Remote computer access products have been around for a long time and are particularly useful now with our current shelter-in-home mandates due to the Covid-19 virus. They typically involve two pieces of software: one on the computer you wish to access remotely and the other on the computer you are using to access the remote computer (i.e. the local computer). When properly set up, one is able to see everything on the remote screen and control the remote keyboard and mouse. It is as if you are sitting in front of the remote computer and even works with multiple monitors attached to the remote computer.

The faster the internet service is on both the remote computer and the local computer the better the experience. Most of the approaches also allow you to redirect print outs from the remote computer to your local printer. Many solutions support both Windows and Mac systems. Prices vary greatly among the various products, from expensive to free.

The products I list below are the most common, with starting prices shown as of this date. The list is by no means conclusive, but will give you a good idea of your options.

• LogMeIn Pro; $349.99/year access 2 computers
  
• GoToMyPC: $35/computer/month
  
• TeamViewer: $49/month access up to 200 computers, one session at a time (free for personal use)
  
• RemotePC: $22.12 first year/access to 2 computers
  
• Splashtop: $5/month access to 2 computers
  
• Windows Remote Desktop (Windows 10 Pro or higher): free
  
• Mac only (SSH in terminal; free) or Apple Remote Desktop ($79.99)
  

LogMeIn Pro is certainly one of the best known options, but as you can see it is expensive, as is GoToMyPC.

TeamViewer pricing is equally expensive. They do offer a free version, but that version is strictly for personal, non-commercial use. Also, I have seen the free version either time out after 5 minutes or pester the user with pop-ups warning it is not to be used in commercial environments.

Other than free, RemotePC is the least expensive product and is the one I always recommend.

I used to use SplashTop a lot and it works very well, but RemotePC does the same thing and is less expensive.

Windows Remote Desktop is available in most Windows systems (not Windows Home) and can be freely used, but can be difficult to set up, often requiring special port forwarding settings in the network router.

On Macs, a facility known as Secure Shell (SSH) is available, but it has to be invoked via a command line interface in Terminal, so likely is too complex for most of my customers. It also requires port forwarding settings in the network router.

Apple Remote Desktop works much like Windows Remote Desktop, requiring a variety of settings in the remote computer. It also requires port forwarding settings in the network router. It can be purchased at the App Store.

You might ask what product do I use? I purchased a platform called SimpleHelp which for a one time price I can access up to 1000 computers remotely. I currently have connections to 354 computers, so plenty of capacity remains. And, SimpleHelp can be used simultaneously with any of the products listed above.

If you have further questions or want help setting remote computer access up, get a hold of me.

As has been widely reported, Microsoft’s support for Windows 7 ended on January 14th. If you are still running Windows 7, you should either upgrade to Windows 10 if viable and practical to do so or take the opportunity to purchase a new computer. 

So, in the consumer and small business environment, which major products will have their support ended next? Here is the list:

• Windows 10 v1809 May 12, 2020
  
• Microsoft Office 2010 Oct 13, 2020
  
• Microsoft Office 2016 for Mac Oct 13, 2020
  
• MacOS High Sierra (10.13) Nov, 2020
  
• Windows 10 v1903 Dec 8, 2020
  
• Windows 10 v1909 May 11, 2021
  
• MacOS Mojave (10.14) Nov, 2021
  
• Windows 8.1 Jan 10, 2023
  
• Windows Server 2012 Oct 10, 2023
  

Notes:

• To determine what version of Windows 10 you are running, hold down the Windows logo key in the lower left of your keyboard and type the letter R, then type “winver” in the open box and then select OK.
  
• Any earlier versions from the above list are already not supported.
  
• Microsoft Office includes the apps Word, Excel, PowerPoint, and Outlook.
  

Why does any of this matter? It matters because as of the end of support date, no more security updates or bug fixes will be issued. Hackers are continuously finding flaws which are then exploited by them and the software vendors continuously fix the flaws. Flaws discovered after the end of support date will most likely not be fixed, so the risk of virus attack increases significantly. Furthermore, vendors of third party applications will typically also end support of their products running on unsupported software, increasing your risk even further.

Bottom line: it is risky and unwise to use software that is not supported.​

The article below was written by Jareth at Emsisoft. I have reproduced it verbatim for your benefit. Ransomware in all its forms is arguably the worst computer virus ever created. Some of the information might be a bit technical, but whatever you can take from it, you will be better off.
----------------------------------------------------------------------------------------------------------------------------------
How ransomeware spreads: 9 most common infection methods and how to stop them.
​Jareth . December 19, 2019 (copied from Emsisoft’s website blog section)

Cybercriminals are looking for creative new ways to hold your data hostage.

However, while ransomware might be getting more sophisticated, it’s important to remember that it still has to abide by the same rules as regular old malware.

