skip to content
rss Subscribe print Printer Friendly Share this Page
HomeBlog

November, 2009

Google Gives You Free Airport Wi-Fi for the Holidays

Free Google Airport Wifi

The spirit of giving has hit Google. They are generously providing free Wi-Fi at 47 airports from November 10, 2009 to January 15, 2010. That's great, but there are a few precautions you should take to keep yourself safe.

Google's Free Wi-Fi

Using the free service is simple. You simply select the free Wi-Fi and accept the terms of service and there's no need to give any form of payment. However, Google wants you to catch the giving spirit and give a donation to any of the three non-profit organizations they've partnered with. But, donate once you're using a secure Internet connection at home - not on the Wi-Fi network. In addition to providing free Wi-Fi, Google's having a photo contest. You could win a prize just for submitting a photo of you using the free Wi-Fi.

Participating Airports

You can take advantage of Google's generosity at one of the following 47 airports:

 
Austin (AUS) Indianapolis (IND) Panama City, FL (PFN)

Baltimore (BWI)

 Jacksonville, FL (JAX) Pittsburgh, PA (PIT)
Billings (BIL) Kalamazoo (AZO) Portland, ME (PWM)
Boston (BOS) Las Vegas (LAS) Sacramento (SMF)
Bozeman (BZN) Louisville (SDF) San Antonio (SAT)
Buffalo, NY (BUF) Madison (MSN) San Diego (SAN)
Burbank (BUR) Memphis (MEM) San Jose (SJC)

Central Wisconsin (CWA)

 Miami (MIA) Seattle (SEA)*
Charlotte, NC (CLT) Milwaukee (MKE) South Bend (SBN)
Des Moines (DSM) Monterey (MRY) Spokane (GEG)
El Paso (ELP) Nashville (BNA) St. Louis (STL)
Fort Lauderdale (FLL) Newport News (PHF) State College (SCE)
Fort Myers (RSW) Norfolk (ORF) Toledo (TOL)
Greensboro (GSO) Oklahoma City (OKC) Travers City (TVC)
Houston Hobby (HOU) Omaha (OMA) West Palm Beach (PBI)
Houston Bush (IAH) Orlando (MCO)  

*Seattle launches late November

Reasons to be Cautious

Airport Wi-Fi - like other public hotspots - is not secure and you should avoid logging into your bank account or other sites with sensitive info. Wireless network security can be compromised and put your passwords and other data out in the air and available to a fellow traveler with the right hacking tools.

We don't mean to scare you out of using the Google's Wi-Fi gift but to educate you about the potential risks

How to Protect Yourself

Here are some tips on how to protect yourself when using any Wi-Fi connection:

  • Google has said that their free Wi-Fi network names will vary at each airport. We'll try to provide a list of those names as soon as we can.
  • Make sure that you're connected to a legit network. I'm guessing there will be many Google copycats this holiday season.
  • Turn off your Wi-Fi auto login feature. This way you'll log in when you're ready and to the network of your choosing.
  • Disable sharing, especially if your laptop is networked to storage devices or computers at home.
  • Use a firewall.
  • Avoid entering sensitive data like credit card numbers or critical passwords while connected to a wireless network.
  • Disconnect from the network when you're done.

This video from Forbes provides more details on what you should watch out for:

Check out Google's Free Wi-Fi for the Holidays site and their FAQ page for more details.

November 12, 2009
0 comments

New Microsoft Update Patches Big Hole

Microsoft launched an update Tuesday to patch about fifteen holes in Windows 2000, Windows XP, Windows Server and Office. While most of the patches are related to various Word and Excel, or Windows Server issues, a critical vulnerability was found within the Windows OS kernel - a fairly rare occurrence.

The Big Hole

The Windows kernel is the core of the operating system and the flaw is related to how embedded font files are processed. We're not going to get into the technical mumbo-jumbo here, so we'll just tell you that the problem - if exploited - would allow malicious code to be passed directly to the system, bypassing any browser defenses that have been created to stop this sort of attack. The code could be downloaded just by visiting a web page prepared by hackers. With the increase of URL shorteners being used as well as advertising attacks, it's easier than ever to be accidently exposed to some nasty code.

