Category: Cybersecurity

How To Track Anyone In The World Simply Using Any File!

How to Track Anyone’s IP using Images? — Email, QR Code, PDF, EXE, MS Word, MS Excel, & any file can be a “digital mouse trap”..

Supported Tokens: HTTP, DNS, Web Image, Cloned Website, Adobe PDF, MS Word, MS Excel, MySQL Dump, Windows Directory, Custom EXE, QR Code, Sensitive Command, SVN, AWS API Keys, Fast Redirect, Slow Redirect, SQL Server, and many more…

Follow DigitalFoundation on Telegram for more..

Greetings, World!

Today I’ll teach you how to track anyone’s IP using Transparent Images! Yeah..

We will first understand the whole concept then redirect towards the step by step usage guide. You can even do this manually using custom developed payloads but it’s a more better way to do this easily. I’ll help you with that today, by providing easy steps you can follow. Let’s start learning..

Understanding Canarytokens

Canarytokens are like digital traps for your computer systems. They work by watching for certain actions, such as someone reading a file, making a database query, running a process, or spotting specific patterns in log files. It’s similar to those tracking images in emails, but instead of tracking opens, it tracks actions on your system.

The cool thing is, we can use Canarytokens to set up these traps in our regular computer systems, kind of like putting alarms in different parts of your house where anything someone does can set off an “alarm” – or at least a notification.

Now, why should you bother with these Canarytokens? Well, sometimes hackers get into computer networks, and it happens to big companies, governments, regular people — basically, everyone. That part is understandable. But what’s not okay is only finding out about it way later, like months or even years down the line which seems disappointing!!

Canarytokens are a free, easy, and fast way to help you know right away if someone is messing around in your systems. It’s like the hackers accidentally letting you know they’re there.

  1. Web bug / URL token — Alert when a URL is visited
  2. DNS token — Alert when a hostname is requested
  3. AWS keys — Alert when AWS key is used
  4. Azure Login Certificate — Azure Service Principal certificate that alerts when used to login with.
  5. Sensitive command token — Alert when a suspicious Windows command is run
  6. Microsoft Word document — Get alerted when a document is opened in Microsoft Word
  7. Microsoft Excel document — Get alerted when a document is opened in Microsoft Excel
  8. Kubeconfig token — Alert when a Kubeconfig is used
  9. WireGuard VPN — Alert when a WireGuard VPN client config is used
  10. Cloned website — Trigger an alert when your website is cloned
  11. QR code — Generate a QR code for physical tokens
  12. MySQL dump — Get alerted when a MySQL dump is loaded
  13. Windows folder — Be notified when a Windows Folder is browsed in Windows Explorer
  14. Log4Shell — Alert when a log4j log line is vulnerable to CVE-2021–44228
  15. Fast redirect — Alert when a URL is visited, User is redirected
  16. Slow redirect — Alert when a URL is visited, User is redirected (More info is grabbed!)
  17. Custom image web bug — Alert when an image you uploaded is viewed
  18. Acrobat Reader PDF document — Get alerted when a PDF document is opened in Acrobat Reader
  19. Custom exe / binary — Fire an alert when an EXE or DLL is executed
  20. Microsoft SQL Server — Get alerted when MS SQL Server databases are accessed
  21. SVN — Alert when someone checks out an SVN repository
  22. Unique email address — Alert when an email is sent to a unique address

Step-by-Step Usage

Go to canarytokens.org & choose your Canarytoken. This is like setting up a digital trap. Provide an email where you want to be notified and a note to remind yourself where you placed it.

https://canarytokens.org/generate#

Generate a Canarytoken, which is a unique URL or Fast redirect or anything else – it is all your choice. It’s like creating a secret link that will trigger an alert if someone interacts with it. In this blog I’ll be using Fast redirect as an example.

EXAMPLE

Put the generated Canarytoken in a special location & send it to the target. It could be in an email, a document, or even as an embedded image. If a target arrives upon it, you’ll receive an email notification, alerting you that something is off – just like a mouse activating a mouse trap :–)

Clicked..Your Digital Mouse Trap Is Set!

Fast Redirect was really super fast.. Later I tried using URL shortener and surprisingly, our main URL was not even noticeable in real time..

If your target hits the URL/File, like shown in the example above, your token gets activated & alerted to email or webhook as below:

You can also rename the generated PDF/Excel/Word document without affecting its operation!

A Browser with No Advertisements or Duplicates? Yes and Welcome to Stract (Currently Beta Mode)

In this digital age of 2024 and beyond, information and data is needed as the air we breathe, the tools we use to sift through data should uplift, not undermine, our quest for knowledge.

Yet, here we are, navigating the choppy waters of search engines like Bing and Google, only to find ourselves awash in a sea of advertisements, our privacy eroded by relentless tracking, and our quest for truth skewed by biased algorithms.

Does that seem okay to you?

These platforms, once hailed as the lighthouses of the information age, now seem more like will-o’-the-wisps leading men to their deaths in murky bogs. Radicalization through search engine commercialization is actually a real problem. For everything that Google has claimed, it is fighting against such things, the work of non-biased researchers like Cory Doctorow and Rebecca Giblin have proven that these companies can’t ever fulfill their promises… not when they rely on radicalization to help line their shareholder’s wallets.

Folks – it is jut not Google (Alpha) that does this! Today we face a plethora of Social Media “trackers” and “data miners” that commercialize every step and action that you take online within their platform for full disclosure. This article is just sharing with you that browsers such as Google (and its email product called Gmail) tracks, profits, and commercializes everything that you do in it.

Enter Stract, a new lighthouse, one built with decentralization and open-source values in mind.

Stract: A New Open Source, customizable search engine.

This innovative search engine feels like a callback to an earlier Internet age, when our networks were meant to be part of a free, open-source ecosystem.

Now, to be clear, Stract is in early “Beta” stage. This simply means that it is lacking many “normal” features that are common in modern browsers. You will not be using it for your daily browsing quite yet (I recommend Vivaldi, Brave (which offers Staking Rewards as well) and DuckDuckGo for the time being). That said, it has WONDERFUL potential.

