How To Write Un-hackable Passwords:
Before we begin, why should learning how to write strong passwords be of much more importance to you? Believe it or not, it is a statistical fact that more people are hacked as a result of weak passwords than any other single factor. This is also why encryption – aka passwords – should be much more important to you. With that said, learning how to read, write and remember strong passwords is not nearly as hard or complicated as people might think, in fact it is rather easy once you understand the core concepts.
Lesson 1 – Password Length:
To unlock someone’s password, “law enforcement authorities” and/or “hackers” will either run something known as a “Brute Force Attack” or “Dictionary Attack” against it, in an attempt to break or de-crypt the numbers, letters and symbols contained within the password itself. One by one over time, these software programs will slowly decrypt the password, just like cracking the numbers to open a vault or safe.
Quite simply, the more complicated/randomized the sequence of numbers, letters and symbols in your password are, and the longer the password is, the longer it takes hackers to break. Moreover, each letter, number or symbol you add on to the end of your password literally makes it exponentially harder for even the most sophisticated programs to crack. For example, here are estimates from the FBI regarding how long it takes them to crack lengthier encrypted passwords.
- seven-digit passcodes will take up to 9.2 days, and on average 4.6 days, to crack
- eight-digit passcodes will take up to three months, and on average 46 days, to crack
- nine-digit passcodes will take up to 2.5 years, and on average 1.2 years, to crack
- 10-digit passcodes will take up to 25 years, and on average 12.6 years, to crack
- 11-digit passcodes will take up to 253 years, and on average 127 years, to crack
- 12-digit passcodes will take up to 2,536 years, and on average 1,268 years, to crack
- 13-digit passcodes will take up to 25,367 years, and on average 12,683 years, to crack
Lesson 2: LEET or “1337” Language:
L33t Language is a way of replacing letters with numbers and symbols in everyday sentences and it is perhaps the most basic form of encoding used to encrypt messages. To understand how it works, here are some quick examples:
Normal Statement: BankruptMedi4 or TheDailyProletariat or Elitepassword or Activism
L33t Version: 84nkru97M3di4 or 7h3D@i1y9r0L37@Ri@7 or 31it3p4$$w0rd or 4ctivi$m
It doesn’t necessarily have to be that complicated and you don’t necessarily have to replace as many letters with numbers and symbols, those are just examples of how it works. You can run a dictionary attack at “84nkru97M3di4” or “7h3D@i1y9r0L37@Ri@7” all day long, go ahead – have fun. To make the password even stronger mix in capitalized and un-capitalized letters throughout.
I think I have explained the concept easily enough? To make an un-hackable password simply take a name, phrase, short sentence – et cetera – that is personable to you and convert it into l33t language, then use that as your new password. Not only will it be impossible to break, but it should be fairly easy for you to remember. And as always, use two-factor-authentication whenever possible.
Lesson 3: Two-Factor Authentication
I’ve always understood that 2-Factor Authentication (2FA) is a concept lost on most “normal people” in society right now, but a new statistic really puts it all into perspective. This would be the news that, according to Google’s own statistics, less than 10% of all Gmail or Google business owners currently have enabled 2-Factor Authentication for their online accounts. Considering that Google is estimated to host well over 2 billion accounts globally, this means that there are over 2 billion insecure accounts floating around the internet right now – and that’s just from Google alone!
This is not to mention the fact that there are literally billions of email addresses, along with their passwords, currently available on the Deep Web and DarkNet for search. For example, there are single websites around the internet that are currently selling the log in credentials of 1.4 billion people and if anyone of those people simply just enable 2-factor authentication for their accounts, all the information stored on those would become utterly useless.
Responding to the news last week Grzegorz Milka, a Google software engineer, said that the company’s latest statistics “demonstrates the lack of awareness of cyber threats and the way to mitigate them.” Adding that he believes more people don’t or haven’t “configured 2-Factor Authentication for their accounts” because “many users believe 2FA can make their experience worse,” or at least more of a hassle. To do everything they could to mitigate the problem from their end, Google also took the occasion/platform to release a 2-Factor Authentication tutorial of their own, imploring Google users to immediately begin securing their accounts in this way.
