St Kilda Football Club is pleased to welcome leading cybersecurity company NordVPN as an official partner.

By saints.com.au

2 days ago

St Kilda Football Club is pleased to welcome leading cybersecurity company NordVPN as an official partner.

The worlds most advanced VPN service provider, NordVPN is used by millions of internet users across the globe.

Were excited to enter this partnership with NordVPN, EGM Commercial and Consumer Chris Larkins said.

We know how much our fans enjoy connecting with the club online, so were excited to partner with NordVPN to help ensure their safety as they do so.

The partnership will aim to educate Saints fans on the potential risks of using unsecured networks to ensure privacy and safety online.

NordVPN Head of PR Laura Tyrylyt said the software not only allows users to stay private online, but also protects them from malware and trackers, as well as screening the dark web to see if other online service providers have leaked accounts associated with users email addresses.

Strong defence is crucial not only on the football field but also in our activities online, thus were honoured to establish our partnership with St Kilda Football Club NordVPN Head of PR Laura Tyrylyt said.

We are sure this partnership will bring more awareness about cybersecurity and online privacy to football fans. Were looking forward to providing them with robust internet security solutions across their devices.

NordVPN is currently running a 75% off sale, including a 30-day money-back guarantee for new customers. In addition, St Kilda members are eligible to an extra month of NordVPN subscription for free.

To learn more about NordVPN or to access the St Kilda member exclusive deal click here.

The rest is here:
Saints secure with signing of NordVPN - St Kilda FC

Many arbitrary holidays litter our calendars (ahem, Tin Can Day), but World Password Day is one fully supported by the PCWorld staff. Were all for ditching weak passwords especially when strengthening your security takes only a little effort.

Follow these four easy suggestions and youll thank yourself for years to come. Not only will data breaches and hackers stop being immediate threats, but you wont have to scramble to remember a collection of user name and passwords. Thats especially true if you opt for a newer form of account protection thats simpler to use than passwords.

Trust us, you want to safeguard yourself. Data breaches are common these days, and as Bitwardens latest survey results indicate, a concerning number of people still reuse passwords (31 percent in the U.S. do so for 11 to 20+ sites!). And with so many data leaks, its getting easier and easier for hackers to not just know your passwords, but figure out the personal info you might use in a password another prevailing bad habit (42 percent in the U.S.). Yikes.

Password managers make better account security so easy. You only have to memorize one strong password to safeguard nearly all your other login info. (Heres how to come up with a good master password.)

You shouldnt have an issue finding a password manager that suits you, either its perfectly normal to have reservations about them, but there are so many options out there. Want something that integrates seamlessly with your phone or browser? Google, Apple, and Firefoxs password managers are basic but solid. Hate the idea of all your passwords sitting in the cloud? Try KeePass or one of its variants. Need support for advanced two-factor authentication methods, like a YubiKey? Many paid services include it. Password managers now also generally support passkeys, a simpler yet more secure method of account protection.

Paying for a good solution isnt always necessary either, as youll see when going over our lists of the best paid password managers and the best free password managers. The kinds of features that unlock when paying for services are helpful indeed, especially if youre using multiple devices or want to secure passwords for multiple people, but theyre not absolutely vital otherwise. That said, our go-to solution Dashlane makes managing passwords dead simple and only costs $33 per year, or $2.75 per month. Its money well spent for the added security (and the extra polish).

And dont worry if you try one service and dont like it. Exporting and importing password databases is simple.

Companies like Terahash can combine several hundred GPUs to crack short passwordsinstantly. This chart shows how longer passwords can make the process impossibly long, even with such computing power on hand.

Companies like Terahash can combine several hundred GPUs to crack short passwordsinstantly. This chart shows how longer passwords can make the process impossibly long, even with such computing power on hand.

Terahash / Twitter

Companies like Terahash can combine several hundred GPUs to crack short passwordsinstantly. This chart shows how longer passwords can make the process impossibly long, even with such computing power on hand.

Terahash / Twitter

Terahash / Twitter

Even websites that barely register in your memory deserve a strong, unique password. If youve left behind traces of personal information or financial information, like stored credit card info unauthorized access to your account could lead to future headaches.

Normally, remembering a strong, random, and unique password for every place you visit on the internet would be a pain in the rear. Everything requires a login these days. But with a password manager (which of course youve just set up!), you no longer have that responsibility. So long as you have the browser extension (or app installed on your phone), you can let it choose a password for you. Just tell it how many characters in length and what mix of them. (Security experts currently recommend 24 characters in length, randomly generated with numbers, letters, and special characters; you can also opt for a similarly long passphrase for things you need to manually type.) The fun part is that because you dont have to memorize each password yourself, long and complex strings arent a hassle.

