As has been widely reported, Microsoft’s support for Windows 7 ended on January 14th. If you are still running Windows 7, you should either upgrade to Windows 10 if viable and practical to do so or take the opportunity to purchase a new computer. 

So, in the consumer and small business environment, which major products will have their support ended next? Here is the list:

• Windows 10 v1809 May 12, 2020
  
• Microsoft Office 2010 Oct 13, 2020
  
• Microsoft Office 2016 for Mac Oct 13, 2020
  
• MacOS High Sierra (10.13) Nov, 2020
  
• Windows 10 v1903 Dec 8, 2020
  
• Windows 10 v1909 May 11, 2021
  
• MacOS Mojave (10.14) Nov, 2021
  
• Windows 8.1 Jan 10, 2023
  
• Windows Server 2012 Oct 10, 2023
  

Notes:

• To determine what version of Windows 10 you are running, hold down the Windows logo key in the lower left of your keyboard and type the letter R, then type “winver” in the open box and then select OK.
  
• Any earlier versions from the above list are already not supported.
  
• Microsoft Office includes the apps Word, Excel, PowerPoint, and Outlook.
  

Why does any of this matter? It matters because as of the end of support date, no more security updates or bug fixes will be issued. Hackers are continuously finding flaws which are then exploited by them and the software vendors continuously fix the flaws. Flaws discovered after the end of support date will most likely not be fixed, so the risk of virus attack increases significantly. Furthermore, vendors of third party applications will typically also end support of their products running on unsupported software, increasing your risk even further.

Bottom line: it is risky and unwise to use software that is not supported.​

The article below was written by Jareth at Emsisoft. I have reproduced it verbatim for your benefit. Ransomware in all its forms is arguably the worst computer virus ever created. Some of the information might be a bit technical, but whatever you can take from it, you will be better off.
----------------------------------------------------------------------------------------------------------------------------------
How ransomeware spreads: 9 most common infection methods and how to stop them.
​Jareth . December 19, 2019 (copied from Emsisoft’s website blog section)

Cybercriminals are looking for creative new ways to hold your data hostage.

However, while ransomware might be getting more sophisticated, it’s important to remember that it still has to abide by the same rules as regular old malware.

That means it still has to be distributed, it still has to infect your system before it can deliver its payload – and it can still be avoided by taking a proactive approach to security.

How does ransomware infect your computer? In this article, we’ll show you some of the most common ways ransomware propagates and how you can reduce the risk of infection.

1. Email attachments
Ransomware is commonly distributed via emails that encourage the recipient to open a malicious attachment. The file can be delivered in a variety of formats, including a ZIP file, PDF, Word document, Excel spreadsheet and more. Once the attachment is opened, the ransomware may be deployed immediately; in other situations, attackers may wait days, weeks or even months after infection to encrypt the victim’s files, as was the case in the Emotet/Trickbot attacks.

Attackers may conduct extensive research on their target (often a specific company or high-ranking individual in an organization) to create credible and very believable emails. The more legitimate the email looks, the more likely the recipient is to open the attachment.

Prevention tips

• Only open attachments from trusted senders.
  
• Check that the sender’s email address is correct. Remember that domain names and display names can easily be spoofed.
  
• Do not open attachments that require you to enable macros. If you believe the attachment is legitimate, seek guidance from your IT Department.
  
• Read this guide for more information on how to avoid phishing emails.
  

2. Malicious URLs
Attackers also use emails and social media platforms to distribute ransomware by inserting malicious links into messages. During Q3 2019, almost 1 in 4 ransomware attacks used email phishing as an attack vector, according to figures from Coveware.

To encourage you to click on the malicious links, the messages are usually worded in a way that evokes a sense of urgency or intrigue. Clicking on the link triggers the download of ransomware, which encrypts your system and holds your data for ransom.

Prevention tips

• Be wary of all links embedded in emails and direct messages.
  
• Double-check URLs by hovering over the link before clicking.
  
• Use CheckShortURL to expand shortened URLs.
  
• Manually enter links into your browser to avoid clicking on phishing links.
  

3. Remote desktop protocol
RDP, a communications protocol that allows you to connect to another computer over a network connection, is another popular attack vector. Some examples of ransomware that spread via RDP include SamSam, Dharma and GandCrab, among many others.

By default, RDP receives connection requests through port 3389. Cybercriminals take advantage of this by using port-scanners to scour the Internet for computers with exposed ports. They then attempt to gain access to the machine by exploiting security vulnerabilities or using brute force attacks to crack the machine’s login credentials.