The top ten main features of Stract include:
  1. Open Source: Stract is entirely open-source, promoting transparency and community collaboration in its development and enhancement.
  2. Customization: The platform stands out for its high degree of customizability, allowing users to tailor their search…
  3. Advanced Search Capabilities: Stract offers advanced search capabilities, including Boolean operators, filters, and facets, empowering users to refine their searches with precision and efficiency.
  4. Natural Language Processing (NLP): Leveraging cutting-edge NLP algorithms, Stract understands and interprets natural language queries, ensuring accurate search results even for complex or ambiguous queries.
  5. Personalization: Stract employs sophisticated personalization algorithms to deliver tailored search results based on user preferences, search history, and behavior, enhancing the overall search experience and relevance of results.
  6. Scalability: Built on a scalable architecture, Stract seamlessly handles large volumes of data and user queries, ensuring fast and reliable search performance even as data volumes grow.
  7. Federated Search: Stract supports federated search capabilities, enabling users to search across multiple data sources and repositories from a single interface, eliminating the need to switch between different applications or platforms.
  8. Real-time Indexing: With real-time indexing capabilities, Stract ensures that new content is immediately available for search, providing users with up-to-date and relevant information at all times.
  9. Integration Options: Stract offers seamless integration with a wide range of third-party applications, databases, and content management systems, allowing users to leverage their existing infrastructure and workflows.
  10. Analytics and Insights: Stract provides powerful analytics and insights into search behavior, user interactions, and content usage, enabling organizations to gain valuable insights and optimize their search strategies for better performance and user satisfaction.
Overall, Stract offers a comprehensive and feature-rich search solution that EMPOWERS users to find relevant information quickly and efficiently. It is also the ideal choice for individuals and organizations seeking a powerful and 100% CUSTOMIZABLE search engine for their own needs, wishes, and goals. In summary, if you are familiar with technology and don't expect a full-blown Browser experience without a few minor speed bumps, it is highly recommended to check Stract out here: https://stract.com/about

SOURCES

https://www.tandfonline.com/doi/full/10.1080/19434472.2021.1993302

https://time.com/6219423/chokepoint-capitalism-doctorow-giblin/

DMARC: What Is It & Why Is February 1, 2024 Important?

DMARC

For 2024, Google and Yahoo are rolling out updated guidelines for bulk email senders, aimed at boosting deliverability and fighting the good fight against spam. This is good news: not only will it positively impact your deliverability, it’s easy to implement.

Why the update?

It’s simple: to create a cleaner, more secure environment for both senders and recipients. The new requirements fall into three key categories:

  • Authentication: Email authentication verifies you’re a legitimate sender, not a spammer. If you’re sending emails already, you’ve probably already taken the first step by setting up SPF (sender policy framework) and DKIM (domainkeys identified mail) records, even if you weren’t sure what they did. Now, the next crucial step is publishing a DMARC policy.

  • Simple unsubscribes: No more requiring users to authenticate or navigate labyrinthine unsubscribe processes. One-click unsubscribe provides a better user experience. Luckily, if you’ve already been offering this option, you’re already ahead of the curve!

  • Spam complaints: If you’re diligently collecting opt-ins with proper consent, spam complaints likely won’t be a concern. But it’s always good practice to maintain a healthy email list and engage your audience thoughtfully.

So what is DMARC?

  • The DMARC policy (Domain-based Message Authentication, Reporting & Conformance) acts as your email’s official security document, telling the world how to handle messages claiming to be from your domain.
  • Setting it up properly is essential today because many Email List Providers (such as small businesses) are already being surprised that their E-Mail Success % Rates Are Decreasing Just This Week (Google and Yahoo Domain Emails Began Enforcement On February 2nd, 2024).By February 1, 2024, publish your DMARC policy with your domain provider. Ensure this TXT record is added to your DNS settings with “yourdomain.com” replaced with your actual company domain:

    Hostname: _dmarc.yourdomain.com          Value: v=DMARC1; p=none;

    It is actually straight-forward for most technical savvy folks whether you manage DNS yourself or need to put in a ticket so that your IT team can handle the DNS settings. (You can learn even more about DMARC records, including other options like adding a “rua” value to designate an email address that will receive DMARC reports, in Google’s documentation here.

    These new email requirements might seem like extra hurdles, but they’re ultimately a positive step towards a more reliable and enjoyable email experience for everyone. By taking the small steps outlined above, you can ensure your business thrives under the new rules, reaching your target audience effectively and building lasting relationships.
    TECHNICAL DETAILS ABOUT DMARC IF YOU WANT TO DIVE DEEPER:

  1. Domain-Based Message Authentication, Reporting and Conformance (DMARC) is an email authentication policy that protects against bad actors using fake email addresses disguised to look like legitimate emails from trusted sources.
  2. DMARC makes it easier for email senders and receivers to determine whether or not an email legitimately originated from the identified sender. Further, DMARC provides the user with instructions for handling the email if it is fraudulent.
  3. WHY SHOULD ORGANIZATIONS LIKE YOURS BE INTERESTED IN DMARC?
Phishing and Spearphishing are among the top attack vectors for any organization dealing with PII (Personal Identifying Information), which can lead to identity impact, financial fraud, or even protected health information (PHI) breaches and Health Insurance Portability and Accountability Act (HIPAA) fines --> why? Because many individuals in the "black market" underground will access, buy, and sell that PII for non-Citizens/those who do not have health insurance-->they will be using it for their own "services" with fake ID presented as the same name and person that your company revealed their PII.                  
                
Summary: Your/Your Company liability can be far more reaching than you could ever imagine. It happens every day in the United States where "Joe" walks up to the urgent care or hospital needing emergency care with someone else's ID/SSN/healthcare insurance information all for the right price!
  4. Fraudulent emails are easy to design and cheap to send, which gives threat actors incentive to use repeated email attacks. DMARC provides an automated approach to reducing fraudulent email, before it ever reaches an employee’s inbox. In addition, DMARC helps prevent adversaries sending email to your organization or others purportedly from your staff.
  5. HOW DOES DMARC WORK? 
DMARC removes guesswork from the receiver’s handling of emails from non-authoritative email servers, reducing the user’s exposure to potentially fraudulent and harmful messages. A DMARC policy allows a sender to indicate that their emails are protected by Sender Policy Framework (SPF) and/or Domain Keys Identified Message (DKIM), both of which are industry-recognized email authentication techniques. DMARC also provides instructions on how the receiver should handle emails that fail to pass SPF or DKIM authentication. Options include sending the email to quarantine or rejecting it entirely.
  6. DMARC provides the receiver with an email address to provide feedback to the sender. 
Potential feedback can include that the sender’s email was rejected/quarantined by the receiver or that a threat actor is attempting to imitate the sender’s domain.
  7. HOW CAN I ADOPT DMARC ON MY DOMAIN?                                                                                        
Savvy organizations that adopt DMARC do so in strategic stages, with feedback loops between IT departments and their staff (depending on the size of the organization of course!). Because DMARC can block third parties delivering mail on the purported sender’s behalf, some intended messages may be flagged as illegitimate in some cases - which is a very small price to pay (risk vs. reward) in cybersecurity honestly.
Below Are A Few Steps Organizations Can Take To Ease Into DMARC Over Time:
1. Deploy DKIM & SPF in reporting-only mode first, listing known authorized email servers (such as vendors and trusted internal/external Partners).
2. Collect and review reports to identify unknown email servers.
3. Work with business units and IT staff to identify servers and determine their legitimacy.
4. Update DMARC policy flags to “quarantine” then to “reject” as confidence increases that most or all legitimate
servers have been accounted for.