If you want to really level up your login security, you can also use strong, unique user names, too. With a password manager tracking everything, being randominternetuser13960 on one site, ithurtstomove4582 on another, and pizzacoma2259 on a third is a cinch. Have to use an email address for your login? Gmail and some other email providers let you create aliases by adding a plus sign (+) and phrase after your account name. So for example, you could use emailaddress+likesbooks@gmail.com to distinguish that particular site. Or better yet, you can wholesale upgrade to email masks for true anonymity.

Apple

Apple

Apple

We hate to say it, but these days, strong passwords alone arent enough to ward off threats. Data breaches happen, and so do moments of being caught off-guard by phishing attempts.

Two-factor authentication adds another layer to your login process. Instead of having immediate access to your account upon entering your user name and password, youll have to pass another security check before access is granted. (You can read more about how 2FA works in our explainer, which also gives more details on the common forms available.)

Like using a password manager, two-factor authentication doesnt have to be a cumbersome addition to your login process. Apps like Authy, Aegis, and Ravio make accessing your 2FA codes on multiple devices simple, and support easy security measures like biometric authentication to protect those codes from prying eyes.

We of course recommend enabling two-factor authentication on as many accounts as possible, but at minimum, do it for major accounts like email and financial services places with info that could wreak havoc on your life if someone else got unauthorized access. Also consider protecting your Amazon, social media, Steam, and work accounts (and their info ripe for use in social engineering) in this way, too.

For sites that dont have two-factor authentication which sadly includes a large number of e-commerce sites you can help limit damage from unauthorized account access by not leaving your credit card information and address on file.

Google

Google

Google

This newer form of account authentication has been spreading steadily since last year, and just in time, too. Passkeys cut out a lot of the hassle of using passwords while also providing strong security out the gate a quality of life upgrade sorely needed as online security gets more complex.

You just need a device like a phone, tablet, or even your PC to serve as an authenticator. Itll be registered to your account when you generate the passkey. Afterward, youll get prompts on the device to authorize logins, which youll approve using face identification, a fingerprint, or a PIN. Its incredibly simple, and more importantly, passkeys are more resistant to the current effects of data breaches. Because they are an asymmetrical form of encryption, a hacker cant guess at your passkey based on the compromised websites encrypted login data. Only you have the other part of the puzzle, and its a different kind of piece than the part saved to your website account.

You can also use a password manager to store passkeys, though theyre currently a bit less secure than using a physical device.

You can read more about passkeys in our coverage of Googles recent launch of passkey support for its accounts (as well as in Googles own excellent overview of the topic), but basically, this is the cutting-edge of online security. A passkey eliminates the hassles of passwords, along with the pressing need for two-factor authentication, and should make protecting your accounts much easier. Good websites support both passwords and passkeys so you can still have a password + 2FA combo as an alternate method to login (just in case you lose your device with stored passkeys), but use your passkey day-to-day with less hassle.

All set up with your password manager and two-factor authentication, and feeling primed to go even further? Learning more of the ins and outs of your password manager will help integrate it into your life even more seamlessly. Installing your services companion smartphone app and browser extension is just a starting point check out our guide on how to make most of your password manager for more tips. You can also have a look at our story about 5 easy tasks that supercharge your security. If youve followed this articles advice, youre already more than halfway there!

Here is the original post:
4 fast, easy ways to strengthen your security on World Password Day - PCWorld

US telecom provider Frontier Communications was forced to shut down a number of its internal systems after detecting an unauthorized third party in its IT environment, shuttering internet access for millions.

Frontier Communications said it first detected the unauthorized access on 14 April 2024, before reporting the incident to the SEC on 15 April. The company said it had taken its systems down as part of its incident response protocols in an effort to contain the breach.

Frontier reported it believes it has contained the incident, with its core IT environment already restored, adding that it has also begun efforts to restore normal business operations, but this process is still ongoing.

Frontier serves customers in 25 US states, with 3 million broadband subscribers and a fiber optic network consisting of 5.2 million locations, as threat actors continue to target critical national infrastructure organizations to maximize the impact of their attacks.

Frontier says the third party, which it believes was likely a cyber crime group, was able to gain access to personally identifiable information (PII), among other information.

The telecom provider was unable to provide any further information on the specific types of sensitive information accessed by the attackers, or whether the PII pertained to customers or employees.

Some customers took to social media to voice their concern after being without internet for three days since Frontier took its systems down, reporting they cannot access technical support through Frontiers app, website chat, or their phone line.

Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.

Frontier announced it was experiencing technical issues with its internal support systems and provided a phone number for those who require assistance.

This incident comes hot on the heels of a series of high-profile cyber incident affecting telecom companies.

A huge cache of AT&T customer data was published on the dark web on 30 March 2024, with the personal data of 73 million current and former customers being exposed.