Once the attacker has gained access to the machine, they can do more or less anything they wish. Typically this involves disabling your antivirus software and other security solutions, deleting accessible backups and deploying the ransomware. They may also leave a backdoor they can use in the future.

Prevention tips

• Use strong passwords.
  
• Change the RDP port from the default port 3389.
  
• Only enable RDP if necessary.
  
• Use a VPN.
  
• Enable 2FA for remote sessions.
  

4. MSPs and RMMs
Cybercriminals frequently target managed service providers (MSPs) with phishing attacks and by exploiting the remote monitoring and management (RMM) software commonly used by MSPs.

A successful attack on an MSP can potentially enable cybercriminals to deploy ransomware to the MSP’s entire customer base and put immense pressure on the victim to pay the ransom. In August 2019, 22 towns in Texas were hit with ransomware that spread via MSP tools. Attackers demanded $2.5 million to unlock the encrypted files.

Prevention tips

• Enable 2FA on RMM software.
  
• MSPs should be hyper-vigilant regarding phishing scams.
  

5. Malvertising
Malvertising (malicious advertising) is becoming an increasingly popular method of ransomware delivery.

Malvertising takes advantage of the same tools and infrastructures used to display legitimate ads on the web. Typically, attackers purchase ad space, which is linked to an exploit kit. The ad might be a provocative image, a message notification or an offer for free software.

When you click on the ad, the exploit kit scans your system for information about its software, operating system, browser details and more. If the exploit kit detects a vulnerability, it attempts to install ransomware on the user’s machine. Many major ransomware attacks spread through malvertising, including CryptoWall and Sodinokibi.

Prevention tips

• Keep your operating system, applications and web browsers up to date.
  
• Disable plugins you don’t regularly use.
  
• Use an ad blocker. The Emsisoft lab team recommends uBlock Origin.
  
• Enable click-to-play plugins on your web browser, which prevents plugins such as Flash and Java from running automatically. A lot of malvertising relies on exploiting these plugins.
  

6. Drive-by downloads
A drive-by download is any download that occurs without your knowledge. Ransomware distributors make use of drive-by downloads by either hosting the malicious content on their own site or, more commonly, injecting it into legitimate websites by exploiting known vulnerabilities.

When you visit the infected website, the malicious content analyzes your device for specific vulnerabilities and automatically executes the ransomware in the background.

Unlike many other attack vectors, drive-by downloads don’t require any input from the user. You don’t have to click on anything, you don’t have to install anything and you don’t have to open a malicious attachment – visiting an infected website is all it takes to become infected.

Prevention tips

• Always install the latest software security patches.
  
• Remove unnecessary browser plugins.
  
• Install an ad-blocker such as uBlock Origin.
  

7. Network propagation
While older strains of ransomware were only capable of encrypting the local machine they infected, more advanced variants have self-propagating mechanisms that allow them to move laterally to other devices on the network. Successful attacks can cripple entire organizations.

Some of the most devastating ransomware attacks in history featured self-propagation mechanisms, including WannaCry, Petya and SamSam.

Prevention tips

• Segment your network and apply the principle of least privilege.
  
• Implement and maintain a reliable ransomware backup strategy.
  

8. Pirated software
Ransomware is known to spread through pirated software. Some cracked software also comes bundled with adware, which may be hiding ransomware, as was the case in the recent STOP Djvu campaign (free decryptor available here). In addition, websites that host pirated software may be more susceptible to malvertising or drive-by downloads.

The use of pirated software may also indirectly increase the risk of ransomware infection. Typically, unlicensed software doesn’t receive official updates from the developer, which means users may miss out on critical security patches that can be exploited by attackers.

Prevention tips

• Avoid using pirated software.
  
• Don’t visit websites that host pirated software, cracks, activators or key generators.
  
• Be careful of software deals that are too good to be true.
  

9. USB drives and portable computers
USB drives and portable computers are a common delivery vehicle for ransomware. Connecting an infected device can lead to ransomware encrypting the local machine and potentially spreading across the network.

Typically this is inadvertent – a member of staff unwittingly plugs in an infected USB drive, which encrypts their endpoint – but it can also be deliberate. For example, a few years ago, residents of Pakenham, a suburb in Melbourne, discovered unmarked USB drives in their mailboxes. The drives contained ransomware masquerading as a promotional offer from Netflix.