Google 2FA Tutorial: https://myaccount.google.com/signinoptions/two-step-verification/enroll-welcome
As for what 2-Factor Authentication is, does or means, it’s not nearly as complex or complicated as people think. In fact, it only adds about 10 seconds to the amount of time it already takes you to log into your accounts anyways. Essentially, as soon as you type in your password and press enter you will receive a text message on your phone, which will have a short code for you to type in. Without that secondary code no one is allowed to login, even you. That’s it – literally. That’s the amount of “hassle” it will take you to begin practicing strong cyber security in the future. Again, despite the simplicity of it all, less than ten percent of people in society have taken this step.
2-Factor Authentication should be available for nearly every App or account you own, and you can find/enable it by searching for it in your account(s) settings. As I also once explained in a different article on this subject earlier last year, even if someone already knows your password, “close to 100% of hackers will be prevented from successfully hacking into your social media accounts if you simply enable 2-Factor Authentication” for them – and I still believe this holds true today.
As I was in the process of writing this article I got a text message informing me of new log in codes to verify, because someone had somehow managed to brute-force their way past my password – which no one has ever been able to do before. Put another way, my site was literally saved from being hacked/hijacked by malicious cyber actors, all because I once enabled 2-factor authentication on my account(s) months ago. To put the importance of 2-Factor Authentication into focus, I’ve invested thousands upon thousands of hours of my personal time into this website, and it took me less than one minute to turn on and verify 2-Factor Authentication for it – certainly worth the time/effort!
Better Email Security Practices
Before we begin, you can have the most advanced cyber security practices and anti-virus in place but if you do not have a strong enough password to secure your devices or online accounts, all your security measures might as well be useless. As I have already stated, more people are hacked as a result of weak passwords than any other factor. With that out of the way, the 2nd most common way to hack someone is through their email – just ask Hillary Clinton, John Podesta, John Brennan and the DNC about that. This is also why learning how to practice better email security habits should be a priority for you.
Email Security Strategies:
While browsing through your email account(s), never open a single email or click on any link(s) from a sender you do not know personally. It might seem harmless, but the simple act of curiously opening an email or clicking on a link within an email can open Malware or register and transmit the IP Address of the device you are using to the sender of that email or link.
When a hacker sends compromising emails or links to your personal inbox it is a technique known as “Phishing,” and it is perhaps the most common form of cyber-attack you will ever encounter. I am willing to bet that everyone whom has ever owned an email account has seen a phishing scheme at one point or another in their lifetime, whether they were even aware of it or not. This is also why it is important to not just leave your email out in the open for all the world to see, or blindly pass it around to so many pages across the internet – especially if you have something to lose.
Believe it or not, there are even free and public services that allow any person to secretly attach a program to any given link or email they send, which automatically transmits data such as your IP Address as soon as you open it. This type of program also reveals things like the time of day you clicked the link and how long you kept the window open. This is also what is referred to as a “trap-link.” The most common of which comes in the form of an “IP-logger,” which automatically registers the data of any device that clicks on it. While this might sound extremely complicated or foreign to you, again, regardless of the legality of it all, there are actually multiple free services, platforms and tools available on the internet for people to do just this.
Needless to say, always use caution and judgement when clicking on any links in your inbox, online chat, message or social media network alike – especially from people/sources/senders you do not know or have never done business with directly.
A good practice is to also use separate accounts for different purposes. For example, use a separate email account for your online banking and/or business than you would use for family, friends, or subscribing to magazines. This ensures that if one account is ever breached or compromised, not every aspect of your life gets compromised along with it. Additionally, use separate passwords for separate accounts and always reserve your strongest passwords for your most important accounts. You should also utilize two-factor authentication whenever and wherever possible.
Encrypted Email Service Providers & Why You Should Consider Making The Switch
This past February a US judge ordered Google, an American based tech company, to honor the search warrants of American law enforcement agencies requiring the company to hand over any/all data, emails and the like which the company stores on servers located overseas. The ruling came in direct contradiction to a previous ruling from a Federal Appeals Court in August of 2016, which upheld a US Circuit court ruling from July 2016, prohibiting the US Government from seizing data stored on servers located outside of US borders.
The principle behind this case is very simple to understand, does the United States Government have the right to demand foreign businesses located outside of the United States hand over their records to the United States Government if that company happens to do business with a US citizen? In other words, are foreign nations forced to abide by US law and comply with all US based legal requests? Well, according to the most recent ruling, as of February 2017, at least as far as US courts are concerned, the answer is “yes.”
What Other “Authority” Does The US Government Have?
