Don’t WannaCry 😭Tonight

Don’t WannaCry 😭Tonight

Name:  Wanna Cry a.k.a Wanna Crypt Type: Worm, Ransomware Target: Windows Computers running SMB file sharing Original Creators: NSA (Yes, the US gov.) EternalBlue is the exploit that was developed by the NSA most likely to be used on "we the people". It was leaked by hackers in April 2017 and used in the WannaCry ransomware a month later. This ransomware only targeted certain Microsoft Operating Systems and it spread using the file share feature (SMB). Microsoft even patched their OS back in March 2017. But how many people keep their systems updated? Microsoft even went as far as to create a patch for end-of-support systems like Windows XP and Windows Server 2003! Microsoft issued a statement criticizing government spy agencies and the NSA of hiding critical security flaws from vendors. Most security specialists blame the National Security Agency (NSA) for committing the original sin. Of course, if a hacker had created EternalBlue, he would be serving time (...just saying💁🏻‍♂️) The irresistible actions of the NSA for...
Read More
“Let’s Encrypt” 🔐 your website

“Let’s Encrypt” 🔐 your website

Why Encrypt a website? Simple, when you visit a website, you may enter forms, passwords, credit card info, social security numbers, upload/download images or any other sensitive data. It's not too difficult to "intercept" that data by novice hackers. They may use tools like network sniffers with rogue wireless access points in a pubic environment like an airport or cafe. Or simply by organizations that like to snoop or keep a tab on all the traffic in their network. That data can also get compromised (Believe it or not!🤗). If a website begins with https:// it will have the lock 🔒  sign, showing that data between your browser and the website is now encrypted and no one in between intercepting the traffic can decipher it. Your data is seen as garbage to them and decrypted only at he 2 end points. What is Let's Encrypt Let's Encrypt is a FREE SSL Certificate Authority! Yes completely free! A lot of companies have made a ton of money,...
Read More
Sign/Verify Emails ✉️ with Encryption 🔐 (for Free)

Sign/Verify Emails ✉️ with Encryption 🔐 (for Free)

What is it? Signing is essentially showing the recipient that your email address is verified by a certificate authority (CA) (hence legit) and that you are presenting that certificate to the recipient so that they can use the public key in it to encrypt the reply back. Once both parties are using each others' public keys to encrypt the messages and their own private keys to decrypt it, no one in between can intercept it and make sense of it without those private keys that are stored in your computer/phone. Why do it? Encryption: If this is a private email (which email always is, otherwise we use forums), the contents should remain PRIVATE. There is a long route your email takes from your keyboard to the destination screen! It can be intercepted anywhere in between by either hackers, phishing scams, data miners, government, your email provider that snoops on the contents of your email and creates a profile of you, sells it to advertisers...
Read More