That means it still has to be distributed, it still has to infect your system before it can deliver its payload – and it can still be avoided by taking a proactive approach to security.

How does ransomware infect your computer? In this article, we’ll show you some of the most common ways ransomware propagates and how you can reduce the risk of infection.

1. Email attachments
Ransomware is commonly distributed via emails that encourage the recipient to open a malicious attachment. The file can be delivered in a variety of formats, including a ZIP file, PDF, Word document, Excel spreadsheet and more. Once the attachment is opened, the ransomware may be deployed immediately; in other situations, attackers may wait days, weeks or even months after infection to encrypt the victim’s files, as was the case in the Emotet/Trickbot attacks.

Attackers may conduct extensive research on their target (often a specific company or high-ranking individual in an organization) to create credible and very believable emails. The more legitimate the email looks, the more likely the recipient is to open the attachment.

Prevention tips

• Only open attachments from trusted senders.
  
• Check that the sender’s email address is correct. Remember that domain names and display names can easily be spoofed.
  
• Do not open attachments that require you to enable macros. If you believe the attachment is legitimate, seek guidance from your IT Department.
  
• Read this guide for more information on how to avoid phishing emails.
  

2. Malicious URLs
Attackers also use emails and social media platforms to distribute ransomware by inserting malicious links into messages. During Q3 2019, almost 1 in 4 ransomware attacks used email phishing as an attack vector, according to figures from Coveware.

To encourage you to click on the malicious links, the messages are usually worded in a way that evokes a sense of urgency or intrigue. Clicking on the link triggers the download of ransomware, which encrypts your system and holds your data for ransom.

Prevention tips

• Be wary of all links embedded in emails and direct messages.
  
• Double-check URLs by hovering over the link before clicking.
  
• Use CheckShortURL to expand shortened URLs.
  
• Manually enter links into your browser to avoid clicking on phishing links.
  

3. Remote desktop protocol
RDP, a communications protocol that allows you to connect to another computer over a network connection, is another popular attack vector. Some examples of ransomware that spread via RDP include SamSam, Dharma and GandCrab, among many others.

By default, RDP receives connection requests through port 3389. Cybercriminals take advantage of this by using port-scanners to scour the Internet for computers with exposed ports. They then attempt to gain access to the machine by exploiting security vulnerabilities or using brute force attacks to crack the machine’s login credentials.

Once the attacker has gained access to the machine, they can do more or less anything they wish. Typically this involves disabling your antivirus software and other security solutions, deleting accessible backups and deploying the ransomware. They may also leave a backdoor they can use in the future.

Prevention tips

• Use strong passwords.
  
• Change the RDP port from the default port 3389.
  
• Only enable RDP if necessary.
  
• Use a VPN.
  
• Enable 2FA for remote sessions.
  

4. MSPs and RMMs
Cybercriminals frequently target managed service providers (MSPs) with phishing attacks and by exploiting the remote monitoring and management (RMM) software commonly used by MSPs.

A successful attack on an MSP can potentially enable cybercriminals to deploy ransomware to the MSP’s entire customer base and put immense pressure on the victim to pay the ransom. In August 2019, 22 towns in Texas were hit with ransomware that spread via MSP tools. Attackers demanded $2.5 million to unlock the encrypted files.

Prevention tips

• Enable 2FA on RMM software.
  
• MSPs should be hyper-vigilant regarding phishing scams.
  

5. Malvertising
Malvertising (malicious advertising) is becoming an increasingly popular method of ransomware delivery.

Malvertising takes advantage of the same tools and infrastructures used to display legitimate ads on the web. Typically, attackers purchase ad space, which is linked to an exploit kit. The ad might be a provocative image, a message notification or an offer for free software.

When you click on the ad, the exploit kit scans your system for information about its software, operating system, browser details and more. If the exploit kit detects a vulnerability, it attempts to install ransomware on the user’s machine. Many major ransomware attacks spread through malvertising, including CryptoWall and Sodinokibi.

Prevention tips

• Keep your operating system, applications and web browsers up to date.
  
• Disable plugins you don’t regularly use.
  
• Use an ad blocker. The Emsisoft lab team recommends uBlock Origin.
  
• Enable click-to-play plugins on your web browser, which prevents plugins such as Flash and Java from running automatically. A lot of malvertising relies on exploiting these plugins.
  

6. Drive-by downloads
A drive-by download is any download that occurs without your knowledge. Ransomware distributors make use of drive-by downloads by either hosting the malicious content on their own site or, more commonly, injecting it into legitimate websites by exploiting known vulnerabilities.

When you visit the infected website, the malicious content analyzes your device for specific vulnerabilities and automatically executes the ransomware in the background.