Microsoft rated the kernel flaw as critical and gave it an exploitability ranking of 1. This means that Microsoft expects there to be a working exploit within 30 days and is similar to "SEVERE - Severe risk of terrorist attacks" on the Homeland Security advisory system (if anyone is actually paying any attention to that any more).

Researchers agree that the bad guys are going to move quickly:

"An exploit will appear sooner rather than later," said Jason Miller, the security and data team manager for patch management vendor Shavlik Technologies. "The target is Internet Explorer, and browsing is the number one attack vector in the world right now. Users can be infected simply by browsing on a [malicious] site.

So this is a big hole that can do some nasty things on unpatched computers.

The Solution

Take the following steps to protect your computer:

  • Set your computer to automatically download Microsoft updates.
  • Run updates immediately or just set the system to install them automatically.
  • Reconsider using Internet Explorer as your browser of choice. The same problem will not occur using Firefox or other non-IE browsers.

How to Update Windows Automatically

Windows XP

To set your PC to update automatically in Windows XP, simply access the Control Panel in the start menu, click "Automatic Updates," and choose "Automatic."

Windows Vista

For Vista, open Windows Update in the start menu, select "Change Settings," and then select "Install updates automatically."

More information can be found at Computer World and The Washington Post's Security Fix blog.

November 11, 2009
0 comments

Report Phishing Email: What to Do When You Catch a Phish

We've been educating you about phishing emails for years and in trolling around your inbox, it’s not uncommon to come across one of those pesky emails just about every day. The easiest approach is to ignore it or mark it as spam and go on with your day. However, by taking just a minute or two to report it, you can help make the Internet a safer place for you and the rest of the world.

Out of the Net and into the Tank

OpenDNS, the world’s largest, fastest-growing DNS service provider, launched PhishTank in an effort to make the Internet a better place for all us.

Phishtank serves as a clearing house for data and information about phishing on the Internet and provides the information to developers and researchers to integrate anti-phishing data into their applications. Best of all, the Phishtank services are free!

Some Statistics

Here are some statistics from October, 2009 to give you an idea of what kind of impact PhishTank has on scam emails:

  • Total number of votes by the PhishTank community: 68,575
  • Total number of unique, suspected phishing scams reported: 23,159
  • Country hosting the most phishing sites: United States
  • Percentage of phishing sites hosted in United States: 26
  • Median time it took for the PhishTank community to verify phishes: 8 hours, 19 minutes

So how does this all work?

Exercising a little philanthropy has never been easier:

  • Complete the free registration (http://www.phishtank.com/register.php). It literally takes 30 seconds.
  • The next time you get a phishing email, simply use your registered email address to report it. This can be done by logging directly onto the site or sending a quick email to phish@phishtank.com.
  • It is important to include as much information as possible, including mail headers if possible. For that reason, it’s best to redirect any suspected phishes to PhishTank. To submit suspected phishes from other email addresses, use your individual phish reporting address, which is available from My Account page once you are signed in. Phishtank recommends adding your individual phish reporting address to your address book in every mail application you use, for all accounts.
  • Also, it’s best to avoid forwarding the phishing email, as some information in the original phish is usually lost, whether mail headers, tell-tale images or even URLs.
  • Please note that Phishtank is just one example of sites out there trying to make the Internet better—it’s really not important which one you use. However, the next time you catch a phish, remember your Boy Scout days and “do a good turn daily”…report it.

But Wait, There's More!

As a side note, OpenDNS offers other services through innovative uses of the DNS. Some of these include free parental controls (porn filtering), phishing protection, and other advanced services for consumers and network administrators alike. Check out their free and deluxe plans here: http://www.opendns.com/start.  