Let’s use the world’s most popular email service provider as a quick example – Gmail. Quite literally, everything you do on your Gmail account is accessible by Google at any given moment in time. After-all, you are using their service. If the US Government ever wants to see your account or any of the information on it, then all they have to do is pull up the file of a generic document, insert your name on top of it, print it out and just like that they magically have a “subpoena” to obtain all of your information from Google.
Despite how simple of a process this is, it is all groundbreaking stuff too. Believe it or not, it was not until May 2016 that the US government even needed to get a warrant or legal document of any kind to search through all of your personal emails. Don’t believe me?
Read More – Email Privacy Act of 2016: https://www.congress.gov/bill/114th-congress/house-bill/699
For you international folk out there, the news isn’t much better. You see, the US Government has its own private court known as a FISC court which, historically speaking, blindly grants “99.96%” of all warrant request brought in front of it – but who’s counting, right?
Read More – What Is A FISC and What Does It Do?: https://bankruptmedia.com/2017/03/29/what-exactly-is-a-fisa-court-and-what-does-it-do/
With that out of the way, all of the information above only goes to show how easy it is for the US Governments to go about obtaining all your data “legally.” But as I think we are all aware by now, agencies like the NSA or CIA do not necessarily care about US law and have the very real authority to act outside of it – #PatriotAct. To be fair, this does not necessarily mean that someone working for the US Government is literally watching/reading every single email you write every minute of the day, but they theoretically could be if/whenever they wanted to.
To that very point, early in 2016 Google came out with a press release addressing how “state-sponsored hackers” had breached over 1 million Gmail accounts over the course of that year. This was also not an isolated incident and it’s not just Google which has been targeted by these types of breaches. Literally hundreds of millions of Yahoo and Hotmail accounts have also been exposed over the years.
Read More – 3 Billion Yahoo User Accounts Hacked, Including 500 Million Email Addresses: http://money.cnn.com/2017/10/03/technology/business/yahoo-breach-3-billion-accounts/index.html
So far I have only addressed how easy it is for the US Government and/or law enforcement agencies to access all of your personal accounts/information, this does not even account for all of the non-Government organizations or hackers out there or oppressive regimes located in countries all over the world. In fact, I am willing to bet that at least 95% of all hackers worldwide are non-Government affiliated. Moreover, Hillary Clinton, the DNC, CIA, John Brennan and John Podesta should all serve as evidence for just how easy it can be for hackers to compromise anyone’s email account if they really want to – even some of the most powerful people in society.
Quite frankly, there is a reason why politicians and members of the Armed Forces are told never to use their own personal or private email accounts, because none of these services are properly protected or encrypted! While members of the Government and Armed Forces use their own private versions of encrypted email services which are NOT open or available to the public sector, thankfully, there are a number of free and paid email encryption services out there open to the general public.
Mailfence is a relatively new or unknown company globally, but I have recently put their services at the top of the list of encrypted email service providers. Mailfence operates their servers out of Belgium, a country internationally renown for having some of the strongest and most resolute privacy laws in the world. Unlike the United States, every surveillance request or request for information inside Belgium, including on Mailfence’s servers, must be legally brought in front of a Belgium judge and proven in court as legitimate. In this way Belgium protects user data and business confidentiality in a way that no other country in the world does.
Sign Up/Create an Account Here: https://mailfence.com
This email service provider offers free end to end encryption and hosts its servers in Switzerland, outside of US jurisdiction – theoretically. When signing up, at no point in time are you asked for any personal information and you do not need to attach any other emails account or phone numbers in order to register. This service also utilizes 2-factor authentication to log in, preventing hacking attempts. ProtonMail has also partnered with humanitarian organizations around the world, such as Amnesty International, in order to help fight back against Government surveillance and cyber censorship in developing countries around the world.
On a lighter note, if you are a fan of the Television drama “Mr. Robot” this is Elliot’s email provider of choice on the show.
Sign Up/Create an Account Here: https://protonmail.com/
This is another free encrypted email service that has become quite popular in recent times. In fact, earlier in 2016 Tutanota officially surpassed 1 million accounts – becoming the world’s largest encrypted email service provider. In 2017, Tutanota then went on to surpass 2 million accounts, furthering the countries rock solid reputation as an industry leader.
What makes Tutanota unique is that the company makes their source code “open source,” meaning that security researches investigate for themselves the level of encryption they are receiving. For all you n00bs out there, making your source code public record and still not having it hacked proves just how good the code really is.
