Considering the fact that an average user has to manage at least 4 to 5 online accounts, a lot of people end up setting the same or easy-to-remember passwords for all of them. The exasperation of remembering different passwords and ignorance about the consequences of a data breach are the main reasons behind a security attack. The ever increasing use of internet and poor password practices has created unlimited opportunities for the hackers to steal important data, tamper websites, gain access to financial information etc.

Listed below are some of the common types of password attacks:

• Brute Force Attack: In this attack, the hacker uses a computer program to try every possible password combination until the correct one is found. Using a list of some of the most common passwords, such as ‘123456’, ‘password’ or ‘Password1234’, the hacker attempts to gain access to the user’s account. Due to the endless combinations of letters, numbers and symbols, brute force attack may take a long time to be completed. 
• Guessing Game: This is another form of brute force attack that involves guessing a user’s password by trying the most obvious words, such as names of loved ones, pets, places, numbers, birth dates, phone numbers etc. Even combination passwords, such as ‘name123’ are quite trivial to guess.
• Keylogger Attack: It refers to a type of physical breach in which the hacker tracks the keystrokes to record the user name and password. Even a strong password or encrypted login credentials do not provide complete protection from this attack. Initially, the user may be tricked to install the keylogger software, either through phishing or in the form of a drive-by download. Whenever you login to your account, the software traces everything you have typed and transmits it to the hacker to gain easy access to your information.
• Intercepting: Passwords can also be captured when they are transmitted over the network in an unencrypted format. Packet sniffers and other network monitoring software may be used by the hackers to intercept your login details as well as online financial transactions. These types of attacks most commonly occur when users access their online accounts through unsecure wireless networks.

Centex Technologies is a leading IT security company serving the businesses in Dallas, TX. For more information on the common password attacks and the ways to prevent them, feel free to call us at (972) 375 – 9654.

Internet browsing has become an important part of our daily lives but various security risks may arise if proper measures are not followed. Exposing your financial information, being a victim of malware infection or losing access to the files stored on your computer, all these are some of the common threats that a user may have to deal with. Following safe web browsing practices can help to avoid all these risks and protect your personal data online.

Here are some tips to stay safe while browsing the internet.

• Keep Your Browser Updated: Make sure your web browser is constantly updated to the latest version. Security patches are often released to fix any vulnerabilities that may be present in the previous version. You can turn on automatic updates or regularly check for the newer version available. Besides the browser, the operating system and software installed on your computer should also be up-to-date.

• Improve Computer Security: Install and use an anti-virus software, spyware as well as malware detection program to improve the security of your computer. This will help to detect and remove any potentially dangerous program from your system. Also enable the firewall to avoid hackers from getting unauthorized access to your computer.

• Be Careful Of Phishing: Phishing attacks involve the use of spam emails, which appear to be from a legitimate source, and aim at acquiring sensitive information from the users. Make sure you do not click any link or download any attachment from an email received from unknown sender.

• Be Cautious When Using Wi-Fi: You should be extremely cautious when accessing the internet through a wireless connection as information shared over these networks is not usually encrypted. Do not log in to any of your online accounts, make financial transactions or access your social media profiles on a Wi-Fi connection. Your information can be easily intercepted by hackers and used for malicious purposes.

• Look For HTTPS: When accessing any website that requires you to enter important information, such as password, credit card details, bank account number etc., make sure that the website’s URL starts with an ‘HTTPS’ instead of ‘HTTP’. There should also be a padlock icon in the address bar, verifying that the website you are visiting is secure.

• Do Not Reuse Passwords: Using the same passwords for all your online activities makes it easier for the hackers to gain access to multiple accounts. Hence, you should create complex and unique passwords for different accounts, including internet banking, email, social media, online shopping etc.

For more internet safety tips, feel free to contact Centex Technologies at (972) 375 – 9654.

The ever increasing number of internet users has provided cyber criminals an opportunity to exploit the vulnerabilities in the computer systems. As people constantly rely on the digital world for work, gaming, social networking, recreation and other such purposes, there has been a massive upsurge in the malware threats. It is important to detect the infection in order to protect your computer and prevent such attacks in future.  