 

November 7, 2009
3 comments

Senior Citizens Fight Medicare Fraud

Medicare receives 4.4 million claims a day and approximately 1 out of 10 of those are fraudulent. All of the fraudulent claims add up to a large sum of wasted time and money and the government is trying to put a stop to it. The Department of Justice (DOJ) and the Health and Human Services (HHS) Office of the Inspector General have been working together to reduce fraudulent activity.

In 2008, the DOJ and HHS and the Centers for Medicare and Medicaid Services worked together through the criminal and civil systems to secure 588 criminal convictions, obtain 337 civil administrative actions against individuals and organizations who were committing Medicare Fraud, and recovered more than a billion dollars in health care fraud monies . . . To date in fiscal year 2009, the Department of Justice has already recovered nearly a billion dollars in health care fraud monies and recorded 300 convictions.

In addition to catching Medicare thieves the DOJ and HHS want to enable seniors to participate in the fight. They want to raise awareness about the kinds of fraud that are happening and give seniors the tools they need to deter, detect and defend!

Medicare Fraud Examples

Here are a few examples of how Medicare is scammed out of billions of dollars a year.

  • Medicare is billed for services or equipment not received
  • An unathorized person uses a Medicare card to receive treatment, supplies or equipment
  • Medicare is billed for equipment after it has been returned
  • A company offers an unapproved Medicare drug plan
  • A company leads you to join a Medicare plan using false information

Deter

Medicare recipients need to keep themselves safe.

  • Treat your Medicare number and Social Security number like gold. Avoid carrying them in your wallet or purse.
  • Your Medicare number is not needed to get free equipment. If someone offers you free equipment and then asks for your Medicare number, run away or hang up the phone.
  • Your number is for your use only. It is illegal for others to file claims with your Medicare number.

Detect

Learn to recognize common schemes. A few common fraud schemes are:

  • Being approached in grocery stores, parking lots, on the street, etc. and being offered goods, services or help in exchange for your Medicare number. Just run away!
  • Receiving a call from a  phone solicitor doing a health survey and asking for your Medicare number. Just hang up! They don't need your number to conduct a survey.
  • Receiving a call from a telemarketer claiming to be with Medicare or Social Security asking for you to pay for equipment over the phone or the internet. Again, hang up!

Defend

It's critical that Medicare recipients check their statement summary sheets and look for:

  • Were you charged for the same thing more than once?
  • Are there doctor visit dates look unfamiliar?
  • Were you over charged for a service?
  • Were you charged for equipment or services that you didn't receive?

If you see any of these problems make a phone call to your provider or Medicare to get it resolved. It could just be a clerical error or it could be a fraudulent act that needs to be reported.

Help is Available

To some the task above may seem very overwhelming. The DOJ and HHS understand that seniors want to protect themselves but may not have the knowledge to do so. For this reason Senior Medicare Patrols (SMP's) were created. SMP's are groups or seniors, formed in communities, that help other senior citizens learn how to combat Medicare Fraud. They bring awareness to seniors in the community, teach seniors how to read and understand their Medicare summary statements and offer support.

Medical identity theft and Medicare fraud are a huge problem that the government cannot tackle on its own. While they do their part it's important for senior citizens to do their part to protect themselves from medical identity theft and be on the watch for Medicare fraud.

Fight Back! Brochure

More detailed information is available in the Fight Back! Medical Identity Theft and Medicare Fraud brochure put out by the HHS.

HHS Even Webcast on Preventing Medial Identity Theft and Medicare Fraud

Video Points of Interest

  • Time 7:11 Assistant Attorney General of Civil Division of DOJ, Tony West, discusses the consequences of Medicare fraud and the work of the DOJ and HHS partnership.
  • Time 14:38 Inspector General, Dan Levinson, discusses new fraud education materials.
  • Time 23:08 SMP volunteer, Joanne, discusses her experiences with Medicare fraud and her roll as part of the SMP in her community.

More information is available at Stop Medicare Fraud's website.

November 3, 2009
0 comments