Sign Up/Create an Account Here: https://tutanota.com/
Encrypted chatrooms or encrypted chat Apps like WhatsApp and Telegram are particularly important for human rights defenders and political activists around the world, especially in at risk or oppressive countries. Even if you are living in a country that has banned Tor, VPN’s or Telegram, and you are afraid to use those venues out of fear of persecution, encrypted chatrooms can be simple to use and also 100% legal.
For example, even in countries like Egypt, Iran, Pakistan – et cetera – which have banned encrypted chat Apps like Telegram, services like Chatbox or Slack are still free and legal to own, and can be used to protect private communications all the same. In fact, political activists in Ethiopia and Egypt are known to have used these services to safely coordinate rallies and protests in times of great civil unrest. It’s usually free to sign up for these services and all you need is an email address and login. Then, one enrolled, you can make your chatroom “encrypted” by setting up a custom name for it and requiring password authentication for entry. This assures that only the people you give the information to personally will be able to find, access and/or use. Additionally, once set up, you can even set up individual groups within each chatroom for a duel level of security. This includes setting custom rules for the groups, such as requiring Administrator approval for access. This assures that if anyone is able to brute-force their way into the chatroom itself, there are still protocols in place to protect individual communication with the chatrooms itself.
Securing Social Media Accounts
As always, strong password protection is the number one priority for securing social media accounts.
While using your social media accounts, just as with emails, never open a message from or click on links by users, senders or accounts you do not know personally, were not expecting to hear from or haven’t done business with in the past. Just as I have already with emails, hackers can phish your social media accounts all the same. Moreover, it is actually much easier for a hacker to uncover your “IP Address” through something like Facebook Messenger than it is through email. This can also be done without you clicking on any individual hyperlink. For example, you can find someone’s IP when engaging them on Facebook by using a simple sequence of “cmd commands” – which are freely available on every Windows device. This is also why social media security strategy should be taken very seriously.
Like your mother always told you, never talk to strangers – especially online 😉
You can add an extra layer of security to your accounts by preventing them from being “indexed” by search engines and web crawlers. This can be accomplished by making small changes to your account settings. By default, the largest social media platforms are all designed to connect to search engines like Google, Bing or Yahoo, in order to make social networking more accessible and easier for everyone. However, allowing your account to be indexed means that theoretically anyone in the world could theoretically search for it and find it. If you disable your account from being indexed then the only people who will know how to find or access your account will be the people you give your information to directly.
To do this, go under your account setting, then to Privacy Settings and uncheck the “Public Search Results” box. This will remove your profile’s page from Google, Bing, and Yahoo search returns. This is also a security practice instructed to Federal Employees and members of the US Defense Department.
Building/Selecting Better Web Browsers
As I was going about re-configuring my website and domains earlier this week I noticed something very interesting, while my SSL Certificate was in the process of being authenticated I was able to access my unsecured website on every web browser except for one; Mozilla Firefox – which would not allow me to connect to the web page in order to keep me protected.
Just so you understand what I am talking about here, browsers like Microsoft Edge, Google Chrome and Apple Safari will all freely allow you to access a web page which has the potential to compromise your security – including websites which do not have an authenticated or verified SSL Certificates. This is because these web browsers are configured to be “convenient” and easy to use, security is either nonexistent or an afterthought on these particular browsers. With that said, there are a number of web browsers out there specifically designed around security, which also happen to be equally as easy to use/operate. Here are some of those browsers, along with some other helpful information to help you make more informed security choices online in the future.
Mozilla Firefox is considered by some to be the world’s most secure web browser. I say “some” specifically because many people would argue that Tor is actually the most secure browser out there. However, without Mozilla Firefox the Tor browser wouldn’t even exist. This is because Tor uses the source code of Firefox as the foundation to build their browser. As for why I personally consider Firefox more secure than Tor, this is because the DarkNet is inherently a much more dangerous place than the ClearNet, and you can’t access the DarkNet or Deep Web on Mozilla Firefox alone. Browsing through and interacting with the Deep Web, even while using Tor, naturally puts you and your security at a much higher risk.
What makes Firefox particularly unique is that much like WordPress.com, the browser allows you to install various Add-Ons, extensions or plugins that can help you maximize your security. For the purposes of this article, if you are going to use Mozilla Firefox, I highly recommend that you install NoScript, Ad Blocker Ultimate and Disable WebRTC connections. There are more plugins than I could possibly mention here, those are just some of the most important ones you can install specifically in terms of online security.