Given below are some warning signs that may indicate that your computer is malware infected: 

• Slow Computer: If your computer has been infected by a malware, it may slow down the speed of the system, internet and programs. However, make sure you rule out other potential causes of a slow computer, such as resource-heavy applications, fragmented system, lack of hard disk space or RAM etc. 
• Unwanted Pop-Ups: Unexpected pop-up advertizements that appear on your computer system are one of the most annoying signs of a malware infection. In some cases, these pop-ups may appear even if you are not connected to the internet. When the user clicks on a pop-up, it may redirect him to a fake website or download more malware on the system. Make sure you do not click on any of these ads or answer any survey questions. 
• Unexpected System Crashes: A malware infected computer may crash unexpectedly and quite frequently as well as switch to the BSOD (blue screen of death). However, the problem may also appear due to a technical problem in the computer, such as the lack of latest drivers or incompatible programs running on the system. If this is not the case, you should immediately scan your computer to identify any malicious program or file. 
• Random Network Activity: Another sign of a malware infection is the constant blinking of the router, indicating a high level of network activity even when you are not running a heavy program or uploading/downloading any files. It may be possible that your system has been hacked and controlled by a remote administrator.
• Lack Of Storage Space: Several types of malware are designed to manipulate files on the infected computer and fill up the space available on the hard drive. If any of your files stored in your computer system have been deleted, modified or you find any unknown programs that you didn’t install, it indicates a malware infection. 
• Disabled Security Software: In order to avoid detection, many malware programs disable the security software installed on your computer. Hence, your computer does not have the necessary tools to identify and eliminate the malware. In some cases, you may also receive security warnings or threat alerts from antivirus programs that you never installed on the system. 

We, at Centex Technologies, provide internet security solutions in Dallas, TX. For more information, you can call at (972) 375 – 9654.

The internet opens up a world of opportunities for the children to learn new things. It provides them access to a broad spectrum of information on diverse topics, a chance to interact with people from all across the world and a medium to express their opinions. At the same time, internet also poses many security risks for the children, making them an easy target for the cyber criminals and hackers.

Here are some internet safety tips to help children make the most out of the virtual space:

Use Internet Together

Browsing websites together with your kids will make them familiar with the security measures that they need to follow. Teach them about hackers, malicious software and common online threats, such as malware, spyware, identity theft etc. This will help you develop a comfort level with your children and make it easier for them to open up about their online experiences, either positive or negative.

Have Access To Your Child’s Computer

Make sure you have complete access to your child’s computer. Keep a check on what types of websites have been accessed and what files or programs are downloaded. If possible, monitor the IM applications, chat rooms and the email received by the child. You can also set parental controls to block inappropriate websites and limit the amount of time your kids can use the internet.

Encourage Your Child Not To Disclose Personal Information Online

Children must be encouraged not to share their personal information, including home address, school name, contact number, passwords etc., with anyone over the internet. Stop them from posting photos or videos online without your approval. Tell them the importance of signing out of all their online accounts each them they access them, particularly on public computers. Make them aware about creating strong and complex passwords as well as keeping them strictly confidential.

Keep Your Computer System Protected

Keep your computer’s operating system and web browser updated to protect against any hacking attacks. Download and frequently update anti-virus software, spam-blocker, firewall etc. to detect any malicious program or file. Also, make sure that they do not open or download attachments in emails from unknown sources. Software should also be downloaded from credible sources and updated from time to time.

For more tips on increasing online security for your kids, feel free to contact Centex Technologies at (972) 375 – 9654.

Phishing is one of the most prevalent forms of cybercrimes targeted at stealing personal information and financial data. It involves tricking the users into opening spam URLs or entering sensitive details in malicious websites that have been disguised as legitimate ones. Such attacks are usually launched through pop-ups and false emails.

Here’s how one can protect against phishing attacks:

• Be wary of emails: Make sure you do not respond to emails that ask for your bank account details, credit card number or other financial information. Legitimate organizations do not request such information through emails. Phishing emails aren’t usually addressed directly to the recipient and create a sense of urgency in order to elicit quick response.
• Never click on links embedded in emails: Hyperlinks or URLs attached in the emails may be spoofed to direct you to a malicious website. Hence, you should never click on links, open attachments or download files that you receive from an unknown sender. Instead, type in the URL directly into your web browser to ensure that the website you are visiting is authentic.
• Be cautious of pop-ups: When browsing a website, be careful if you see too many unrequired pop-ups. You should not click on the pop-up or copy any link to your browser’s address bar. Also, do not enter any personal details as credible organizations do not ask to submit such information in pop-up screens.
• Confirm security of the website: Before entering your personal or financial details, conduct a complete security check to protect yourself from phishing attacks. The website URL should start with “https://” instead of “http://” and there should be a padlock icon in the address bar. This signifies that the website uses encryption to ensure privacy of your confidential data.
• Enhance the security of your computer: Keep your computer protected with the most up-to-date firewall, spam filters, anti-virus and anti-spyware software. You should also update your operating system and web browser regularly. Make sure all the software on your computer is downloaded and installed from credible sources.
• Check bank details regularly: Keep a check on all your online transactions, bank accounts and credit card statements to identify if any unauthorized transactions have been made. If there are any irregularities, you should immediately report it your bank or credit card provider.

For more tips to prevent phishing attacks, feel free to contact Centex Technologies at (972) 375 – 9654.

Malware, or malicious software, is a broad term used to describe a set of programs intended to carry out unauthorized activities. When a malware is injected into a computer system, it can affect its functioning, steal important files, dodge access controls and track the user’s online activity. In order to prevent these malicious programs from infecting your system, it is important to understand the different types of malware found online. Some of these have been discussed below:

Virus

A computer virus mainly infects a computer system through a malicious code embedded in a software or program. It can be used to steal information, damage hard disk, relay spam email and advertizements, create botnets etc. When a user launches the infected program, the virus can spread on to other computers through email attachments, IMs, shared network, removable storage devices etc.

Trojan

A Trojan typically comes disguised as useful software in order to convince the user to download and install it. Once executed, it can give remote access of your computer system to the hacker. The program is designed to take complete control of the victim’s system with the purpose of causing damage or pilfering confidential information. A Trojan allows the hacker to delete or modify files, steal financial information, install more malware etc.

Spyware

This type of malware works by anonymously tracking a user’s online activity and transmitting it to a cybercriminal. Stealing financial information, such as bank account numbers, online banking and credit card details, is the main target of most spyware. It can also slow down the infected computer, particularly when there is more than one program running.

Rootkit

A rootkit is designed to function remotely so as to avoid being detected by the users or anti-virus software. Once installed on a computer system, a rootkit can steal or gain access to your information, execute program files, modify security software, install another malware and alter system configurations. It can even block installation of anti-virus software or lock the system to prevent detection.

Worms

Computer worms may spread in a disguised form by exploiting security vulnerabilities in the operating system. They can create a backdoor in your computer which allows a hacker to access the system remotely, making it vulnerable to a Denial-of-service (DoS) attack. Unlike viruses, worms can self-replicate, without the need of a host and can send out its copies to several other systems, by infiltrating contacts in your email or phone book.

It is important that you follow the requisite security measures to avoid malware attacks and protect your identity online.

The healthcare industry has undergone a massive transformation in the past few years. With most of the services and information available online, it has become a lot easier for the hackers to infiltrate as well as exploit highly sensitive data for malicious purposes. Therefore, it is extremely essential for the healthcare facilities to implement comprehensive security practices to avoid putting sensitive medical and personal information at risk.

Given below are some useful cyber security tips for the healthcare industry:

• Implement Basic Security Tools: At the minimum, hospitals and clinics should follow the basic cyber security practices. These include regularly updating firewalls and malware definitions as well as installing intrusion prevention systems. Virtual private networks should also be protected for a secure transmission of data over the hospital’s network. It will also ensure that only the authenticated users are able to access the network.
• Stay Updated: As the hacking attacks have become more sophisticated, it is important to keep your system updated to prevent against any security flaws. Frequently check for updates for your operating system and firmware and download them from credible sources. Also change your router’s default configuration and password to block and unwanted traffic on your hospital’s internal network.
• Strengthen Authentication Measures: Whether a patient or administrative staff logs in to the network, make sure their identity is properly verified before allowing access. Use multi-factor authentication so that the user has to provide the password along with an additional security element, such as a one-time password, to log in to the system.
• Limit Access: Make sure you limit network access by restricting users from downloading unwanted software or applications on their computer systems. When using Wi-Fi routers, all the data sent or received should be properly encrypted. Physical access to computers should also be restricted by restraining administrator privileges. Systems containing the important information should be stored in locked rooms where only a few employees can enter. Educate employees about their responsibility towards safeguarding the organization’s information.
• Change Passwords Regularly: Passwords for all the networked computers and online resources accessed for official purposes should be changed frequently. It is particularly important when an important employee leaves the job. It may be possible that he might access your old accounts and manipulate data.

