Tips

Save yourself!

January 11th, 2014

A quick note, it is important to be more paranoid of all attachments and links to web sites. This one is a authentic, serious  risk of permanently losing work or home files. Notice that it scans for files on network shares as well.

In addition to paranoia, I recommend downloading and installing this program with the default settings. I have done this on my work laptop and on my home computer.
http://www.foolishit.com/download/cryptoprevent-installer/



Read as much as you want about this nasty extortion process:
http://www.bleepingcomputer.com/forums/t/506924/cryptolocker-hijack-program/page-26#entry3165383


From SANS:

--New Hampshire Town Lost Files to CryptoLocker
(January 7, 2014)
A New Hampshire town has lost eight years worth of computer files to the CryptoLocker ransomware. An employee at the Greenland, NH, town hall opened an attachment accompanying an email purporting to be from AT&T on December 26. The system administrator did not learn about the issue until four days later, after the deadline for paying the ransom had expired.
http://www.computerworld.com.my/resource/security/cryptolocker-scrambles-eight-years-of-data-belonging-to-us-town-hall/


Posted by Jim Sherrill | Topic: Tips  | Category: Security | 0 Comments | Leave a Comment

Learn, think, be more cautious

October 11th, 2013

You had to learn your software tools to provide healthcare, the same skills and efforts are required to stay safe at work and at home.There are many ways to improve your knowledge and behaviors, here is a useful source: SANS tip of the day

Plus, did you read HIPAA §164.312 Technical safeguards yet? "Assign a unique name and/or number for identifying and tracking user identity." For your medical software products, each human must have their own name and password.

 

 

Posted by Jim Sherrill | Topic: Tips  | Category: Security | 0 Comments | Leave a Comment

Reducing risk

September 11th, 2013

How many web sites have you visited? Via our secret, elite Big Brother monitoring tools*, I can answer this question precisely: zero. Neither you nor I have ever "visited" a web site, for that is not how web browsing works. Everything you have ever seen in a browser was sent to your computer directly. You have downloaded all images, text, flying monkey animations, and so on.

The purpose of this post is to make you aware that browsing is not a passive activity, like walking by store windows. When you browse the web or click a link in an instant message, you are asking a remote server to send images, text, scripts, and possibly malicious code to your computer. The latter possibility makes clicking any link a potential risk. Be skeptical and careful.

 

Learn and improve your security awareness; there are many sites for improving your knowledge.

http://www.securingthehuman.org/resources/newsletters/ouch/2013

Bonus if you considered not clicking this link, well done!

 

*Note that the NSA can do this, MSA cannot.

Posted by Jim Sherrill | Topic: Tips  | Category: Security | 0 Comments | Leave a Comment

Medical Software Associates. 1021 McCallie Avenue. Chattanooga, TN 37403