Unlike many other attack vectors, drive-by downloads don’t require any input from the user. You don’t have to click on anything, you don’t have to install anything and you don’t have to open a malicious attachment – visiting an infected website is all it takes to become infected.

Prevention tips

• Always install the latest software security patches.
  
• Remove unnecessary browser plugins.
  
• Install an ad-blocker such as uBlock Origin.
  

7. Network propagation
While older strains of ransomware were only capable of encrypting the local machine they infected, more advanced variants have self-propagating mechanisms that allow them to move laterally to other devices on the network. Successful attacks can cripple entire organizations.

Some of the most devastating ransomware attacks in history featured self-propagation mechanisms, including WannaCry, Petya and SamSam.

Prevention tips

• Segment your network and apply the principle of least privilege.
  
• Implement and maintain a reliable ransomware backup strategy.
  

8. Pirated software
Ransomware is known to spread through pirated software. Some cracked software also comes bundled with adware, which may be hiding ransomware, as was the case in the recent STOP Djvu campaign (free decryptor available here). In addition, websites that host pirated software may be more susceptible to malvertising or drive-by downloads.

The use of pirated software may also indirectly increase the risk of ransomware infection. Typically, unlicensed software doesn’t receive official updates from the developer, which means users may miss out on critical security patches that can be exploited by attackers.

Prevention tips

• Avoid using pirated software.
  
• Don’t visit websites that host pirated software, cracks, activators or key generators.
  
• Be careful of software deals that are too good to be true.
  

9. USB drives and portable computers
USB drives and portable computers are a common delivery vehicle for ransomware. Connecting an infected device can lead to ransomware encrypting the local machine and potentially spreading across the network.

Typically this is inadvertent – a member of staff unwittingly plugs in an infected USB drive, which encrypts their endpoint – but it can also be deliberate. For example, a few years ago, residents of Pakenham, a suburb in Melbourne, discovered unmarked USB drives in their mailboxes. The drives contained ransomware masquerading as a promotional offer from Netflix.

Prevention tips

• Never plug in unknown devices to your computer.
  
• Don’t plug in your devices to shared public systems such as photo-printing kiosks and computers at Internet cafes.
  
• Businesses should implement and maintain robust BYOD security policies.
  
• Use reputable antivirus software that can scan and protect removable drives.
  

Conclusion
Ransomware spreads in many different ways. Some attack vectors such as malicious email attachments, phishing links and removable devices rely on human error, while others such as malvertising, drive-by downloads and network propagation are effective with no user input whatsoever.

Regardless of how ransomware propagates, there are many things you can do to reduce the risk of infection and mitigate the effects of an attack. Investing in proven antivirus software, maintaining backups and being cautious with your clicks can go a long way toward protecting your data and keeping your system safe from ransomware.

As you can imagine, in my business I receive many telephone calls with a variety of questions. Some of the more typical questions are:

My internet isn’t working; what should I do now?
What is a VPN and why should I get one?
How do I copy and paste multiple items?
Is Alexa recording everything I say?
How do I change my password?
Should I shutdown my computer at night?
My mouse stopped working; what do I do now?
Why is my computer suddenly not booting up?
Why is my screen suddenly blank?
Why am I not receiving email?
Why did my printer stop printing?
What are cookies and how do I get rid of them?
Why did I still get a virus when I have antivirus software?
Why is my computer suddenly so slow?
I let a scammer remotely connect to my computer. What should I do now?
Why can’t I connect my wireless devices after changing my internet service provider?

I am always (ALWAYS) happy to take your calls and answer questions. Sometimes however more analysis is required which necessitates an onsite visit. Often, instead of calling me, it might be prudent to ask Google. Every one of the above questions can be entered verbatim into a Google search. It might take more effort for you to sift through the answers as opposed to calling me, but Google is free and always immediately available, although not as personable as I am (at least not yet :-)) !

The latest macOS operating system is now available. It is called Catalina or macOS 10.15. Like all new major operating system releases, it has many new features and is free to install on existing hardware. In this blog, I will tell you how to prepare your Mac for installation.

Let me begin by recommending that you do NOT install Catalina – at least not yet. A new major operating system release is a big deal and I always recommend that you wait until one or two bug releases have been made available.

Supported Macs
These are the computers that you can install Catalina on if and when you are ready to proceed:

• MacBook Air (2012 or newer)
• MacBook (2015 or newer)
• MacBook Pro (2012 or newer)
• Mac Pro (2013 or newer)
• Mac mini (2012 or newer)
• iMac (2012 or newer)
• iMac Pro (all models)

If your Mac is older than the above models, the holiday season is around the corner (hint, hint).

