AOL Users: Beware of Phishing Attempts

Recently, I have been dealing with a number of clients who use AOL and have had their AOL account compromised. Some of those report having recently received an email from AOL that their mailbox was full. They went to the link logged in and took care the problem themselves. But in fact, what they really did was give their AOL password away to someone with the intent of locking their account. Many of them had their entire address book deleted but only after emails were sent to everyone they know telling that they had been abducted and needed money to get away or that they were in jail and needed money for bail.

This is a very common phishing attempt that has been going around for long time. Some of my clients that continue to use AOL have their accounts for a very long time and don’t want to have to change their email address.  Even though many times I have recommended that they should get a different email address and leave AOL they continue to stick with it because they don’t want to deal with the effort of change.

AOL remains one of the greatest risks for phishing in the email industry. People sending these phishing efforts realize that AOL users have used the system for a long time and as a result they realize they’ll do anything to continue to be able to use it. So these hackers send out emails similar to this:

Screen Shot 2015-04-20 at 10.09.23 AM

So let’s dissect this message. First look at where the email came from. That email address is not an AOL email address. But more importantly hover over the click here before you click.

Screen Shot 2015-04-20 at 9.43.10 AM

 

As you can see, it’s quite obvious it’s not taking you to an AOL server. But people in a hurry, forget these easy to use rules for staying safe. So let’s say it just one more time:

Never, Never click on any email link without seeing where the link takes you.  But then make a conscious decision that the link is going to someplace that makes common sense in the context of what it is supposed to do.  If it doesn’t, don’t click.  If your not sure, forward it to someone that can assist you in determining if it is something you need to do.

Using this common sense approach will keep you from having to deal with all the issues related to an email account being compromised.  Take the time to look forgot clicking.

 

Apple updates Mac OS and introduces new Photos Application

Screen Shot 2015-04-08 at 4.22.56 PMThe much anticipated update to Mac OS, Version 10.10.3, was released today and includes the often discussed new Photos application. I am been beta testing this application for quite a while and I’m happy to say that the release version is even better than the versions I’ve been testing.

Initially I have quite a bit of concern on the buggy state I had been seeing in the photos app but with the release today Apple seems to have truly cleaned it up and make it ready for the public. After converting my iPhoto library I find that much more of my information is now in photos than was there during the beta. My albums and slideshows all transfered without any problem.  The actual conversion took over an hour and a half but I have a very large photoScreen Shot 2015-04-08 at 4.15.42 PM library. I was also pleasantly surprised to see Apple added automatically created albums for panoramas, videos, Slo-mo, and bursts.  To be able to see these, you must go to the view menu and turn on the sidebar.

A couple of things that deserve being mentioned. During the first time you run Photos, Photos will ask you if you want turn on iCloud Photo Library. I would recommend not doing this until you assess what you’re photo space need would because you will likely have to purchase additional iCloud space for this to work.  Also during the initial run, Photos will automatically convert your iPhoto library. There are ways to go back and still use your iPhoto library in iPhoto but just the act of running Photos is going to run a conversion.

Screen Shot 2015-04-08 at 4.15.26 PMI’ve come to the conclusion that photos is a pretty good upgrade iPhoto after all. I would recommend if you update your operating system to move forward and give it a try.

Apple has some good information on the web about the features in the new Photos Application.  There is also a great article on The Verge that goes into detail about Photos and also the differences between iPhoto and Photos.

Apple needs to deal with phishing and junk mail on its iCloud servers

Phishing scams through email continue to be one of the biggest problems related to email today.  My email account sees dozens of these and quite often are able to deal with them as junk mail and get rid of them. But a real growing problem I see, is related to Apples iCloud email and pfishing.

imageiCloud email has never been very good at dealing with junk mail. Unlike Google who has extensive junk mail filtering enabled on their servers, at times Apples email system seems to just send everything through. You certainly have the ability, if you’re on a computer, to mark email as junk and hope that matching emails get put into the junk folder when they come in. Unfortunately, if you’re on one of apples premier iOS devices, you have little to help you because junk mail filters don’t exist. But more and more it seems like Apple with his iCloud email services are doing nothing at the server level to stop you from getting this junk mail and phishing scams. Email that is sent to a third-party provider may be difficult to filter  because that provider cannot determine if the email in legitimate but email that looks like it comes from Apple should be simple for Apple to filter out at the server level and save its customers the risk of mistakenly believing Apple is in contact with them. Here’s a glaring example.