Prevention tips

• Never plug in unknown devices to your computer.
  
• Don’t plug in your devices to shared public systems such as photo-printing kiosks and computers at Internet cafes.
  
• Businesses should implement and maintain robust BYOD security policies.
  
• Use reputable antivirus software that can scan and protect removable drives.
  

Conclusion
Ransomware spreads in many different ways. Some attack vectors such as malicious email attachments, phishing links and removable devices rely on human error, while others such as malvertising, drive-by downloads and network propagation are effective with no user input whatsoever.

Regardless of how ransomware propagates, there are many things you can do to reduce the risk of infection and mitigate the effects of an attack. Investing in proven antivirus software, maintaining backups and being cautious with your clicks can go a long way toward protecting your data and keeping your system safe from ransomware.

As you can imagine, in my business I receive many telephone calls with a variety of questions. Some of the more typical questions are:

My internet isn’t working; what should I do now?
What is a VPN and why should I get one?
How do I copy and paste multiple items?
Is Alexa recording everything I say?
How do I change my password?
Should I shutdown my computer at night?
My mouse stopped working; what do I do now?
Why is my computer suddenly not booting up?
Why is my screen suddenly blank?
Why am I not receiving email?
Why did my printer stop printing?
What are cookies and how do I get rid of them?
Why did I still get a virus when I have antivirus software?
Why is my computer suddenly so slow?
I let a scammer remotely connect to my computer. What should I do now?
Why can’t I connect my wireless devices after changing my internet service provider?

I am always (ALWAYS) happy to take your calls and answer questions. Sometimes however more analysis is required which necessitates an onsite visit. Often, instead of calling me, it might be prudent to ask Google. Every one of the above questions can be entered verbatim into a Google search. It might take more effort for you to sift through the answers as opposed to calling me, but Google is free and always immediately available, although not as personable as I am (at least not yet :-)) !

The latest macOS operating system is now available. It is called Catalina or macOS 10.15. Like all new major operating system releases, it has many new features and is free to install on existing hardware. In this blog, I will tell you how to prepare your Mac for installation.

Let me begin by recommending that you do NOT install Catalina – at least not yet. A new major operating system release is a big deal and I always recommend that you wait until one or two bug releases have been made available.

Supported Macs
These are the computers that you can install Catalina on if and when you are ready to proceed:

• MacBook Air (2012 or newer)
• MacBook (2015 or newer)
• MacBook Pro (2012 or newer)
• Mac Pro (2013 or newer)
• Mac mini (2012 or newer)
• iMac (2012 or newer)
• iMac Pro (all models)

If your Mac is older than the above models, the holiday season is around the corner (hint, hint).

Supported Apps
One of the major implications of Catalina is that 32-bit applications will no longer run. You might have noticed some warning messages appearing on your current macOS regarding this inevitability. To see a list of 32-bit applications currently installed on your Mac, follow these steps:
1) Go to the Apple menu and select About This Mac
2) Click on System Report
3) Navigate to the Software tab and select Applications
4) Click the 64-bit column to sort the column. If the row shows No, then that application will not run on Catalina. Your only choice in that case is to see if the developer has an updated 64-bit version or find a suitable alternative.

Storage
You can check on your storage situation by going back to About This Mac and selecting the Storage tab. In general, you should have about 15% of your main hard drive empty. Catalina will take up about 15 to 20 gb of free storage. So, if you don’t have at least 15% plus 20gb free, you need to get busy deleting.

Backup
Before beginning the installation process, make sure you have a current backup. Use of Apple’s Time Machine and an external hard drive is the simplest way to create a robust backup.

​Installation
The simplest way to install Catalina is to either go to System Preferences and select “Software Update” or go to the Apple Store and find it there.
There are many new features in Catalina you will find interesting. Just Google “macos catalina features” to learn all about them. One more warning: in Catalina iTunes is gone and has been replaced with three different applications: Music, Apple TV, and Podcasts.
Good luck!

Many of us spend hours each day sitting in a chair working on a computer. Without proper ergonomics and exercises, this can cause long term damage to your body. 

I’m bringing you this month’s blog courtesy of Dr. Scott Nissenbaum. Scott is a chiropractor in San Carlos and can be reached at office@drniss.com or 650-226-8348.