WebRTC is a little talked about “glitch” that allows third parties to circumvent your security and compromise your systems, even when you are using a VPN or Proxy service. As of today, Mozilla is the only web platform I am aware of that allows you to disable all WebRTC connections entirely. By comparison, other browsers like Google Chrome literally ban people from disabling WebRTC connections through their browser, as to allow US “authorities” like the NSA and FBI to more easily hack and track users online if need be. However, non-Government hackers exploit WebRTC all the same as Federal hackers, and for all the same reasons.
Download Firefox Here: https://www.mozilla.org/en-US/firefox/download/
I understand that the Tor Browser has gone on to develop a slightly negative reputation in today’s society but, believe it or not, the Tor Project was first developed by and still receives a majority of its funding from the United States Department of Defense. It is important to understand that even though some people use Tor to do some pretty bad or illegal things, just like anything else in life, the browser is only what you make of it.
Tor was not developed for criminals, it was first developed by the US Government in order to keep agents, operatives and members of the Armed Forces safe and secure online. It just so happens that over time the browser and its systems were hijacked by criminals and terrorists alike, whom also need to remain hidden and secure online for many of the same reasons as Government employees.
The Tor browser works by bouncing your internet connection through thousands of individual “proxy servers” around the world on a perpetual randomized time loop. At any given moment in time your internet connection could be bouncing from Thailand to Venezuela to Canada and theoretically anywhere in between, concealing your computers identity and making your internet activity essentially impossible to trace. In addition to redirecting your internet traffic away from the eyes of your Internet Service Provider, it also conceals the IP Address of the computer you are using behind a proxy. This is particularly important/valuable for political activists and human rights defenders living in oppressive countries all around there world, where peoples online activity can get them arrested or killed. Since the browser directs all of you online activity to different countries around the world, this allows activists to remain hidden from their Governments while also granting them access to any sites banned or restricted by their respective Governments.
It is important to note that Tor is perhaps the best web browser at preventing or deflecting an active hacking attempt against your computer. However, I would never use Tor for things like credit card transactions or editing/customizing your personal website. This is because anytime you are using a proxy you are using someone else’s connection. While this may hide your internet activity from 3rd parties, it makes you internet activity available specifically to the owner of whatever proxy server you happen to be using at that time, and not every proxy server exists with honorable intentions – though “most” Tor exit node operators tend to be trusted activists.
Download Tor Here: https://www.torproject.org/download/download-easy.html.en
Opera is a little known web browser that has traditionally had a minuscule following throughout the past. However, in 2016, Opera started to gain a more main stream following, particularly with the cyber security community, after the browser started to become standard with a built in VPN. This means that the Opera browser stands in front of your computers IP Address while you browse the internet and your activity will remain hidden from your Internet Service Provider and/or 3rd parties. While the VPN is far from the strongest of safest on the market, it is still a very unique feature that has helped the browser grow in popularity over the years.
Download Opera Here: http://www.opera.com/
Epic Privacy Browser
One of the newer browsers on the market, Epic is specifically designed around online security. Each time you close the browser all of your cookies and tracking information is automatically deleted, preventing any websites from remembering or recording your previous activity. Similar to Opera, the Epic Privacy Browser also connects your computer through the companies own servers, acting as a proxy service for your device. This prevents any hackers/websites from recording the IP Address of the device you are using to browse the internet. Additionally, much like Mozilla, the browser will not allow you to connect with or access any site that does not have a recognized SSL Certificate.
Download Epic Here: https://www.epicbrowser.com/
Browser History, Cache & Cookie Management
If someone gains access to your computer for malicious reasons one of the first things they are going to want to do is check your browser history to gain access to websites and accounts that you frequent the most. Just think for a moment about all the pages you visit online, that you do not need to log into every time you visit. While this may be convenient for your personal browsing habits, it is also very convenient for hackers.
For this reason, you should always delete your browser history and clear all browser cookies on a fairly regular basis. You would be surprised to know how much information your browser stores/remembers about you, until you delete it all. Please note that some browsers offer to delete cache and cookies through the settings menu and some anti-virus programs also offer to do the same. However, if you cannot find or do not own these programs, one of the best programs to clear history, cookies, cache and everything else is known as CCleaner and it is completely free and open source for anyone to own. The “C” in CCleaner literally stands for “Crap,” because the program deletes all of the useless crap you’re your computer happens to store about you. The program itself is entirely free to own, but it is one of the most effective programs on the market. For example, even multi-billion dollar tech companies are known to use the program on a regular basis.