Supported Apps
One of the major implications of Catalina is that 32-bit applications will no longer run. You might have noticed some warning messages appearing on your current macOS regarding this inevitability. To see a list of 32-bit applications currently installed on your Mac, follow these steps:
1) Go to the Apple menu and select About This Mac
2) Click on System Report
3) Navigate to the Software tab and select Applications
4) Click the 64-bit column to sort the column. If the row shows No, then that application will not run on Catalina. Your only choice in that case is to see if the developer has an updated 64-bit version or find a suitable alternative.

Storage
You can check on your storage situation by going back to About This Mac and selecting the Storage tab. In general, you should have about 15% of your main hard drive empty. Catalina will take up about 15 to 20 gb of free storage. So, if you don’t have at least 15% plus 20gb free, you need to get busy deleting.

Backup
Before beginning the installation process, make sure you have a current backup. Use of Apple’s Time Machine and an external hard drive is the simplest way to create a robust backup.

​Installation
The simplest way to install Catalina is to either go to System Preferences and select “Software Update” or go to the Apple Store and find it there.
There are many new features in Catalina you will find interesting. Just Google “macos catalina features” to learn all about them. One more warning: in Catalina iTunes is gone and has been replaced with three different applications: Music, Apple TV, and Podcasts.
Good luck!

Many of us spend hours each day sitting in a chair working on a computer. Without proper ergonomics and exercises, this can cause long term damage to your body. 

I’m bringing you this month’s blog courtesy of Dr. Scott Nissenbaum. Scott is a chiropractor in San Carlos and can be reached at office@drniss.com or 650-226-8348.

Your Chair:

• Push your hips as far back as they go onto the chair 
  
• Adjust the seat height so your feet are FLAT on the floor or a foot-rest 
  
• Knees should be equal to or slightly lower than your hips 
  
• Adjust the back of the chair to recline slightly to approx. 100-110 degrees 
            MAKE SURE YOUR BACK IS SUPPORTED
  
• Adjust your armrests so that your shoulders are relaxed, or just remove the armrests 
  

Your Keyboard:

• It’s best to have a keyboard tray or a lap tray 
  
• Something with an adjustable height and tilt mechanism 
  
• Position the keyboard directly in front of your body 
  
• Adjust the keyboard height so that your shoulders are relaxed, elbows are slightly opened, to that same 100-110 degrees, so your wrists and hands maintain a straight position 
  

Your Screen:

• Center the screen directly in front of you 
  
• Position the top of the screen approx. 2-3” above the seated eye level (address bar) 
  
• Avoid looking excessively up or down. Holding either position for a long time is not healthy 
  
• Sit an arm’s length away from the screen, but adjust to vision so there is no leaning forward. 
  

Take Regular Pauses and Breaks:

• TRY to take a regular 1-2 min break every 20-30 min. 
  
• After each 1 hr. of work TRY to change tasks for 5-10 min. 
  

Deskercising:

• Seated shoulder shrug with deep breath (shoulders and back) 
  
• Seated fan pose: Sit forward in chair, Hold back of chair or/ Interlock fingers and put them on top of the seat of the chair, Sit high with chest 
  
• Seated torso bends: Stabilize yourself with hand on the seat of the chair or/ Reach up and interlock your fingers. Sway from side to side, Keeping your glutes on the chair 
  
• Figure 4 for hips: Bring knee to opposite shoulder or/ Bend down at waist towards knee 
  

Here is a good video about an ergonomic desk setup: https://www.youtube.com/watch?v=Z3uBJdW6Akk

Windows, Mac OS, iOS, Android, and specific application updates are a frequent annoyance that are fundamental to today’s computing environments. But how does one know when and if to install them? This is a question I am frequently asked and will address in this blog.

Updates are software changes issued by the platform or application vendor. Most of the time they are free and contain bug fixes, security fixes, and occasionally new functionality. But unfortunately, an update can introduce new bugs and/or new security holes. Therein lies the rub. Certainly if you install an update you will be improving the associated software, but you might also break it in unexpected ways.

Before installing any update, make sure your backups are current. It is best if your backup strategy includes creation of system image backups, but at a minimum, be sure your file backups are current.

In general, it is best to not install updates the moment they become available and to instead wait a few days or weeks for any unintended consequences to be found and resolved. The one exception to this guideline is if the update closes a critical security hole.

When you get an update notification, make sure it is legitimate. If it comes from a major vendor such as Microsoft or Apple or from a vendor whose software you have installed on your device, you can be fairly certain it is legitimate. If you aren’t sure, Google the update reference number and read the resulting information.

As I discussed in a previous blog, Microsoft is ending support for Windows 7 on January 14th 2020 and will therefore cease issuing updates for that version of Windows. Therefore, it is imperative that you either upgrade to Windows 10 or take the opportunity to purchase a new computer to replace it.