insurer, credit card company or other organization with which you do business. They count on you being reassured after recognizing the company's name on your screen. Related Articles: http://hass-associates-daffy.wikia.com/wiki/Main_Page Under the pretext of warning about an urgent situation (breached account, late payment,

http://hassassociates-online.com/articles/security-holes/ Vulnerabilities The larger and more complex information systems are, the greater the possibility of error in logic and loopholes in algorithm. These are weak points that could enable hackers to breach a system and compromise the integrity of information stored. Programmers themselves who are not yet adept in writing software code can unknowingly misuse the code and lead to a vulnerability. A classic example of vulnerabilities that can be exploited is a weak password or its repeated use on various services or software. There are also websites containing malware that installs automatically once visited. Even legitimate software could be a venue for an exploit due to unknown errors (bugs) generated by the program. The end-user or the human element in information systems is arguably the weakest point that hackers easily utilize. 0-day exploits 0-hour or 0-day attack is the exploitation by outside parties of a security hole in a computer program which is unknown from its developers. The term comes from the premise that the attack unfolds on the "day 0, meaning no awareness as of yet from the developers so there is no opportunity and time to issue a fix for the threat. Zero-day exploits are usually shared among hackers even before the developer knew. Programmers could use the vulnerabilities via several avenues: on web browsers and email. Web browsers allow for a wider target. Meanwhile, using email, hackers can send a message that includes an executable file on the attachments, set to run once downloaded. Such 0-day threats are in the time frame where a security hole is exploited up to the time that the program developers issued a patch for it.

Hass and Associates Cyber Security/ Security Holes