Download CCleaner here: www.ccleaner.com/download
This next bit is a little more “involved,” but it is pretty straight forward and something that almost no one in society seems to practice for some reason. You might be surprised to know that your internet router is completely unsecured straight from the company/manufacture, and the user name and password needed to physically access the routers settings is usually uniform. For example, here is the username and password for nearly every Comcast issued internet router, one of the US’s largest internet service providers.
User Name: admin
As you can imagine, this is not exactly rocket science for anyone to figure out or crack, so you are going to want to encrypt your individual internet router by setting up your own password for it. You can find your routers unique IP Address by opening cmd and typing in “ipconfig/all” – then looking under “default gateway.” Next you are simply going to want to open your web browser and type in that number/IP Address into the URL and press enter, where you will be prompted to sign into your routers log in page. If you do not already know this information beforehand, you can find your routers default log in credentials by simply entering a Google search for it or calling your internet service provider.
Highlighting just how much of a priority router security should be for you, the fact that your routers login is publicly listed on the internet and the login is the same for every customer should tell you all that you need to know. Moreover, despite what your ISP might ask of you, this is also why you should never use your personal router as a free and public hotspot. For example, if you are using your router as a hot spot and have not changed your default login credentials first, then theoretically any person using that hotspot could access and corrupt your router using the same information I just provided above – it’s literally that easy. This includes gaining access to information like the IP Address of any/all devices which has ever connected to the internet through that router.
With that out of the way, once you have logged in and are messing around with your routers settings, you can do things like set up a new password for it, white-list selected devices allowed to access and strengthen the routers firewall. Another advanced security tip is to disable your router from publicly broadcasting your internet signal. To do this, simply have a look under settings and disable the “SSID broadcast” feature.
To understand why this is important, have you ever clicked on your devices Wi-Fi button to see all of the available networks in range around you – particularly in a large urban area? Unless you live way out in the country, in addition to your own, I ‘m sure you are used to seeing all of your neighbors wi-fi connections. Disabling the SSID broadcast feature on your router will prevent your network from being picked up by everyone else in your neighborhood, keeping your connection hidden, secret and more secure. After-all, if no one knows your network connection is out there then no one is going to be looking to mess around with or exploit it.
Now that you know all of this information, you might also want to start warning all of your neighbors/friends now too 😉
Practicing Better Cyber Security While Traveling
Make no mistake, if you do not utilize a VPN when using public internet or a foreign Wi-Fi connection, while you might not be hacked every time, you are certainly rolling the dice with your personal security. This is because once you are on a shared network your computer becomes visible to anyone else using that network. Shared network connections also make it exponentially easier for hackers to find, hack and even remotely access any devices shared by that network. The more open the network, the more people that use it and the more public the place, the greater your risks are.
Regardless if you are using your own internet connection or you’re in a foreign country, a good anti-virus software and strong firewall rules should detect and/or block any file changes to your systems, preventing an attack from infecting and spreading on your device. Therefore, purchasing good anti-virus software is the simplest thing you can do to protect your computer, especially when traveling abroad or foreign/un-trusted connections. A good anti-virus should only cost you around $40 a year, well worth the price for the protection it provides. As for your computer’s firewalls, you can freely adjust these settings by simply typing “firewall” into your computers search menu – more on that later on.
It is important to note that an anti-virus program will only prevent an attack from spreading on your device. When it comes to preventing an attack from finding your device in the first place, this is where a “Virtual Private Network,” commonly referred to as a “VPN,” comes into play. For those of you whom might be unfamiliar, VPN’s work by redirecting all of your “internet traffic” through a “proxy server” – allowing you to access the internet from an end-point you desire/trust.
While this might sound like incredibly complicated “computer lingo,” it is actually quite simple to understand. Say you make your home in New Hampshire, but you are traveling to Egypt. A VPN will allow you to connect to the internet in Egypt, then use that connection to find and connect to your home’s Wi-Fi router – transferring everything you do online through it, rather than through some random router in the middle of Egypt. Once connected, the location of your computers “IP Address” and your internet activity will remain hidden/encrypted behind your home router; aka your VPN.