Machine vs. Mind: Will AI be 2024’s Most Dangerous Cyber Weapon?

In 2024, for cybersecurity, we’re entering an era where advanced AI tools and escalated social engineering tactics (especially during election years) are changing the game. To avoid potential cyber threats, businesses, governments and individuals must grasp these emerging trends.

1. Rise Of Cybersecurity AI

In 2024, AI’s role in cybersecurity will expand to encompass automated responses and predictive analytics. It’s mainly about taking preventive measures in advance….

Integrating AI into cybersecurity applications can improve threat detection and incident response. For instance, AI can identify anomalies or deviations that may indicate potential security threats. Previously unseen attacks can be detected.

With cyberattacks becoming more sophisticated, AI’s ability to analyze vast datasets and identify patterns will be pivotal. Since AI has become a major part of cyber criminals’ toolkit, AI is expected to become a mainstay in cybersecurity solutions.

2. Election Year Disinformation

Election years provide fertile ground for social engineering and disinformation campaigns, and there’s no reason to believe 2024 will be an exception. As political tensions rise, so do efforts to manipulate public opinion and undermine democratic processes.

Americans lost $10.3 billion to online scams in 2022, which also emphasizes the need for ongoing employee security awareness training that includes exercises to help identify social engineering tactics and phishing attempts. The use of open-source intelligence tools (OSINT) to root out network vulnerabilities is recommended as a preventive measure to combat threat actors.

3. Escalation Of Ransomware Attacks

Ransomware remains a formidable threat in 2024, with tactics becoming increasingly complex and negotiations more aggressive. According to Cybersecurity Ventures, damages from cybercrime are projected to exceed $10.5 trillion globally by 2025.

This alarming escalation calls for robust backup strategies, employee training, cyber insurance, negotiation expertise and incident response plans. Companies can follow the example of external performing tasks such as penetration testing, validating network integrity, identifying unauthorized activity and monitoring for suspicious behavior.

4. AI-Based Predictive Social Engineering

2024 will likely see a rise in AI-based predictive social engineering and a disturbing convergence of AI and social manipulation techniques.

Leveraging AI, cybercriminals can prey on human weaknesses such as impulsiveness, greed and curiosity to more convincingly create personalized phishing campaigns at scale. AI-facilitated social engineering attacks have been reported to the FTC.

This emerging trend underscores the need to perform AI risk assessments and to consider outsourcing expertise to a virtual AI officer who can step into the role and run AI-resistant security protocols.

5. National U.S. Data Privacy Act

The progression of data privacy regulations—beginning with the European Union’s General Data Protection Regulation (GDPR) and extending to California’s Consumer Privacy Act (CCPA)—is paving the way for establishing a national data privacy act in the U.S. called the American Data Privacy and Protection Act.

With five states’ privacy acts becoming effective in 2024 and other data breaches costing companies an average of $4.45 million, legislating a national data privacy standard is more urgent than ever.

6. Cyberattacks On Cannabis Retailers

The burgeoning cannabis industry, particularly retailers, is increasingly vulnerable to cyberattacks as they transition to digital platforms. Banks and credit card services could begin to accept electronic payments and ACH transfers from cannabis businesses—thanks to pending legislation making its way through Congress—and the gap between point of sale (PoS) systems and potential data breaches narrows significantly.

Human error and complacency are major risk factors, and the industry’s nascent adoption of digital technologies makes it an attractive target for cybercrime. Retail dispensaries must prioritize cybersecurity to protect their client data and financial transactions, as the sector’s so-called “green rush” also attracts the unwanted attention of threat actors.

7. Zero Trust Elevates To Boardroom Status

The concept of zero trust in cybersecurity, akin to the rise of anti-virus software in the 1990s, is set to become a staple topic in boardroom discussions in 2024. Gaining steady momentum, the implementation of zero trust is no longer a technical nicety but a business imperative.

Rooted in the principle of “never trust, always verify,” the widespread adoption of zero-trust architectures signifies a paradigm shift in security strategies, emphasizing continuous verification of every user and device, regardless of their location or network.

This strategic move elevates cybersecurity from a technical concern to a core business function, crucial for protecting organizational assets.

8. FEMA Cyber Insurance

To make a bold and unprecedented prediction, FEMA, the federal agency known for last-resort flood insurance, may eventually be called upon to serve as a model and backstop for cyber insurance policies not covered by commercial carriers.

With traditional insurance carriers withdrawing from high-risk regions like Florida due to severe climate events, there is a growing need for federal intervention. A FEMA initiative could potentially underwrite essential services like airports, hospitals, energy and water treatment plants as commercial insurance options become limited.

Conclusion

The increasing complexity of cyber threats underscoring the security trends of 2024 highlights the need for advanced mitigation strategies. Organizations will need to understand these trends, ensure they enable best practices and consider collaborating with outsourced cybersecurity expertise to navigate the security environment and ensure a robust, future-ready cyber defense.

Handling Nationwide Emergency Alerts on October 4, 2023

Individuals who rely on devices in all homes and residences should turn them off ahead of the national emergency alert test before October 4, 2023. Credit: Getty
On Oct. 4, at approximately 2:20 p.m. ET, cellular devices, televisions, and radio systems will ring out from a national emergency alert test designed to ensure the country’s mass communication services are in working order – and intended to be heard loud and clear by anyone nearby. 

Fortunately, device users looking to silence a hidden resource have time to prepare.

Many Americans will already be familiar with the blaring alarm noise and accompanying notification blasts pushed to their phones, known as Wireless Emergency Alerts (WEA), used by the Federal Communications Commission (FCC) in four types of critical emergency situations:

  1. “National Alerts” issued by the President of the United States or the Administrator of the Federal Emergency Management Agency (FEMA);
  2. “Imminent Threat” alerts involving imminent threats to safety or life;
  3. Amber Alerts” about missing children; and
  4. “Public Safety Messages” conveying recommendations for saving lives and property.

October’s test will utilize both WEA and the Emergency Alert System (EAS) for television and radio.

SEE ALSO: New chatbot connects abortion-seekers with care options

This isn’t the first national test of WEA, but it’s only the second time the alert will be sent to all U.S. cellphones. For most, it will be a brief blip in their day.

But for those in unsafe domestic circumstances, and other at-risk secondary device users, the alert could pose a larger problem, as an unexpected noise may alert abusers to the location of commonly-used hidden devices in the home.

Who might use a hidden device?