We, at Centex Technologies, provide complete cyber security solutions for businesses across Dallas, TX. For more information, you can call us at (972) 375 – 9654.

Cross-site scripting or XSS is a common security exploit that allows hackers to run a malicious client side script in trusted and credible websites. When a user visits the infected website, it will automatically execute the malicious script code which can allow access to cookies, session tokens, steal accounts, spread web worms, initiate phishing attacks, or even remotely control the browser.

Types Of Cross-Site Scripting Attacks

• Stored XSS: Also known as persistent XSS or HTML injection attack, this is probably the most damaging type of XSS. It involves an attacker injecting a malicious script that is permanently stored on the target server in the form of a blog, forum post, in a comment field etc. When a user navigates to the affected web page, he inadvertently runs the script as a part of the web page.
• Reflected XSS: In a reflected XSS attack, the injected script is sent back to the web server in the form of a search result or error message. Also known as non-persistent XSS, a reflected attack is distributed to victim through an e-mail message, social networks or some other website containing a malformed URL. When the user performs the desired action, i.e. clicks on the link, submits a form or simply browse the spam URL, the code gets redirected to the vulnerable website. As the script comes from a credible server, the browser executes the code. 
• DOM Based XSS: This attack involves exploiting vulnerabilities within a web page’s code. It is carried out through an inappropriate handling of the HTML data of a web page through its associated DOM (Document Object Model). The most commonly manipulated DOM objects in an XSS attack include document.referrer, document.url and location.hash elements.

Tips To Prevent Against Cross-Site Scripting

• Disable JavaScript when not required
• Do not trust links in emails, message boards or other websites. They may contain malicious codes and redirect you to a spam website.
• Manually type the URL in the browser while visiting security sensitive web pages.
• Websites that require entering important personal or business information should not be accessed through a third party portal.

Cross-site scripting poses an immense threat to the online security and privacy of millions of users. Therefore, it is important for the developers to follow the recommended security practices to eliminate an attacker’s ability to infect the website with a malicious code.

Hacking has always been a matter of concern for the internet users. Cybercriminals are constantly trying to breach confidential data, passwords and other information.  Considering the prevalence of security attacks, it is not irrational to assume that almost 9 out of 10 people will be a victim of identity theft once in their lifetime. If you are a business owner, you might want to make sure that all the information related to your employees and clients is totally secure.

Here are some of the cyber security tips to safeguard your information:

• Create Strong Passwords: Most of the hacking attacks are carried out with stolen passwords. Thus, it is important to create a password that consists of uppercase, lowercase letters, numbers as well as special characters. Passwords with a combination of all these elements are usually hard to crack. You should also change your passwords at frequent intervals.
• Avoid Using Personal Information In Passwords: Although passwords containing personal information like name and date of birth are easy to remember, it makes them much easier to hack. This information is widely available on Google and social media platforms that can be easily found by the hackers. 
• Turn Off GPS And Wi-Fi Services: Keep your smartphones and laptops secure by turning off Bluetooth, Wi-Fi and GPS when you do not need them. This way, no one will be able to detect your location.
• Delete Unused Apps: If you have a lot of apps on your smartphones/ tabs that you do not use often, make sure you delete them. You must also replace the apps that require access to most of your personal details such as contacts, SMS logs, emails, location etc.
• Keep Your Browser Clean: Prevent yourself from getting spied by frequently clearing browser history, cache, cookies and saved passwords. It saves your personal information from being insecure on your computer, laptop or smartphone.
• Turn Off Geotagging: Some social networking websites display your location along with your photos or posts. You must turn off geotagging to avoid giving out information about the place from where you have taken the pictures. 
• Shop Only With Credible Websites: If you are shopping online, make sure the website belongs to a reliable company. All your transactions should be protected by an ‘HTTPS’ browser session. This will make sure that your name, address, passwords, credit card details are going over the internet in an encrypted form. 

For more tips on safeguarding your information and other cyber security issues, contact Centex Technologies at (972) 375 – 9654.