To put it another way, even when you use a Wi-Fi connection in Egypt, or anywhere else in the world for that matter, your computer will only be physically accessing “the Internet” from New Hampshire. So, even when you are using the internet on the ground in Egypt, it will be as if you were on your computer back at home – because you will literally be using the same network connection in either instance.
There are two different ways you can go about setting up a safe and secure VPN or Proxy Server for your computer. The first will cost you money, but is far simpler. The second is completely free, but it is rather “involved” and you will have to put in a lot of time and effort to do the research for yourself.
Before I go any further, I could not advise strongly enough against free VPN services; you should NEVER install a free VPN program or App on your devices. With that said, there are a number of established and trusted VPN Service Providers out there. A good service will cost you anywhere from $40 – $120 a year to use and a simple Google search return will direct you to some of the industry’s biggest names. While researching paid VPN providers, you should always look for companies that either do not record or regularly delete user logs. Country of origin is another critical factor when selecting a service. VPN service providers operating out of countries like the United States, Russia, Egypt – et cetera – are not to be trusted because the laws in these countries allow for their governments to compromise VPN servers fairly easily. On the other hand, VPN’s operating out of countries like Switzerland and Belgium tend to be trusted because laws in these European countries protect customer privacy and business confidentiality, and require their Governments to go in front of courts and present valid legal arguments for companies to hand over their data – if any such data is ever recorder or logged in the first place.
The second option, learning how to build and install a VPN on your own device, gets a bit “technical” at times, but setting up your own VPN connection does make your computer far more secure than any service you could possibly purchase – no exaggeration. For the purposes of this article I will not explain how to install a VPN or use your home’s Wi-Fi router as a proxy server, instead I would direct you to YouTube or Google, where you can find a number of good tutorials on these subjects.
Getting ‘Into The Weeds’ A Bit Now…
The existence and use of VPN’s has become somewhat controversial over recent years. For example, countries like the United Arab Emirates, China and Russia have made VPN ownership illegal. Other countries including Saudi Arabia and the United States have even made VPN ownership alone grounds for criminal investigation in certain cases. Meaning that you wont necessarily be arrested just for buying or using a VPN service, but you may be investigated over what you were using it for. Once again, the old “Federal Saying” on these matters hold true – “if you have nothing to hide, then you have nothing to fear.”
However, there is a simple way to avoid all of this. Learning how to build you own VPN connection is 100% legal and considering that you would be doing everything for yourself, on a computer and router you already own, no one would ever know or need to know that you are using a VPN in the first place.
There is also a slight difference in the fact that purchasing a VPN will hide all of your internet activity from your internet service provider, whereas if you create your own VPN connection and use your home router all of your online activity remains visible. The only drawback to creating your own connection is that your personal IP Address will remain visible and out in front of all your network activity, whereas a purchased VPN will use the companies private servers, thus concealing your IP Address behind theirs – acting as an extra layer of security.
With that said, earlier I stated that building your own VPN is far more secure than anything you can purchase. This is because a VPN you build will simultaneously protect all of the files on your computer, something a purchased one does not. A purchased VPN will only conceal the location of your computer, it literally does nothing to prevent, stop or fix a cyber-attack against it.
It is also important to understand that VPN’s are not just for computers; they are available on all devices – even phones. Put another way, VPN’s are available on any device you can use to access the internet.
The following information will help you both secure your computer straight from the start menu and help you restore you computer back to safety if it is ever compromised.
First, you should make sure that your firewall is turned on. Even if you know nothing at all about computers or security, turning on your firewall literally takes no skill, it is already pre-configured by your computer manufacturer and you just have to make sure that it is turned on. If you really want to take the time, I recommend going through your firewall’s settings, checking the rules and entering the terms onto a Google search just so you can learn yourself something new about them.
Second, if you haven’t done so already, you should encrypt your computer. If for some reason you are still unaware, “encryption” is just a fancy word for creating password entry. If you ever leave your computer unattended in a public setting or live in a house with multiple people, you should always makes sure that no one can use your computer without authorization. Meaning that when your computer starts, before anyone can physically access anything or do anything on it, they have to enter the correct password first. Setting this up is incredibly easy and you can edit or select this option straight from the settings on your computers start menu.