Globally, advocates have raised concerns about automatic, emergency alerts leading to discovery and retaliation. In April, the UK government alerted users to this potential risk after consultation with regional domestic abuse charities, many of which worried about the inadvertent consequences of such an alert.

Audace Garnett is the technology safety project manager at the National Network to End Domestic Violence (NNEDV), a national coalition working to address intimate partner violence. Originally founded in 1990 by domestic violence victim advocates, NNEDV was involved in the 1994 passage of the Violence Against Women Act, the first federal legislation to strengthen the government’s response to crimes perpetrated against survivors of domestic violence, sexual assault, dating violence, and stalking.

She says these tech considerations have become a central aspect to organizing against domestic violence and survivor advocacy. “Everywhere we look, everywhere that we go, technology is intertwined into our lives, whether it’s at the airport or the bus station or wherever we go,” explains Garnett. “Technology isn’t the problem, it’s the abuse. Technology is just one tool among many that are misused by abusers to exert power and control.”

Because of this, she explains, survivors of intimate partner violence and others at risk may use secondary, hidden devices for a variety of reasons.

“It acts as a lifeline that allows emergency communication with support networks or services when the survivor may be in danger,” Garnett says. “They can call 911 or reach out to someone they feel safe connecting with. Additionally, it safeguards their privacy, serving as an alternative means of communication. If their primary device is compromised, they can use it to make appointments, connect with their loved ones, talk to an advocate, join groups, and find resources to attend school. It can also allow survivors to document evidence of threats or incidents they could use to show that there’s a pattern of violence, if they’re interested in proceeding with a case.”

In addition to NNEDV, the National Domestic Violence Hotline also notes how life-preserving technology can simultaneously be used by abusers as a form of digital abuse, defined as “the use of technology and the Internet to bully, harass, stalk, intimidate, or control” a partner or loved one.

“As technology has evolved, cell phones have become increasingly embedded in our daily lives. This provides quick access to resources and information, but it can also give other people instant updates on your whereabouts, habits, and activities. Cell phones can be used to track your location and retrieve call and text history,” the organization writes.

Thus, having a hidden device is a calculated risk by those in need. “The decision to have a hidden device should always be made with careful consideration of a survivor’s circumstance and the potential risks involved. Having a hidden device is not for everyone,” Garnett explains. “In some situations, it may not be safe or advisable to have a hidden device, as its presence could escalate violence or lead to further harm.”

How will the emergency alert test impact users?

According to FEMA, the emergency alert will be broadcast in two parts, through the EAS on television and radio and then via WEA on cellphones.

Alerts can be issued within an approximately 30-minute timeframe starting at 2:20 p.m. ET. Once issued, the alert should last one minute, and all wireless phones should receive the message only once. It will affect all WEA-compatible wireless phones that are switched on, within range of an active cell tower, not on “airplane mode,” and whose wireless provider participates in WEA, the FCC explains.

Apple Watches with cellular data are also able to receive emergency, government, and public safety alerts in certain regions, according to Apple.

“Receiving an emergency alert could potentially alert an abuser to the presence of a hidden device, similar to an unscheduled phone call,” Garnett says, noting emergency notifications like Amber Alerts or Silver Alerts for missing adults happen frequently throughout the year. “If the hidden device is not on silent, or an alert goes off from an app or update on the phone, it may cause alarm and things may escalate as a result.”

Garnett advises users of hidden smart devices to turn off their emergency alert notifications for a layer of year-round protection. But for October’s test alert in particular, smart devices and pay-as-you-go phones should be turned off completely (this may mean removing its battery) before the broadcast time — or at any time an actual national emergency alert could pose risk.

National alerts — including emergency notices from the president and from FEMA, like the October WEA test — cannot be turned off by device users, in accordance with the Warning, Alert, and Response Network (WARN) Act. “Survivors should turn off their phones completely,” Garnett reiterates. “There are other types of emergency alerts that survivors’ phones may receive if they haven’t disabled them (and most people have not), such as emergency weather alerts and Amber Alerts… Unlike a WEA test, these alerts are not announced ahead of time, making it even more advisable for survivors to have their hidden phones powered off when not actively using them.”

Some participating wireless carriers may offer the ability to block other, non-national alerts, such as those involving imminent threats to safety and Amber Alerts, the New York Times reports.

“For survivors that do have a hidden device, the decision to power off emergency or hidden phones when not in use is a strategic step to safeguard their safety to protect their privacy and preserve their confidentiality,” Garnett explains.

How to turn off specific emergency alerts for Apple users

While the FCC strongly urges the public to stay opted in to receive all emergency notifications, at-risk users looking to silence certain alerts on secondary devices can adjust their settings.

For iPhones running iOS 16:

  1. Go to your iPhone’s Settings menu.
  2. Select Notifications.
  3. Scroll to the bottom of the screen to the Government Alerts section.
  4. Users can turn various types of alerts on or off, including whether or not you’d like emergency alerts to issue a sound.
A screenshot of the iPhone settings menu.

The settings menu on an iPhone 12 running iOS 16. Credit: Apple
A screenshot of the iPhone notifications settings.

Credit: Apple
A screenshot of the iPhone settings for emergency alerts.
Credit: Apple

How to turn off specific emergency alerts for Android users

For Google devices running Android 13:

  1. Open the Settings menu.
  2. Select Safety & emergency.
  3. Scroll to Wireless emergency alerts.
  4. Users can turn various types of alerts on or off, including non-national WEA test alerts.
A screenshot of the Galaxy phone settings menu.

The settings menu on a Galaxy S20 running Android 13. Credit: Samsung/ Android
A screenshot of the Galaxy Safety and emergency settings menu.

Credit: Samsung/ Android
A screenshot of the Galaxy wireless emergency alerts settings.

The wireless emergency alerts menu on a Galaxy S20 running Android 13. Credit: Samsung/ Android
Another screenshot of the Galaxy wireless emergency alerts settings.

Credit: Samsung / Android

What else should users know?

Actual emergency alerts will continue long after the test, so at-risk users should be careful to power down hidden devices and be aware of additional, year-round precautions for keeping secondary technology.

Additionally, if the government issues an actual emergency alert on Oct. 4, the WEA test will still proceed at the same time on Oct. 11, FEMA explains.

Garnett suggests at-risk users consult additional technology resources available from NNEDV, including:

The National Domestic Violence Hotline suggests those with iPhones running iOS 16 or later look into Apple’s Safety Check. Safety Check allows users to quickly change sharing and access permissions on a device. “Safety Check allows survivors to check sharing privacy concerns related to their iPhones by giving them an easy way to view and update the information shared and data gathered from apps, networks, features, as well as the contacts in an iPhone that have access to specific data,” the hotline explains.

