Windows security is sad. Although most of you have probably already read my article about using strong passwords, even the strongest passwords won’t keep your Windows login account from being penetrated. In fact, it takes only a couple of minutes to gain complete access to a Windows system using nothing more than a free CD ROM.

Now, if there is any good news - people are constantly locking themselves out of their personal laptops and home computers by forgetting the password. And recently I’ve had two different friends do this within a period of a couple of days. So you guys know how this works… when I start getting requests, I document the solution.
Read the rest of this entry »

Uugh. The Transportation and Security Administration (TSA) has really fulfilled their goal of making life for a billion travelers a year completely miserable. You know what TSA stands for?

• Thousands Standing Around
• Take Scissors Away
• Truly Stupid Activities

Read the rest of this entry »

Bruce Barber, from the Real Life Survival Guide, recently interviewed me via phone for a segment on Password Security. That segment will go live today on Connecticut Public Radio, so I’d like to welcome any visitors stopping by as a result.

For the rest of us that don’t happen to live in Connecticut, here is the interview as graciously provided by Bruce.

As further reading on the topic of password security, please see my complete article on How I’d Hack Your Weak Passwords. And if you are looking for the password manager I referred to called Roboform I created a short RoboForm Demonstration Video to get you started.

You’ll also find over 30 other related articles in the Security category.

For the regulars around here, you really should stop by Bruce’s site and listen to his other interviews (he’s even got an RSS feed to subscribe to). There are a lot of great tips, and he is a true professional so these are high quality audio clips. Believe me, if it weren’t for the magic of Bruce’s editing prowess mine wouldn’t have been very good!

There is nothing like instilling a little fear, uncertainty, and doubt (FUD) to help sell a product… or a consulting service!

Some young guys in L.A. garnered some serious attention when they told ABC News that they could hack cell phones of the rich and famous. And this short video is the result of that claim.
Read the rest of this entry »

Folks, I was at the airport and I popped open my laptop to hop on the net and upon doing so I encountered a seriously sneaky bastard. Do you see anything wrong with the image below?

Well, hopefully you notice the little icon of a laptop beside the network entitled “Free Public WiFi”. This is NOT a free wireless access point, but instead a laptop computer that someone has configured to capture your personal data and rob you blind.
Read the rest of this entry »

Folks, as you know by now whenever I come across security threats I like to share them. And this one is actually pretty pressing.

With a specially modified blank key and a small hammer - or even stick, 90% of home locks can be picked in a matter of seconds. The technique is called Lock Bumping, and the instructions are now all over the Internet.

Take a look at this news report, and then please take appropriate action to ensure that you are not vulnerable.
Read the rest of this entry »

I keep wondering two things, why does the RIAA continue to persecute people, and more importantly why do people do stupid enough things to keep getting prosecuted?

That organization exists for the sole purpose of suing the pants off of people, but they can only do so when people leave plenty of evidence about their activity - namely hosting content on their computers and allowing others to download it. Most of the time it seems these foolish people aren’t even aware that what they are doing by running Kazaa, eMule, Gnutella, or some other file sharing application puts them at risk.

But why in the world would anyone share their music, movie or software collections via open, anonymous connections? Especially when there are other virtually risk-free alternatives? (By the way, know your rights if RIAA comes calling.)
Read the rest of this entry »

A Canadian named Troy Hurtubise, invented a superhuman body suit specifically designed to be worn by troops and police officers which he claims is capable of stopping a range of weapons fire, blades and even shrapnel from IEDs.

This isn’t Troy’s first dance either. He previously invented a suit which was intended to be able to survive a bear attack, and even made a video of it.
Read the rest of this entry »

Here is a demonstration of how to open a padlock in 1 minute or less using nothing more than scissors and a coke can.
Read the rest of this entry »

Being the resident tech geek, I have been asked by at least 10 people now if they should upgrade to the newest Microsoft Windows variant, Vista. Now, everyone is different so I can’t provide a blanket ‘Yes’ or ‘No’, but I will say that I don’t personally recommend it, I’m not using it, and I don’t plan on ever doing so in the future.

There is a great Web site called Bad Vista which can give you tons of reasons not to adopt this operating system, but I’m just going to stick to three primary ones for now:
Read the rest of this entry »

That’s right. I hate to tell you folks, but if you give me 10 seconds alone with your computer I’ll not only get your user name and passwords to every mail box you have set up in Outlook and Outlook Express, but I’ll also be able to see every single login you have saved in your Internet Explorer auto-complete settings.

And I’ll do it all with this tiny little application. Don’t believe it? Fine, download it, unzip it and launch it. You’ll be instantly staring at all of the passwords you’ve ever told Microsoft to remember for you.
Read the rest of this entry »

If you invited me to try and crack your password, you know the one that you use over and over for like every web page you visit, how many guesses would it take before I got it?

Let’s see… here is my top 10 list. I can obtain most of this information much easier than you think, then I might just be able to get into your e-mail, computer, or online banking. After all, if I get into one I’ll probably get into all of them.

1. Your partner, child, or pet’s name, possibly followed by a 0 or 1 (because they’re always making you use a number, aren’t they?)
2. The last 4 digits of your social security number.
3. 123 or 1234 or 123456.
4. “password”
5. Your city, or college, football team name.
6. Date of birth - yours, your partner’s or your child’s.
7. “god”
8. “letmein”
9. “money”
10. “love”

Statistically speaking that should probably cover about 20% of you. But don’t worry. If I didn’t get it yet it will probably only take a few more minutes before I do…
Read the rest of this entry »