Nearly every day I get at least one email that looks very similar to this. The people sending the email obviously want to make it look like it’s from Apple. But if you look closely, you can easily determine that it’s a scam. My real question for Apple is why they can’t determine these are scams and delete them before sending them to me. I am a savvy enough user to realize that this email is fake. But many users may not realize it that easily.

If you look at the email closely, the look and feel of it looks very similar to the minimalistic email formatting thatimage Apple commonly uses. It’s only when you look at the link that the scammer is attempting to get you to click on that you see that it’s actually fake.  If you actually click that link it takes you to a page that looks just like the Apple account sign in page. I always check these links before I click on them by holding my finger down on the link if on an iPad or iPhone until it shows me where it’s taking me. You can also click and hold with a mouse on the link and see the same thing if you’re on a computer. These kind of emails come from all different companies and always look as if they’re real. But here’s my real issue with Apple.

I can see no reason why a mail provider, that is hosting email itself such as Apple, can’t determine these phishing scams are being sent out in its own name. It would seem to me that Apple would want to stop these at the server level rather than subject users to the risk of accidentally clicking. But that certainly doesn’t seem to be the case.

So it bears recommending one more time for users to be extremely careful of the email that comes to them. It only takes one casual click, and the entering of your ID information, to allow someone access to your credit cards, your stored identity information, and cause you all kinds of problems that you’ll then have to deal with.

Remember, think before you click and make email safer. But I still believe, email providers need to step up and deal with this problem. It makes perfect sense to me that Apple does so little filtering at the server level when they can’t even filter out email that looks like it’s coming from them.

How can I download a YouTube Video?

Q: I’ve been searching all over the web to find a way to insert a youtube video into a keynote presentation, but with no luck so far. Keynote will accept videos I shot with my old iPhone, but I don’t see a way to save youtube videos, although I know it can be done. I also know they should be MP4 files, but I’ll get to that later.

A: Here is the way I have found to do it. First note to the YouTube video you want to download and save the URL to the clipboard.  Now Go to http://www.tubegrabber.net.

Screen Shot 2015-03-16 at 1.02.46 PMInsert the URL in the download box and press download now.

Select either Low definition MP4 or High Definition MP4 as the format

Screen Shot 2015-03-16 at 1.03.07 PM

Press Start Download

Screen Shot 2015-03-16 at 1.03.23 PM

The video will be downloaded to your downloads folder.

Screen Shot 2015-03-16 at 1.03.37 PM

Beware of Malware installed with Java

For years, Windows users have had to deal with malware installed on their computers. One of the big ones that I see a lot is a toolbar from the company “Ask”.  Ask, once installed takes over you’re searching and adds toolbars for providing pop up messages and redirected finds when you’re looking to purchase something on the web. Many people don’t realize that this toolbar is truly malware.  It is install through various third-party installers that usually bundle at with their product and are paid by Ask.  I cannot count number of times I’ve had to uninstall this and reset the search engines for Windows users.
MacJava Ask AdwareFor a long time Mac users have won in parity with Windows users when it came to software purchased for their machines. Well Mac users can be proud the now when it comes to malware from ask they have absolute parity with Windows computers. In the latest release of Java, Version 8 update 40, Oracle has included Ask malware with the install.  Mac users that have Java installed we’ll get a notice that they have an update,  when they click the update button it will download the Java update software. This software runs do a standard install but once the install begins it pops up a dialog box that looks like the one below. Ask is depending on the fact that people are busy and will continue to just press the next button to get the software installed because they precheck the box that allows them to install the software.  It certainly is easy enough for Mac user, or a Windows user for that matter, to uncheck the box and not get this malware installed. But Malware depends upon laziness from the user and this company is counting on just that.  Most people will just hit the next button and let the software be installed, only to find out when they next run their browser that their home pages been changed, their search engine has been change, and a toolbar for Ask has been installed in their browser.