The organization offers additional survivor and technology safety resources, as well:

“Survivors have a right to technology,” Garnett says. “Oftentimes, when a survivor speaks out or seeks help, people will tell them to get rid of cellphones, social media, or to get off of the platforms and technology they are using. That is unfair. We need to figure out more ways to make a user accountable for the harm that they’re causing because survivors cannot avoid technology.”

2023 Metamask Security Tips and Tricks: Keeping Your Cryptocurrency Safe

Cryptocurrency has surged into the mainstream in recent years, with the advent of blockchain technology and digital wallets like Metamask making it easier than ever to store and trade currency. But convenience isn’t the only reason many people have made the switch: security is a major benefit for many users as well. While Metamask is one of the most secure wallets available, it’s also important to know how to keep your funds safe from malicious actors. Here are the best updated Cybersecurity Tips & Tricks for 2023 Metamask!

The rise in crypto thefts and scams just in the last 3 years means that it is more important than ever to take measures to secure your funds – especially taking SELF-CUSTODY of your crypto via a cold hard wallet. It can be difficult to know where to start, but luckily there are some simple steps you can take to ensure that your finances are as safe as possible. Whether you’re a novice investor or an experienced trader, knowing the basics of Metamask security can help give you peace of mind when it comes to storing your cryptocurrency. With the right precautions and understanding, you can take proactive steps to protect your digital assets, knowing they’re safe from unwanted third parties.

So let’s get started. In this blog post, I’m going to break down 2023 Metamask security tips and tricks to help you stay safe when storing and trading crypto. We’ll cover topics such as strategies for securing your account, detecting potential scams, and even the pros and cons of different wallet types. With these tips and tricks in hand, you’ll be ready to confidently navigate the world of cryptocurrency safely in 2023 and beyond.

Introduction

MetaMask is easily one of the best crypto wallets that you can find out there. It is funded by Ethereum and can be installed in the browser like any other plugin you can use. It allows users to store Ether and other ERC-20 tokens, which allows users to make seamless transactions. It can be found here: https://metamask.io

The first step is making sure you are using a CLEAN and SAFE Computer/Device before you begin using anything dealing with crypto. SkyTheTechGuy can provide you with a free diagnostic and analysis to double-check your assumption –> that your network/computer/device is safe, secure, and prepared for MetaMask or any other crypto program. Help@GeeksByTheHour.com or

With a lot of crypto wallets to choose from, you can be sure to get a lot of recommendations from the experts. MetaMask, however, is one of the safest picks for ETH storage. Users can have seamless transactions in spending coins in games, staking tokens, and even trading.

So far, MetaMask has gained a huge following from various ETH users all over the world. As they continue to provide users with an entry point into the emerging world of decentralized finance, any ‘MetaMask explained‘ articles would be helpful to those who want to invest in ETH.

MetaMask is one of the top wallets that you can use for your investments, and it offers some of the best services that you can enjoy as a crypto enthusiast. That says a lot about the way it can be a good pick for those who are keen to use ETH.

I. MetaMask Is An Efficient Wallet

MetaMask was founded by ConsenSys in 2016 just as an extension on desktop computers but later grew to be a full experience for a lot of users and even has a mobile application for everyone to use.

This app can be downloaded on iOS and Android devices. It is also available on the Google Chrome browser, Mozilla Firefox browser, Brave Browser as well as on Microsoft Edge. This makes it one of the wallets that can be accessed from almost any device everywhere.

II. Why MetaMask?

MetaMask was designed with a lot of new features that gives a lot of convenience in dealing with crypto. The wallet has recently designed a feature that allows swapping of ETH tokens on the app – which was formerly available by connecting to other exchanges such as Uniswap.

This made it easy with the third party app now taken out of the picture. The feature scours well through the DeFi landscape to offer the trader with the best deals at lower fees. On top of that, the wallet also offers integration with hardware wallets such as Ledger Nano and offers boosted security for fund storage.

III. *There are a lot of benefits in using MetaMask*

MetaMask offers a wide array of benefits that you would love in a crypto wallet. After all, crypto is a secure currency itself, but then you should know that MetaMask itself is a strong wallet that offers stability for users in the long run.
  • Availability 

MetaMask is useful when it comes to the easy access that people can make use of. With a number of available downloads for the app, you can say that it is clearly a huge benefit even if you change devices and so on. That says a lot about the way you can use it with no hassle compared to other wallets.

  • Popularity

MetaMask is a popular wallet that you can use with ease. It is popular among many users thanks to its amazing features. As one of the best open source wallets, it is a rare breed among other wallets out there, and it shows a lot of progress for a reliable storage in crypto.

  • Security

With the encryption, password, Secret Backup phrase and many other details, MetaMask’s detail on security is on point, and a lot of people would be thrilled to use it knowing they don’t have to worry about being hacked and so on.

On top of that, MetaMask’s lack of control on your private key means that they will not access your crypto on their own. This means that it is also harder to hack and secure to keep your crypto on for good.

  • Ethereum support

MetaMask’s connection to ETH makes it clear that you have a link to the second largest blockchain in the world. This means that MetaMask supports other Ethereum-based tokens and it immediately adds value to this wallet as well.

  • Ease of access

MetaMask is easy to use. If you look for any ‘MetaMask explained’ articles, you can read the fact that the wallet is one of the user-friendly wallets that you can find online. This is what makes MetaMask dominant among many other wallets that offer various services just like it.

None of the information on this website is investment or financial advice and does not necessarily reflect the views of SkyTheTechGuy, LLC or the author. SkyTheTechGuy,LLC is not responsible for any financial losses sustained by acting on information provided on this website by its authors or clients. Always conduct your research before making financial commitments, especially with third-party reviews, presales, and other opportunities. This information provided is for educational use only and should not be relied upon for any financial or investment advise or purpose.

How To Lock Down Your Computer

How to Quickly Lock Your Windows 11/10 PC

 

Your privacy matters. That’s why it’s good practice to lock a desktop or laptop whenever you leave it unattended. Use any of the methods below to stop other people from snooping around your PC.

Unlike signing out, locking a computer is faster, just as secure, and doesn’t require you to shut down open programs. You also get to unlock it instantly and pick up where you left off. This article will go through various ways to quickly lock Windows 11 and 10.

Table of Contents

Lock Computer via the Start Menu

The most straightforward approach to locking your PC is simply to use the Start menu. Open it, select the User icon or your profile portrait, and choose the option labeled Lock.

Note: If the Lock option is not present, open the Control Panel, go to Hardware and Sound > Power Options > Change what the power buttons do, and activate the box next to Lock to add it.

Lock Computer with a Keyboard Shortcut

If you prefer keyboard shortcuts, an even faster way to lock a Windows computer is pressing Windows Key + L. Use it a few times, and you’ll get it hard-coded into your muscle memory.