In February 2024, Australian telecom company Tangerine disclosed a breach that exposed the personal data of 232,000 customers, after an eternal contractors compromised credentials were used to access a customer database.

As a result, internet providers are increasingly being classified alongside the healthcare, water, and energy sectors as critical national infrastructure (CNI), due to the number of critical services that rely on an internet connection.

In its 2023 annual review UKs National Cyber Security Centre included internet providers as part of the critical national infrastructure, defined as organizations which if compromised could cause large scale loss of life, a serious impact on the economy, and have other grave social consequences for the community.

The annual review also notes the cyber threats facing organizations today have changed, with a rise of state-aligned groups launching attacks against critical national infrastructure in rival states.

As such, telecommunications firms should be taking extra precautions to mitigate the potential threats of nation-state affiliated threat actors deploying sophisticated attacks to cripple essential services across the region.

See the rest here:
Cyber attack takes Frontier Communications systems offline, affecting millions of broadband customers - ITPro

Cybersecurity threats are a worldwide issue.

New York state is working to combat this with its New York State Security Operations Center (NYSSOC).

Sullivan County is the first county to start utilizing the NYSSOC.

It allows the state to monitor for cyber threats with a goals of preventing them and improving responses to incidents.

The county, as well as the state, as well as the nation, are under attack constantly from foreign adversaries just looking to wreak havoc on the infrastructure and environment that we work in and with. So, it's important for us to know what's happening quickly, to be able to respond quickly, and to mitigate those risks as quickly as possible, said Commissioner of Information Technology Services and CIO for Sullivan County Lorne Green.

The NYSSOC facility is based in Brooklyn and is dedicated to detecting and responding to real-time threats 24/7.

Anything that they see that, you know, red flags, anything, even some minor occurrences that go through, they will alert us. And then, we can take action on those to either let them know that this is a low priority, high priority, medium, and then, whatever that comes through as, we can take action, said Deputy CIO for Sullivan County Dan Smith.

OfficialssaidSullivan County went live with NYSSOCin late March. It wasselected due to relationships with New York State Homeland Security and the States Center for Internet Security.

Officialscollected log data from security appliances and servers to feed to NYSSOCto get the project rolling.

They then parch that data and put it into their recording solution for analysis and further determination as to whether or not there are any incidents that need to be addressed, Green said.

One ofthemajor aspects of thiseffortis ensuring threats are being tracked even when local information technology services staff members are not there.

I can sleep a whole lot better at night, Green said.

Having the tools in place to make it easier for us to function and to allow people to do their jobs without as much worry, you know, of just regular things coming in and possibly taking us down, it's just it's very reassuring mindfully, Smith said.

Expertssaid the publicshould feel more confidenttheir information is beingprotected because of these changes.

We are attempting to stay on top of the cyber threats that exist and that we are taking appropriate action to mitigate when those occur to protect their data, Green said.

According to Green, Tompkins County will be the next to launch this, and 45 counties have shown interest in subscribing to NYSSOC.

View post:
Sullivan County uses NYSSOC to combat cybersecurity threats - Spectrum News

You'll get faster speeds using an Ethernet connection, but there's no denying the convenience of Wi-Fi. The technology makes it possible to connect numerous devices around your home, from laptops and phones to security cameras and streaming sticks, but it's not without its flaws. Aside from a little speed loss, the main concern with Wi-Fi is that it also makes it easier for others -- perhaps unwanted users and devices -- to connect to your network.

Consider the information on your Wi-Fi-connected devices and how accessible that information might be if someone gained access to your Wi-Fi network: credit cardnumbers, bank records, login credentials, live camera feeds.

A secure home network will help reduce the risk of getting hacked and having someone access your sensitive information. Not only that, it will keep away unwanted or unauthorized users and devices that would slow down your connection or freeload on the internet service you pay for.

It's fairly simple to create and maintain a secure home Wi-Fi network. Below, you'll find 10 tips for securing your network. Some are more effective than others at keeping hackers and freeloaders at bay, but all are useful in their own way.

Keep in mind that nothing can guarantee absolute security from hacking attempts, but these tips will make it harder for anyone to compromise your network and data. (For more Wi-Fi tips, check outhow to tell if your internet provider is throttling your Wi-Fiand ourtips on how to speed up your Wi-Fi connection).

Here are the basics for protecting your home Wi-Fi network. Keep reading for more information on each below.

1. Place your router in a central location.

2. Create a strong Wi-Fi password and change it often.

3. Change the default router login credentials.

4. Turn on firewall and Wi-Fi encryption.

5. Create a guest network.

6. Use a VPN.

7. Keep your router and devices up to date.

8. Disable remote router access.

9. Verify connected devices.

10. Upgrade to a WPA3 router.

Strong network security starts with a smart setup. If possible, place your router at the center of your home. Routers send wireless signals in all directions, so strategically placing your router in a central location will help keep your connection to the confines of your home. As a bonus, it will likely also make for the best connection quality.