Your Chair:

• Push your hips as far back as they go onto the chair 
  
• Adjust the seat height so your feet are FLAT on the floor or a foot-rest 
  
• Knees should be equal to or slightly lower than your hips 
  
• Adjust the back of the chair to recline slightly to approx. 100-110 degrees 
            MAKE SURE YOUR BACK IS SUPPORTED
  
• Adjust your armrests so that your shoulders are relaxed, or just remove the armrests 
  

Your Keyboard:

• It’s best to have a keyboard tray or a lap tray 
  
• Something with an adjustable height and tilt mechanism 
  
• Position the keyboard directly in front of your body 
  
• Adjust the keyboard height so that your shoulders are relaxed, elbows are slightly opened, to that same 100-110 degrees, so your wrists and hands maintain a straight position 
  

Your Screen:

• Center the screen directly in front of you 
  
• Position the top of the screen approx. 2-3” above the seated eye level (address bar) 
  
• Avoid looking excessively up or down. Holding either position for a long time is not healthy 
  
• Sit an arm’s length away from the screen, but adjust to vision so there is no leaning forward. 
  

Take Regular Pauses and Breaks:

• TRY to take a regular 1-2 min break every 20-30 min. 
  
• After each 1 hr. of work TRY to change tasks for 5-10 min. 
  

Deskercising:

• Seated shoulder shrug with deep breath (shoulders and back) 
  
• Seated fan pose: Sit forward in chair, Hold back of chair or/ Interlock fingers and put them on top of the seat of the chair, Sit high with chest 
  
• Seated torso bends: Stabilize yourself with hand on the seat of the chair or/ Reach up and interlock your fingers. Sway from side to side, Keeping your glutes on the chair 
  
• Figure 4 for hips: Bring knee to opposite shoulder or/ Bend down at waist towards knee 
  

Here is a good video about an ergonomic desk setup: https://www.youtube.com/watch?v=Z3uBJdW6Akk

Windows, Mac OS, iOS, Android, and specific application updates are a frequent annoyance that are fundamental to today’s computing environments. But how does one know when and if to install them? This is a question I am frequently asked and will address in this blog.

Updates are software changes issued by the platform or application vendor. Most of the time they are free and contain bug fixes, security fixes, and occasionally new functionality. But unfortunately, an update can introduce new bugs and/or new security holes. Therein lies the rub. Certainly if you install an update you will be improving the associated software, but you might also break it in unexpected ways.

Before installing any update, make sure your backups are current. It is best if your backup strategy includes creation of system image backups, but at a minimum, be sure your file backups are current.

In general, it is best to not install updates the moment they become available and to instead wait a few days or weeks for any unintended consequences to be found and resolved. The one exception to this guideline is if the update closes a critical security hole.

When you get an update notification, make sure it is legitimate. If it comes from a major vendor such as Microsoft or Apple or from a vendor whose software you have installed on your device, you can be fairly certain it is legitimate. If you aren’t sure, Google the update reference number and read the resulting information.

As I discussed in a previous blog, Microsoft is ending support for Windows 7 on January 14th 2020 and will therefore cease issuing updates for that version of Windows. Therefore, it is imperative that you either upgrade to Windows 10 or take the opportunity to purchase a new computer to replace it.

I’m often hired to set up a robust backup system, akin to what I presented in my 6/30/18 blog titled “How To Protect Against Ransomware” (https://steve.gimnicher.com/technology-blog/archives/06-2018). However, unfortunately I also find that once backups are set up, they frequently are not checked to make sure they are still working. There are several things that can stop previously working backups:

• Backup drive not connected or online
  
• Backup storage device having inadequate free space
  
• Backup drive assigned different (Windows) drive letter than what was set in the backup configuration
  
• Computer password is changed, preventing the automated backup task from running
  
• Backup configuration file deleted
  
• Scheduled task deleted or task scheduler broken (occasionally seen in Windows 7 systems)
  
• Computer not running at scheduled backup time (this includes being in sleep or hibernate mode)
  
• Verification of backup data failed
  

The basic job of any backup system is to create a copy of either specific files, folders, or the entire system on permanent storage other than the source storage media. Therefore, the best way to see if backups are actually being made is to look on the backup storage media for timely backups! It is also a good idea to attempt to recover one or more files from the backup storage media to confirm that when the day comes that you need to recover data, that you will know how to do it and that it will actually work!

Backups are like insurance policies: you don’t need them until you need them, and then they better pay off!

