This blog is about IT, ITes services, cyber security, information security, training & awareness of information technology subjects. Always provide best of the market knowledge and content for enhancement of area of IT; digital. Making IT community to perform better and assisting for business enablement. Working along with IT technology we can optimize the services, cloud tech, InfoSec, Virtualization, Networking, applications are root of the IT, ITes industries. I can serve you better.
Thursday, July 16, 2020
Thursday, July 9, 2020
Wifi security for home and office network for information security
We in the world of technology, using internet through Wifi access in personal and public area.
Information security and data privacy is
big concern now for everyone because we do not know how and from where our information
may leak and misuse.
Wi-Fi become essential as all family members are using it
for internet access for multiple reasons
The active device which bridge your access and internet
cable (service provider). The router could be combine equipment with wireless
(Wi-Fi).
Router, plays a role which is managing your internet access
with security and restriction as well. Hence if there is any loophole that may
leak your data and information. Hacker may easily steal data or misuse internet
facility.
3. Placing of router, gateway in house and office
One of the biggest safety point as your router physical
location must be safe and hidden. To avoid any physical damage, hard reset and
tempering of the device, power or its cable etc.
4. Default password change
Next, most of the times it is observed that after initial
installation and configuration people do not change default password which is
very vulnerable and threat for router access by hackers.
5. Default ip-address change
OEM has typical setup and ip address for setup and easy
installation; everyone knows the default ip address because it’s part of admin
guide itself. Therefor default ip address should be changed and
6. Hide
identity of Wifi
SSID (Wi-Fi identify) is
visible name of internet to which you are connecting devices. SSID should be hidden
means it should not be broadcasting. Visible can be attacked and hidden will
not be known. Hidden SSID will make you connect Wi-Fi manually that is one pain
for first time setup, after that your device connection itself from next
connection attempt.
7. Do Not use
common name to get identify- that’s your router
Your device name should be such that it will not reveal your
identity. Like if your name is Mike Goldman so you should not keep Mike or
Goldman in router’s identity.
8. MAC address
filter and restriction
Router allow you to filter MAC address which
restrict other to get into network. It is one of the good practice for network
security and information security.
9. Strong
password
After successful configuration for the first time you should
immediately change password. Keep password strong means at least 8 to 14 length
of complex password.
10. Wifi protocol – WPA
There are three security programs which support by Wi-Fi
routers. They are WPA, WPA2 and WPA3 you can choose one out of these. Higher WPA
program is better.
11. Off device
when not in use
In general observation, people keep their router, Wi-Fi dongle
ON which may attract cyber-attack and attempt for Wi-Fi security break because
of its availability. Its meaning is when
not required or going out you should switch off Wi-Fi devices, except CCTV
cameras.
12. Disable
remote access of router
For remote troubleshooting by default router’s access from
out to inside traffic is allowed through multiple ports which is not safe hence
it must be disabled after success configuration, installation.
13. Firmware
& software update
It is recommended to keep your device upto date like router,
computer, laptop and mobile, these are client device and any vulnerability may
harm the systems.
14 .Keep firewall ON to devices, router
Firewall safety is essential nowadays because it always keep
you protected from external attacks and unwanted harmful internet traffic. Firewall
could be part of anti-virus also.
15 .Client
devices update for patches – security and critical patches
Devices like Computer, Laptop and mobile etc which are
client for Wi-Fi access should be updated regularly and specially all critical
and security patches should be applied.
16. Office
premise protection
If Wifi is controller based, then it must be MAC filtered
and integrated with DHCP for better control. Extra authentication layer like AD
integration, RADIUS server based login will make environment more security and
robust.
Rogue AP should be avoided as that become weak entry points
for data leakage and information theft.
After all these steps and learning about Wi-Fi security parameters you please check and
comment which you already knowing and have implemented.
You'll also like:
Personal Identifiable Information (PII) security
https://www.youtube.com/watch?v=G7epUTLAblk
You input, question and suggestion are welcome.
We learn
together and grow together.
Be Smart, Be Safe
Sunday, July 5, 2020
How to protect your (PII) personal identifiable information?
"We share information everywhere as we want to gather information from everywhere"
Many of us unknowingly share personal identifiable informationalso known as PII to those who are not concern with information
security or there is chance of data leakage or data theft.
Data and personal information is
critical to if break, crack and reset, unlock your secret reveal for banking,
financial and assets. Safeguard your information from hacking, information leakage. PII protection is part of information security.
What are PII, examples:
1. Name, address, SSN, date of birth, phone number, email
id
2. Financial information, location, your parents name
3. Biometric data – fingerprint, retina info
4. Medical, education, employment records
Be careful and conscious while
sharing data to agencies, consider below area where we generally share without
thinking it and we attest also, few examples are.
1. Being candidate for interview – full names with
address
2. In resume or CV also put date of birth as (mm/yyyy)
that is enough – like January 1991.
3. Opening bank account
4. Mall, petrol pump and restaurant visit for better
deal or for some prizes
5. Education class form filling
6. Online information sharing on open forum etc.
7. Sharing information for driving license, passport
number, Aadhar number, PAN number, social security number (SSN)
How to protect PII
Share information in smarter ways
- Always put purpose and recipients name while sharing (like for Citibank, for account opening, after that you only sign on document) – on every single paper.
- Always put expiry date while signing documents – valid upto 05/July/2020
- Keep date and time and purpose inside of document (not outside, at blank space), protect from to be scanned and cropped.
- Cross sign documents so signature prevail on inside area of document.
- Don’t reveal mother’s name into unwanted forms it will help hackers to crack your OTP, banking password reset etc.
- Never disclose or share CVV number for debit and credit cards.
- Limit yourself on social media with PII information.
- Don’t allow your phone to read SMS automatically, malicious apps will read OTP as well.
- Don’t share sensitive information to young children;
they may disclosure it.
Here I suggest that “Not sharing, unfolding is your PII protection; Be Smart, Be Safe.
How to become "Project Manager" | How to "Project Management" | Project Management
How to become "Project Manager" | How to "Project Management" | Project Management https://www.youtube.com/watch?v=ngLlY...
-
"We share information everywhere as we want to gather information from everywhere" Many of us unknowingly share personal ide...
-
Update (May 2020): After more than a year of development, Microsoft has started the official rollout of the Windows 10 May 2020 features up...
-
How to become "Project Manager" | How to "Project Management" | Project Management https://www.youtube.com/watch?v=ngLlY...