For example, if you have internet in an apartment where neighbors are immediately to the left and right of you, placing your router next to a shared wall could send a strong, and tempting, signal their way. Even if you aren't in an apartment, a good router can cast signals next door or across the street. Placing your router in a central location will help reduce how far those signals travel outside your home.

This should go without saying, but I'm still going to cover it to emphasize its importance. Creating a unique password for your Wi-Fi network is essential to maintaining a secure connection. Avoid easily guessed passwords or phrases, such as someone's name, birthdays, phone numbers or other common information. While simple Wi-Fi passwords make them easy to remember, they also make it easy for others to figure them out. (Here's how to access your router settings to update your Wi-Fi password.)

Be sure to change your password every six months or so or whenever you think your network security may have been compromised.

Along the same lines of password-protecting your Wi-Fi network, you'll also want to keep anyone from being able to directly access your router settings.

To do so, go ahead and change your router's admin name and password. You can log in to your router settings by typing its IP address into the URL bar, but most routers and providers have an app that lets you access the same settings and information.

Your router login credentials are separate from your Wi-Fi network name and password. If you aren't sure what the default is, you should be able to find it on the bottom of the router. Or, if it's been changed from the default somewhere along the way, here's how to access your router settings to update the username and password.

Most routers have a firewall to prevent outside hacking and Wi-Fi encryption to keep anyone from eavesdropping on the data sent back and forth between your router and connected devices. Both are typically active by default, but you'll want to check to ensure they're on.

Now that you know how to log in to your router settings, check to make sure the firewall and Wi-Fi encryption are enabled. If they're off for whatever reason, turn them on. Your network security will thank you.

Before sharing access to your main home network, consider creating a separate guest network for visitors. I'm not suggesting your guests will attempt anything nefarious with your main Wi-Fi connection, but their devices or anything they download while connected to your network could be infected with malware or viruses that target your network without them knowing it.

A guest network is also ideal for your IoT devices, such as Wi-Fi cameras, thermostats and smart speakers -- devices that may not hold a lot of sensitive information and are perhaps more easily hackable than a smarter device such as a computer or phone.

There are a few reasons to use a good VPN, and network security is one of them. A virtual private network hides your IP address and Wi-Fi activity, including browsing data.

VPNs are probably more useful when connected to a public network, but they can still add a level of security and privacy to your home network. Some VPNs are better than others, but like anything, you often get what you pay for. Free VPN services are available, but paying a little extra (just a few bucks per month) will deliver a much better, more secure service.

While software updates can be annoying, they have a purpose, and it often includes security updates. When companies become aware of potential or exposed security vulnerabilities, they release updates and patches to minimize or eliminate the risk. You want to download those.

Keeping your router and connected devices current with the latest updates will help ensure you have the best protection against known malware and hacking attempts. Set your router to automatically update in the admin settings, if possible, and periodically check to make sure your router is up to date.

Remote router access allows anyone not directly connected to your Wi-Fi network to access the router settings. Unless you need to access your router while away from home (to check or change the configuration of a child's connected device, for example), there should be no reason to have remote access enabled.

You can disable remote access under the router's admin settings. Unlike other security measures, disabled remote router access may not be the default.

Frequently inspect the devices connected to your network and verify that you know what they are. If anything on there looks suspicious, disconnect it and change your Wi-Fi password. After changing your password, you'll have to reconnect all your previously connected devices, but any users or devices that are not authorized to use your network will get the boot.

Some devices, especially obscure IoT ones, may have odd default names of random numbers and letters you don't immediately recognize. If you encounter something like that when auditing your connected devices, disconnect them. Later on, when you can't start your robot vacuum cleaner from your phone, you'll know that's what it was.

WPA3 is the latest security protocol for routers. All new routers should be equipped with WPA3, so if you buy a new router, you should have nothing to worry about. However, many people rent their routers directly from the provider, which may not include the most up-to-date equipment.

If your router was made before 2018, you might have a WPA2 device, which lacks the same security protocols as newer WPA3 devices. A quick search of your device's model should tell you when it came out and any specific features, such as whether it has WPA2 or WPA3. If you've got a router with WPA2, call your provider and negotiate for a better, more recent router.

Again, even with the most recent and effective methods of protecting your home network, security will never be 100% certain. As long as there is the internet, hackers and cybercriminals will find ways to exploit it. But with the tips above, you can better keep your network secure from anyone trying to use your connection or access your data.

For more, check out how to find free Wi-Fi anywhere in the world and the ideal location for your router.

Link:
Wi-Fi Hacking Happens. Here Are 10 Expert-Recommended Tips to Prevent It - CNET