Lock Computer with a Desktop Shortcut

If you find it challenging to use the Win + L keyboard shortcut, you can create a desktop shortcut capable of locking your PC just as quickly.

  1. Right-click a vacant area within the desktop area.
  2. Select New > Shortcut on the context menu.
  3. Copy and paste the following snippet of text into the Create Shortcut window and select Next:

rundll32.exe user32.dll,LockWorkStation

  1. Type a name for the shortcut—e.g., “Lock PC”—and select Finish.
  2. Double-click the shortcut whenever you want to lock your PC.

Lock PC via the Windows Security Screen

The Windows Security screen (a.k.a. the Ctrl + Alt + Delete screen) offers another quick way to lock Microsoft Windows. The best thing about this method is that you can use it even if Windows 11 or 10 isn’t responsive. Simply press Ctrl + Alt + Del to get the Windows Security screen to show up. Then, select Lock.

Lock Computer via Task Manager

If you ever find yourself using the Task Manager in Windows 11 or 10 and want to lock down your PC immediately, you can do that using the Task Manager itself.

  1. Right-click the Start button and select Task Manager.
  2. Select More details to expand the default Task Manager view.
  3. Switch to the Users tab.
  4. Select your Windows user account.
  5. Select the Disconnect option at the lower-right corner of the window.

Lock Computer Alongside Screen Saver

If you regularly forget to lock your PC, you can set up a screensaver to kick in automatically and lock your PC when it engages.

  1. Open the Start menu, search for screen saver, and select Turn Screen Saver On or Off to invoke the Screen Saver Settings pop-up.
  2. Open the drop-down menu under Screen saver and pick a screensaver (select Blank if you prefer to keep the computer screen dark when the screensaver is active).
  3. Specify a time in minutes within the Wait box, check the box next to On resume, display logon screen, and select OK.

Your PC will display the screensaver when left idle for the time duration. Press a key or mouse button whenever you want to exit it and get to the Lock Screen.

Lock Computer With Dynamic Lock

Dynamic Lock automatically locks the operating system if it detects a weak Bluetooth signal between your PC and another device. Although it works with any Bluetooth peripheral, using a smartphone (Android or iPhone) is the most practical.

Connect Smartphone to PC

Before activating Dynamic Lock, you must pair your smartphone with your computer.

  1. Put your phone into Bluetooth discovery mode. That’s as simple as visiting its Bluetooth options screen (e.g., Settings > Bluetooth on the iPhone).
  2. Open the Settings app on your PC (press Windows + I).
  3. Select Devices > Bluetooth & other devices.
  4. Select Add Bluetooth or other device > Bluetooth.
  5. Select your phone and go through the onscreen instructions to pair it.

Activate Dynamic Lock

It’s now just a matter of activating Dynamic Lock.

  1. Open the Settings app on your PC.
  2. Select Accounts > Sign-in Options and scroll down to the Dynamic Lock section.
  3. Check the box next to Allow Windows to automatically lock your device when you’re away.

Your PC will automatically lock itself whenever you move away from it with your iPhone or Android smartphone.

Lock Computer via Run Command

You can perform many valuable activities with Run commands in Windows, including locking your PC. Although it’s hard to justify using Run over the above methods, it’s good to know that this way exists.

  1. Press Windows Key + R or right-click the Start button and select Run.
  2. Type the following command into the Run dialog box:

rundll32.exe user32.dll,LockWorkStation

  1. Select OK, or press Enter to lock Windows.

Lock Computer via Windows Terminal

Another obscure way to lock a Windows 11/10 PC requires running a command through the Windows Terminal or Windows PowerShell consoles. Here’s how to use it:

  1. Right-click the Start button and select Windows Terminal (Windows 11) or Windows PowerShell (Windows 10).
  2. Type the following command:

rundll32.exe user32.dll,LockWorkStation

  1. Press Enter.

Tip: The above command also works on the older Command Prompt console. Open the Start menu, type cmd, and select Open to get to it.

While this command is not particularly useful for locking your PC in the moment, it can be handy to include the command in a script so that your PC locks when the script finishes.

Total Lockdown

Locking your Windows PC has no downsides and keeps intruders at bay. It’s easy to forget to do that, however, so it’s always worth taking your time to tweak your screensaver settings or set up Dynamic Lock. While you’re at it, check out how to create a passwordless login in Windows to make getting back in even faster.

About The Author

Dr. Sky Houston has a legacy, passion and expertise in Information Technology. He specializes in topics related to Consumer & Business Technology and optimizing productivity. “Tame Your Technology Or It Will Tame You” is his way of life! When he isn’t solving tech issues of all sizes, he is busy optimizing, troubleshooting and locking down Client’s Internet, Networks, Devices and Computers, you can catch him teaching and training network, productivity improvements and Cyber Security.

Subscribe on YouTube!
Did you enjoy this tip? If so, check out our YouTube channel. We cover Windows, Mac, Software, Shortcuts and Apps, and also have a bunch of troubleshooting tips and how-to videos. Click the button below to subscribe!

 

Our Publishing Family

Geeks By The Hour is part of the Global Strong publishing family.

About Geeks By The Hour

Welcome to Geeks By The Hour – a blog full of tech tips from trusted IT experts. We have hundreds of articles and guides to help you troubleshoot any issue. Our articles have been read over 1 million times since we launched in 2009.

Copyright © 2009-2023 SkyTheTechGuy.com & GeeksByTheHour.com All Rights Reserved

Top 10 Cybersecurity Trends (Updated for 2023)

Top 10 Cybersecurity Trends (Updated for 2023)

Table of Contents

1) Rise of Automotive Hacking 

2) Potential of Artificial Intelligence (AI) 

3) Mobile is the New Target 

4) Cloud is Also Potentially Vulnerable 

5) Data Breaches: Prime Target

6) IoT with 5G Network: The New Era of Technology and Risks 

7) Automation and Integration 

8) Targeted Ransomware

9) State-Sponsored Cyber Warfare

10) Insider Threats

2023: The Digital Transformation realized for businesses, organizations and even governments are relying on computerized and progressively increased digital systems to manage their day-to-day activities making Cybersecurity a primary goal and priority for all Executives and Organizations of all sizes.

The 2020 pandemic  year exacerbated this fact – with up to 75% of billions of people globally transitioning from their physical office (which had the IT resources and personnel) to their “home office”. Essentially turning the entire “working from home industry” and all of the IT and HR requirements that it needs due to safeguarding data from various online attacks or any unauthorized access as the new “norm” of virtual/remote work.