So the next time you update Java, really installer dialog box and uncheck the box to install this Ask malware.

What’s the story on cookies in your web browser these days?

Verizons-Mobile-‘Cookies’-Could-Take-the-CakeQ: How about a rule of thumb for cookies? I recently discovered that my cookies were causing login problems for a site that I use to order medications.

A: It used to be, that cookies were a real problem for browsers.  Websites would store information about you and then use it too direct you to places they wanted you to go. Some advertising still tries to do this. Have you ever searched for something you’re looking to buy only to find that many websites you go to now have it in their sidebar. It’s a little annoying but it’s the way the web works..

Over the last few years browsers have become more intelligent on how they deal with cookies. Most advertisers have realized that using your information to try to sell you something when you’re not asking really doesn’t work.  As a result I don’t necessarily believe you need to delete all of your web browser cookies as many people used to recommend.  So many websites use these cookies to make our experiences better and deleting them keeps that from happening. Not only that, legitimate websites are using cookies to assist you in being remembered, setting your preferences, and helping you to find things that are actually a real benefit.

In my opinion, the days of suggesting that you delete all your cookies, or prevent your browser from storing cookies are really over.  So my recommendation is to review your cookie settings and allow your browser to store them, or at least some of them.

Screen Shot 2015-02-26 at 1.02.37 PM

In Safari, this is under privacy preferences. As you can see from the dialog box, using “Allow from websites I visit” or even “always allow” is probably a reasonable setting.

In this case of the problem you were having where the cookie was causing problems it certainly is a time to delete it. But most web browsers give us the ability to delete individual ones rather than all the cookies.  In Safari, to remove all the cookies you would press remove all website data. But if you have a particular website you want to remove the cookie from, you can press the details button. From this dialogue.  This allows you to remove a single cookie causing a problem. Find the site you want to remove and press “Remove”.

Screen Shot 2015-02-26 at 1.06.52 PM

In Chrome, it’s a little more difficult to find. first go to preferences in chrome then scroll to the bottom and click “Show advanced settings”.  Under the privacy area press the content settings button.  This is where you find your cookie preferences.

Screen Shot 2015-02-26 at 1.08.28 PM

Now press the All cookies and site data..”  button and you’ll find where to go to delete individual cookies.  Again, find the site you want to remove, select it, and press the small “x” on the right side.

Screen Shot 2015-02-26 at 1.09.14 PM

in general cookies are not a bad thing anymore. I believe they enhance our experience on the web and make surfing easier. So don’t be afraid of cookies anymore.

Outlook sends attachments as Winmail.dat

imageQ: Many of my colleagues tell me that when I send them a PDF file as it comes to them as a file called winmail.dat. They try to open it but are never successful in being able to see the PDF.  What are they doing wrong?

A:  it’s very likely they’re not doing anything wrong. It’s quite possible your email client is telling the PDF to be sant in a format they can read.  I suspect your using Microsoft Outlook to send the email.  Out of the box outlook wants to send email in the default Microsoft RTF exchange outlook format. If the person your sending to has Outlook, they don’t have an issue.  If the mail provider has software to convert this on the fly, they don’t have a problem either. But some mail providers, particularly local Internet service providers, don’t do this and send the email in whatever form it comes in.