The next option is extremely critical, but is something which is often overlooked. You are going to want to make sure to disable remote access to your computer. Believe it or not, anyone whom knows anything about hacking can physically access/use your device through something as simple as Windows cmd if they share the same internet connection or know your IP Address. If you do not disable remote access to your computer you are essentially leaving the door wide open for anyone to walk through or exploit.
Lastly, if at any point in time you believe that you have downloaded any virus, Malware or Spyware, you can simply go to your computers start menu and search for “system restore.” All you have to do is find a date before you believe you contracted the virus, select it and restore you computers settings/files back to that date. This will restore your computers systems as it existed on that date. However, just note that while you will be losing the virus from your computer, you will also be losing all of the files, documents, pictures or anything else you have created or saved since that date. While it does not work every time or with some of its stronger versions, this should literally be your first move if you ever contract ransomware.
External Hard Drive
This next bit is something that I almost never see included in other online security tutorials, which is why I am including it here today. If you want a fool proof way to secure, protect and back up all of your most important files, you should invest in what is known as an external hard drive. You can buy a USB external hard drive in any major box store for anywhere from $75 – $200 and it fully ensures that if your computer ever gets compromised, all of your files and data is backed up.
External hard drives are extremely important if you wind up getting a serious computer virus, such as ransomware. An external hard drive will allow you to completely wipe your computers data, clear the virus off your systems and then re-load your files right back onto your computer as if nothing ever happened. Considering that most ransomware will charge your thousands of dollars to un-encrypt your data, an external hard drive back up is literally a $100 fix to a $1,000 problem. Always remember, backup, backup, backup your data – buy a USB!
Moreover, if you live in an at risk country and are ever worried about someone gaining remote access to or searching your computer, you can keep programs like Tor or TAILS on your external hard drive for safekeeping. If necessary, a USB is also much easier to hide or destroy if it ever comes to that point. You can also set up separate encryption for your USB, making it impossible to search without authentication.
How to Encrypt Your USB: https://www.online-tech-tips.com/computer-tips/encrypt-usb-flash-drive/
Contrary to popular belief, even if you are using a “Windows Computer,” you do not actually have to run Windows as your primary operating system. While learning how to use and install Linux is not necessary and often times a useless nerd skill, there is no debating that Linux systems are far more secure than Windows or Apple will ever be. Therefore, if you are truly interested in learning a new skill or improving your cyber security practices, then learning Linux systems should be at the top of your priority list.
I am not going to teach you how to do this in this article or any other for that matter, that is what they make Google and YouTube for. Instead, I will just tell you what the world’s most secure operating system is; TAILS.
Why Windows Is More Secure Than Linux: http://www.pcworld.com/article/202452/why_linux_is_more_secure_than_windows.html
Sweet cmd Commands
If your network connection ever starts to become slow or your web pages simply aren’t loading as fast as normal, there is a simple trick that will automatically speed your internet connection back up, without disconnecting you from the internet or requiring your internet router to be reset. The best part is, not only will the following command sequence speed your internet connection back up, but it can also negate DDoS attacks and will kick any 3rd parties, such as hacker, off your computer/connection every time it is used.
Simply go to start menu, open cmd and type in the following sequence exactly as it is written below – don’t actually type “(enter),” that is simply where you press enter before typing the next command:
- title H4x0r (press enter)
- color a (enter)
- echo off (enter)
- cls (enter)
- ipconfig/flushdns (enter)
- ipconfig/release (enter)
- ipconfig/renew (enter)
Please note that only the sequence in bold is necessary, the first part is just for fun 😛
Random Helpful Links
Test Hyperlinkes for Malicious/Hidden Content, Such As IP Loggers, Before You Click Them: http://onlinelinkscan.com/
Test Recent Downloads for Malicious Content/Viruses: https://virscan.org/
Encrypt Your Hard Drive: http://www.pcworld.com/article/153826/data_encryption_tools.html
Encrypt Individual Your Files on Windows, Linux & Mac: http://www.howtogeek.com/195124/how-to-easily-encrypt-files-on-windows-linux-and-mac-os-x/
Enable BIOS Protection: http://www.pcworld.com/article/158292/Enable_BIOS_Passwords_for_Extra_Security.html
pfSense Firewall – The Worlds Most Used/Trusted Open Source Firewall: https://www.pfsense.org/download/
How To Enable Quad9 DNS service from IBM: https://www.quad9.net/
How to Enable Cloudflare’s 184.108.40.206. Privacy Based DNS Service: https://220.127.116.11/