Going Forward: Continuous change in technologies including the popular Dual Authorization Password apps primarily through utilizing the smart phone also implies a parallel shift and priority in Cybersecurity trends across the board in every organization as news of data breach, ransomware, malware, compromised devices/browsers and hacks unfortunately become the norms. This is simply based on adapting to the progressing volume (millions before the 2020 Pandemic worked from home, today it is billions) of remote workers. Here are the top Cybersecurity trends for 2023:

1) Rise of Automotive Hacking 

Modern vehicles nowadays come packed with automated software creating seamless connectivity for drivers in cruise control, engine timing, door lock, airbags and advanced systems for driver assistance. These vehicles use Bluetooth and WiFi technologies to communicate that also opens them to several vulnerabilities or threats from hackers. Gaining control of the vehicle or using microphones for eavesdropping is expected to rise in 2023 with more use of automated vehicles. Self-driving or autonomous vehicles use an even further complex mechanism that requires strict cybersecurity measures.

2) Potential of Artificial Intelligence (AI) 

With AI being introduced in all market segments, this technology with a combination of machine learning has brought tremendous changes in cybersecurity. AI has been paramount in building automated security systems, natural language processing, face detection, and automatic threat detection and the ChatGPT OpenAI capabilities that are literally transforming industries of anything relating to “the written word” including Copy Writing, Marketing, Advertising, Education, and many, many others are all being automated with AI. Although, it is also being used to develop smart malware and attacks to bypass the latest security protocols in controlling data. AI enabled threat detection systems can predict new attacks and notify admins for any data breach instantly.

3) Mobile is the New Target 

Cybersecurity trends provide a considerable increase (50 percent) for mobile banking malware or attacks in 2020, making our handheld devices a potential prospect for hackers. All of our photos, financial transactions, emails, and messages possess more threats to individuals. Smartphones are logically one of the biggest targets for anyone with the skills and agenda primarily based on two facts:

  1. Smartphones are used by more people globally today than PC’s (personal computers)
  2. The security and vulnerabilities of smartphones are far less on average than PC’s
  3. Social Media like Facebook, Instagram, and Tik Tok as well as other installed Apps of all types on smartphones/PC’s/devices are being targeted more and more each day by malicious individuals and “ransomware gangs” globally.

4) The “Cloud” i.e. Internet is Also Potentially Vulnerable 

With more and more organizations now established on clouds, security measures need to be continuously monitored and updated to safeguard the data from leaks. Although cloud applications such as Google or Microsoft are well equipped with security from their end still, it’s the user end that acts as a significant source for erroneous errors, malicious software, and phishing attacks more than ever before today. Malicious actors across the globe are adapting faster than end users can act, especially in today’s ever so popular Social Media world.

5) Data Breaches: Prime target

Data will continue to be a leading concern for organizations around the world. Whether it be for an individual or organization, safeguarding digital data is the primary goal now. Any minor flaw or bug in your system browser or software is a potential vulnerability for hackers to access personal information. New strict measures General Data Protection Regulation (GDPR) was enforced from May 25th, 2018 onwards, offering data protection and privacy for individuals in the European Union(EU). Similarly, the California Consumer Privacy Act (CCPA) was applied after January 1st, 2020, for safeguarding consumer rights in the California area.

6) IoT with 5G Network: The New Era of Technology and Risks 

With the advent and growth of 5G networks, a new era of inter-connectivity will become a reality with the Internet of Things (IoT).

The Internet of Things (IoT)  is essentially an interconnected global network where all devices are connected to each other as well as the “internet” 24×7. This communication between multiple devices also opens them to vulnerabilities from outside influence, attacks or an unknown software bug. Even the world’s most used browser supported by Google, Chrome was found to have serious bugs. 5G architecture is comparatively new in the industry and requires a lot of research to find loopholes to make the system secure from external attack.

Every step of the 5G network might bring a plethora of network attacks that we might not be aware of. Here manufacturers need to be very strict in building sophisticated 5G hardware and software to control data breaches.

7) Automation and Integration 

With the size of data multiplying every day, it is eminent that automation is integrated to give more sophisticated control over the information. Modern hectic work demand also pressurizes professionals and engineers to deliver quick and proficient solutions, making automation more valuable than ever. Security measurements are incorporated during the agile process to build more secure software in every aspect. Large and complex web applications are further hard to safeguard making automation as well as cyber security to be a key concept of the software development process.

8) Targeted Ransomware

Another important cybersecurity trend that we can’t seem to ignore is targeted ransomware. Especially in the developed nations’ industries rely heavily on specific software to run their daily activities. These ransomware targets are more focused today in 2023 including examples like the Wanna Cry attack on the National Health Service hospitals in England corrupted more than 70,000 medical devices. Though generally, ransomware asks to threaten to publish the victim’s data unless a ransom is paid still it can affect the large organization or in case of nations too.

9) State-Sponsored Cyber Warfare

There won’t be any stoppage between the western and eastern powers in attempts to find superiority. The tension between the US and Iran or Chinese hackers often creates worldwide news though the attacks are few; they have a significant impact on an event such as elections. And with more than 70 elections bound to be held this year, criminal activities during this time will surge. Expect high-profile data breaches, key infrastructure like airlines grounding planes due to internal software compromises, etc. as top cybersecurity trends for 2023.

10) Insider Threats

Human error is still one of the primary reasons for data breaches and cyber security issues and service tickets, up to 75% of all reported in fact according to the most recent 2022 statistics. Any employee having a grudge or just a bad day at their employer or intentional loophole can bring down a whole organization with millions of stolen data. One example of this in 2022 was an official Report by Verizon that a documented data breach gives strategic insights on cybersecurity trends that 45 percent of total attacks were directly or indirectly made by the employees. Creating a culture of more awareness within premises to safeguard data in every way possible is truly the primary goal today in 2023 as well as the future.

The Best Antivirus for Windows 10 Today (2023) (Is Windows Defender Good Enough?)

The Best Antivirus for Windows Today In 2023: Is Windows Defender Good Enough?

 

Windows Defender was originally known as Microsoft Security Essentials back in the Windows 7 days when it was offered as a separate download, but now it’s built right into Windows and it’s enabled by default. Many people have been trained to believe that you should always install a third-party antivirus, but that isn’t the best solution for today’s security problems, like ransomware.
If improving Security for your end device is your overall goal and you have a PC (aka Windows-OS device) then you must download and install WINPATROL. There is a FREE limited edition, but if you care for what comes in to your device then for a week's worth of coffee it is HIGHLY SUGGESTED you pay for the Upgrade. I have the paid version on every devices that runs on Windows since Windows 7 came out and it is THE BEST BARGAIN IN PC SECURITY. https://www.bleepingcomputer.com/download/winpatrol/
So, What Is the Best Antivirus Program In 2023?