Fortunately, the solution is extremely simple.  All you need to do is change your settings to send mail in a more common format that doesn’t require conversion.  Here are the steps:

  1. Open up your Outlook email client.
  2. Click on File located in the upper toolbar.
  3. Select the Options setting.
  4. From here, select the Mail category.
  5. Now, under Compose messages, you want to ensure the HTML or Plain Text option is selected for the Compose messages in this format.
  6. Next, underMessage format, set When sending messages in Rich text format to Internet recipients to Convert to HTML format or Plain Test format
  7. Click OK to finish.

If that doesn’t solve the problem,Microsoft has a technical note that might assist. Here’s a link to it.

What is iTunes match?

Screen Shot 2015-02-18 at 10.31.53 AMQ:  What is iTunes match and how does it work?

A:    These days, many people have very large music libraries on their computer. It’s great to be able to choose the music you want to see based upon your mood of the day. But on our iPhones and iPads we have much less space to hold the music that we we have forcing us to make choices. But how am I going to feel today or tomorrow?.  Apple does provide a way to have all of your music available on all of your devices all of the time. Apple calls it iTunes match.

Recently, I’ve had a couple of people ask me about iTunes match. ITunes match is a service Apple provides for $24.95 per year.  ITunes match allows us to put our entire music library in the cloud and download only the songs you want to listen to at the time.

Here’s how Apple describes it….

iTunes determines which songs in your collection are available in the iTunes Store. Any music with a match is automatically added to iCloud for you to listen to anytime, on any device. Since there are more than 43 million songs in the iTunes Store, chances are your music is already in iCloud.3 And for the few songs that aren’t, iTunes uploads what it can’t match (which is much faster than uploading your entire music library). Even better, all the music iTunes matches plays back from iCloud at 256-Kbps AAC DRM-free quality — even if your original copy was of lower quality.

Once your music is in iCloud, you can play it from any of your devices. Just browse the complete list of all your music stored in the cloud and tap to play to it. You can store up to 25,000 songs in iCloud (more if songs are purchased from the iTunes Store), but only what you play or download is stored on your device. Tap the iCloud download button to download music from an artist, album, or playlist. So you have immediate access to a huge music library without having to worry about the storage space on your device.

On a computer, any songs stored in iCloud will stream over the air when played, though you can download them at any time by clicking the iCloud download button. iOS devices will start playing tracks from iCloud as they download and will store them so that you can listen to them later even if you don’t have a network connection. Apple TV only streams songs.

One great thing about iTunes match is that it’s tied to your iTunes account or your AppleID.  This way you pay the fee one time and have access to your music on all of your devices for a year.  If this ability sounds interesting to you, here is where you need to go to learn about how to subscribe.

MacOS Enhanced Dictation

Screen Shot 2015-02-18 at 10.20.42 AMOne would have to wonder why Mac OS has a harder time doing dictation than the IOS does?  I have always felt that Siri dictation on the iPad and iPhone works very well.  That doesn’t mean you don’t have to read your text. You still need to read whatever you dictate just to be sure that it got right.  One of the real enhancements to dictation in iOS8 was he ability to be able to see the text as you speak it.  But out-of-the-box, your Mac even in Yosemite doesn’t work that way. It works away IOS used to work in that you didn’t see the text until you’re finished with a dictation.

What many people don’t realize is that MacOS also has an enhanced dictation mode. Enhance dictation basically turns the dictation function into the way IOS works today. As you speak your text shows up on the screen. Enhance dictation mode is easy to turn on. If you go to system preferences, and select dictation and speech. The first step is to turn dictation on. Once you’ve done that you’ll notice there’s a check box for use enhanced dictation.  The first time you check the box your computer will download the dictation libraries and install them. Once that’s completed you’ll find whenever you dictate to your computer the text will show up as you speak.

While you’re in the dictation and speech dialogue you can also change the shortcut key. By default it’s set to press the function key twice to turn on dictation. If that keystroke doesn’t work for you you can easily change it to a few other options Apple provides.

With enhanced dictation turned on your find your Mac actually understand you a little better and you have better comfort in doing dictation because you can see the words come up as you speak. Give it a try.