Exciting times are ahead as the pace of technology improvement forges forward.  You may have already heard of the next generation of mobile network technologies called 5G and Wi-Fi 6, but what are they and how are they different?
 
5G
5G is the fifth generation of cellular mobile network technology.  Cellular networks rely on licensedspectrum bands auctioned off to the highest bidder.  Carriers like AT&T and Verizon must pay to use these bands and have to build infrastructure of connected base stations to be able to send out signals on the licensed spectrums to thousands of people at once, all of whom pay subscription fees.
 
5G will have a theoretical download speed of between 1Gbps and 10Gbps, but in reality, you won’t get anywhere near that.  There are many factors that affect speeds such as where you are, how many people are connecting, and the capabilities of your device.  The overall goal of 5G is to achieve a minimum download speed of 50Mbps. That will be a major improvement 
over current 4G LTE speeds.
 
Wi-Fi 6
Wi-Fi is an unlicensed​ spectrum free for everyone to use, but its reach, bandwidth, and lower top speed restricts it to mostly home, office, and limited public use.  Wi-Fi typically operates using two frequencies: 2.4Ghz and 5Ghz.  Note that 5Ghz Wi-Fi has nothing to do with 5G mobile cellular networks.  Past Wi-Fi naming conventions have been very confusing, going from 802.11b to 802.11a, 802.11g, 802.11n, and the current standard 802.11ac.  With the introduction of Wi-Fi 6 as the name of the next evolution of Wi-Fi, this simpler naming convention will also be retrofitted, so 802.11ac will be Wi-Fi 5 and so on.  Wi-Fi 6 promises to increase speeds at least four times greater than Wi-Fi 5 with better efficiency and higher bandwidth.
 
Using New Wireless Technologies
To make use of these new technologies, carriers and ISPs have to deliver hardware and infrastructure that support the new technologies and speeds, and we need to buy new hardware that also supports them.  That means we will need to purchase new computers, routers, and smart devices.  As usual, 5G and Wi-Fi 6 capable devices will be backward compatible with older wireless technologies.  The first wave of support for 5G and Wi-Fi 6 has already begun to roll out, but it will take some time before everything is in place.  There will be some cases where use of 5G will obviate the need to use Wi-Fi 6, but in most cases, just as is the case today with 4G LTE and Wi-Fi 5, you will find good use for both technologies.

In a recent blog, I wrote about the various options for obtaining Microsoft Office and made a brief reference to two open source options:  LibreOffice and OpenOffice.  I have since taken a closer look at these two options and have come away very impressed with LibreOffice as a completely free and unrestricted alternative to Microsoft Office, especially as an alternative to Microsoft Word, Excel, and PowerPoint.  In fact, I have already installed it for several customers seeking to avoid never-ending fees from Microsoft.
 
Just like Microsoft Office, LibreOffice consists of a suite of applications called Writer (word processing), Calc (spreadsheets), Impress (presentations), Draw (vector graphics and flowcharts), Base (databases), and Math (formula editing).  Most of you will only be interested in the first three as alternatives to Microsoft Word, Excel, and PowerPoint, respectively.  Notice there is no alternative to Microsoft Outlook in the LibreOffice suite, but very viable Outlook alternatives can be found in products such as Mozilla Thunderbird (free) or eM Client Pro ($49.95 one-time fee).
 
LibreOffice is actively developed and maintained by a community of users who believe in free software and in sharing their work with the world in completely non-restrictive ways.  The term “open source software” delivers on this philosophy, and LibreOffice is one of the best examples of these principles.  It is in use by about 10 million Windows and Mac users worldwide.
 
LibreOffice can be set up to be the default app for Microsoft Office files (e.g., .docx, .xlsx., .pptx) and can also be configured to only save new files in the Microsoft Office file types, thereby achieving full interoperability with the Microsoft Office apps.  In fact, once set up this way, you will quickly forget that you are not using the Microsoft apps.
 
As with any product comparison, there are features that one suite supports that the other doesn’t, and vice-versa.  For a detailed product comparison, see this link:  https://wiki.documentfoundation.org/Feature_Comparison:_LibreOffice_-_Microsoft_Office
If you are a basic user of Word, Excel, and PowerPoint, you will find LibreOffice to have much more than you will ever require, with a familiar user interface.
 
Feature rich, completely unrestricted, actively developed and supported, compatible with Microsoft Office, and FREE – hard to beat!  Give it a try – you can always go back to paying Microsoft if LibreOffice doesn’t work for you.