 

We definitely recommend you read the entire article so you fully understand why we recommend a combination of Windows Defender and Malwarebytes, but since we know that tons of people will just scroll down and skim, here is our recommendation for how to keep your system secure:
  • Keep the Built-in Windows Defender for traditional antivirus – but today in 2023, malicious hackers require you to adapt and focus on Ransomware, zero-day attacks, keyloggers, and malware (such as Keyloggers that can copy and use every key stroke on your device for their own purposes) that require the 1-2-3 Defense listed below.
  • Use Malwarebytes for Anti-Malware and Anti-Exploit – all of the huge malware outbreaks these days are using zero-day flaws in your browser to install ransomware to take over your PC, and only Malwarebytes provides really excellent protection against this with their unique anti-exploit system. There’s no bloatware and it won’t slow you down.

Editor’s Note: This doesn’t even mention the fact that Malwarebytes, the company, is staffed by some really great people that we really respect. Every time we talk to them, they are excited about the mission of cleaning up the internet. It’s not often that we give an official How-To Geek recommendation, but this is our favorite product by far, and something we use ourselves.

A One-Two-Three Punch Equals a Knockout for anyone trying to cause harm: Registry/Windows Defense (WinPatrol), Antivirus (Windows Defender) and Anti-Malware (MalwareBytes)
1. You need antivirus software on your computer, no matter how “carefully” you browse. Being smart isn’t enough to protect you from threats, and security software can help act as another line of defense.

2. However, antivirus itself is no longer adequate security on its own. We recommend you use a good antivirus program and a good anti-malware program. Together, they will protect you from most of the biggest threats on the internet today: viruses, spyware, ransomware, and even potentially unwanted programs (PUPs)—among many others.

3. So which ones should you use, and do you need to pay money for them? Let’s start with the first part of that unified threesome combo: antivirus.

Is Windows Defender Good Enough On Its Own? NO IT IS NOT!

When you install Windows 10 or Windows 11 (not recommended as of this time), you will have an antivirus program already running. Windows Defender comes built-in to Windows 10, and automatically scans programs you open, downloads new definitions from Windows Update, and provides an interface you can use for in-depth scans. Best of all, it doesn’t slow down your system, and mostly stays out of your way—which we can’t say about most other antivirus programs.

For a short while, Microsoft’s antivirus fell behind the others when it came to comparative antivirus software tests—way behind. It was bad enough that we recommended something else, but it’s since bounced back, and now provides very good protection.

So in short, yes: Windows Defender is good enough (as long as you couple it with a good anti-malware program, as we mentioned above—more on that in a minute).

But Is Windows Defender the Best Antivirus? What About Other Programs?

If you look at that antivirus comparison we linked to above, you’ll notice that Windows Defender, while good, does not get the highest ranks in terms of raw protection scores. So why not use something else?

First, let’s look at those scores. AV-TEST found that it still caught 99.9% of the “widespread and prevalent malware” in April 2017, along with 98.8% percent of the zero-day attacks. Avira, one of AV-TEST’s top rated antivirus programs, has the exact same scores for April—but slightly higher scores in past months, so its overall rating is (for some reason) much higher. But Windows Defender isn’t nearly as crippled as AV-TEST’s 4.5-out-of-6 rating would have you believe.

Furthermore, security is about more than raw protection scores. Other antivirus programs may occasionally do a bit better in monthly tests, but they also come with a lot of bloat, like browser extensions that actually make you less safe, registry cleaners that are terrible and unnecesary, loads of unsafe junkware, and even the ability to track your browsing habits so they can make money. Furthermore, the way they hook themselves into your browser and operating system often causes more problems than it solves. Something that protects you against viruses but opens you up to other vectors of attack is not good security.

Just look at all the extra garbage Avast tries to install alongside its antivirus.

Windows Defender does not do any of these things—it does one thing well, for free, and without getting in your way. Plus, Windows 10 already includes the various other protections introduced in Windows 8, like the SmartScreen filter that should prevent you from downloading and running malware, whatever antivirus you use. Chrome and Firefox, similarly, include Google’s Safe Browsing, which blocks many malware downloads.

If you hate Windows Defender for some reason and want to use another antivirus, you can use Avira. It has a free version that works fairly well, a pro version with a few extra features, and it provides great protection scores and only has the occasional popup ad (but it does have popup ads, which are annoying). The biggest problem is that you need to be sure to uninstall the browser extension it tries to force on you, which makes it hard to recommend to non-technical people.

Antivirus Isn’t Enough: Use Malwarebytes, Too

Antivirus is important, but today, it is far more important that you use a good anti-exploit program to protect your web browser and plug-ins, which are the most targeted by attackers. Malwarebytes is the program we recommend here.

Unlike traditional antivirus programs, Malwarebytes is good at finding “potentially unwanted programs” (PUPs) and other junkware. As of version 3.0, it also contains an anti-exploit feature, which aims to block common exploits in programs, even if they are zero-day attacks that have never seen before—like those nasty Flash zero-day attacks. It also contains anti-ransomware, to block extortion attacks like CryptoLocker. The latest version of Malwarebytes combines these three tools into one easy-to-use package for $40 per year.

Malwarebytes claims to be able to replace your traditional antivirus entirely, but we disagree with this. It uses completely different strategies for protecting you: antivirus will block or quarantine harmful programs that find their way to your computer, while Malwarebytes attempts to stop harmful software from ever reaching your computer in the first place. Since it doesn’t interfere with traditional antivirus programs, we recommend you run both programs for the best protection.

Update: The Premium version of Malwarebytes now registers itself as the system’s security program by default. In other words, it will handle all your anti-malware scanning and Windows Defender won’t run in the background. You can still run both at once if you like. Here’s how: In Malwarebytes, open Settings, click the “Security” tab, and disable the “Always register Malwarebytes in the Windows Security Center” option. With this option disabled, Malwarebytes won’t register itself as the system’s security application and both Malwarebytes and Windows Defender will run at the same time.

Note that you can get some of Malwarebytes’ features for free, but with caveats. For example, the free version of Malwarebytes program will only scan for malware and PUPs on-demand—it won’t scan in the background like the premium version does. In addition, it doesn’t contain the anti-exploit or anti-ransomware features of the premium version.

You can only get all three features in the full $40 version of Malwarebytes, which we recommend. But if you’re willing to forego anti-ransomware and always-on malware scanning, the free versions of Malwarebytes and Anti-Exploit are better than nothing, and you should definitely use them.
There you have it: with a combination of a good antivirus program, Malwarebytes, and some common sense, you’ll be pretty well protected. Just remember that antivirus is only one of the standard computer security practices you should be following. Good digital hygiene isn’t a replacement for antivirus, but it is essential to making sure your antivirus can do its job.