Cybersecurity for Home & Family
Aaron Brown
Why target my family?
2
Why?
• Financial information.
• PII (Personally Identifiable
Information): SSN, DOB, address,
Driver Lic. #.
• Coercing payment.
• Processing or network resource.
• Target family, friends, co-workers.
3
How do I get infected?
4
Basic Phishing
5
6
Spear Phishing
Browsing questionable sites
7
Website “Drive By”
www.msnbc.com
www.badsite.com
8
Password Re-Use
9
How to protect yourself
10
Myth
11
Myth
12
Behavior
Patch
Passwords
Backups
Antivirus
Truth
13
Antivirus
Only one layer of your security.
14
Patch
15
Passwords
Passphrases.
First letter of each word in your favorite movie quote.
WgpcgrSpiderman2019.
16
Passwords
Online password manager.
17
Passwords
Key Features
Online (access from anywhere)
Autofill passwords in browser
Trusted contact for emergencies
2 Factor Auth (various)
18
Online password manager.
Passwords
Offline password manager.
19
Passwords
Offline password manager.
Key Features
Offline (local access only)
Copy/Paste method
2 Factor Auth (various)
20
Two Factor Authentication
All major web-based email
Apple
Outlook.com
LastPass
Paypal
Steam
Evernote
Dropbox
Wordpress
Amazon Web Services
https://twofactorauth.org/
21
Two Factor Authentication
https://www.google.com/landing/2step/
https://www.yubico.com/Google Authenticator
22
Behavior
23
Behavior
24
Backups
Microsoft “Backup and Restore”.
https://support.Microsoft.com/en-us/help/17127/windows-
back-up-restore
Apple Time Machine.
https://support.apple.com/en-us/HT201250
Amanda Network Backup.
http://www.Amanda.org
Bacula.
http://blog.bacula.org/
25
Smartphones
Pin / Password.
Auto-Lock timer.
SIM card lock.
Remote location / wiping.
Minimize applications.
Install apps only from the
App Store / Google Play.
Be careful of what WiFi you
connect to.
Antivirus.
26
Have I been compromised?
27
Am I ‘Pwned’?
It’s difficult to tell but…
Sluggish.
Web browser goes to unintended sites.
Web browser doesn’t let you go to cyber security sites.
New applications or extensions installed (likely a PUP).
Antivirus won’t open or doesn’t appear normal.
Check your online accounts.
https://haveibeenpwned.com/
28
You’ve been hacked
29
What now?
What do you do?
Unplug your network cable / Disable WiFi.
Run multiple antivirus programs.
Watch out for “auto-protect”.
Pull the hard drive and plug it into a second PC.
Restore from backup.
Wipe it and install from original media.
Change OS and recently used online passwords.
Monitor financial accounts.
“I say we take off and nuke the entire site from orbit. It's the only
way to be sure.” -Ripley
30