May 29, 2018
Time to Reboot your Routers
It was recently revealed that a group named the Sofacy Group has been able to infiltrate hundreds of thousands of routers in over 50 countries. Many major manufacturers such as Linkysys, Netgear and TP-Link have already been found to be compromised. A full list of devices has not been released but it is believed that a large number of manufacturers and models have been infected by the malware, called VPNFilter.
The Sofacy Group aka A.P.T. 28 and Fancy Bear, is believed to be under the direction of Russia’s military intelligence agency and is best known for being connected to the hacking of the Democratic National Committee prior to the 2016 Presidential election.
Effects of the VPNFilter malware include data surveillance, using your device to continue the spread to other devices, cutting off internet access and more.
The good news is that the FBI has already taken action to seize the domain used to communicate back to the originators in order to reduce further spreading.
Reducing the effects on your devices can be done by rebooting your router but, as always, the firmware should be kept current in order to provide the best protection. Additionally, any routers using default passwords should be changed to a more secure choice.
If you unfamiliar with how to reboot your router (which can be done by unplugging for 30 seconds) or how to upgrade your firmware we are happy to assist you in the process.
Confirmed list of infected devices: (this list does not include all affected devices)
• Linksys E1200
• Linksys E2500
• Linksys WRVS4400N
• Mikrotik RouterOS for Cloud Core Routers: Versions 1016, 1036, and 1072
• Netgear DGN2200
• Netgear R6400
• Netgear R7000
• Netgear R8000
• Netgear WNR1000
• Netgear WNR2000
• QNAP TS251
• QNAP TS439 Pro
• Other QNAP NAS devices running QTS software
• TP-Link R600VPN
May 25, 2018
Windows 10 Updates
It is time for another round of big Windows 10 updates to roll out. With the recent 1803 update, we have seen some issues with clients that use Avast or AVG antivirus programs. Several computers have come in not being able to completely boot up after the update was performed. We were able to get into the user profile to see that the update had completely botched the Windows installation, rendering it useless. There have been other reportable instances of this occurring with both Avast and AVG.
As with any large Windows update, it is recommended that a full backup of the computer be performed and any antivirus protection that may interfere with the update be turned off. It may also be necessary to uninstall the antivirus completely.
If you find yourself prompted with an update, make sure to follow the proper steps to ensure the installation goes smoothly or call us so that we can assist you with the update. If you are on Avast or AVG, this is a great time to consider our We Care Computers Managed Services with World-Class Bitdefender Antivirus.
Call us at 860-836-4191 for more information.
May 9, 2018
Scareware – What is it and how do you get rid of it?
What is it?
Scareware is malicious software that tricks computer users into visiting malware-infested websites. The reason it has this name is because it is designed to scare you and make you think there is something wrong with your computer. The good news is that this message is almost always just a persistent pop-up that stays in front of other windows.
How do I get rid of it?
The best way to get rid of these messages is to follow these steps:
Note: You will lose all unsaved work that had been done during your internet browsing session.
1. Hit the ctrl-alt-del buttons at the same time or right-click the time in the bottom right hand corner of the screen and click Task Manager in the menu that pops up.
2. In the window that opens, left-click the name of the web browser you are using. The most common choices are Google, Chrome, Firefox and Internet Explorer.
3. Click End Task.
4. Reopen the web browser and choose to not restore closed pages if the option is given.
1. Hit the command-option-esc buttons at the same time or left-click the Apple menu in the top left-hand corner of the screen and click Force Quit in the dropdown menu.
2. In the window the opens, left-click the name of the web browser you are using. The most common choices are Google, Chrome, Firefox and Safari.
3. Click Force Quit.
4. Reopen the web browser and choose to not Restore closed pages if the option is given
These messages are most commonly received by clicking on a malicious ad or mistyping the name of a website (e.g. amazno.com, mircosoft.com, facebok.com).
The hope of those that put these messages there is that you will call the number in the warning. They will tell you that you have a serious problem with your computer and that they can help. They will request access to your computer by using a remote desktop application. Once in your computer they can copy files from your computer to access confidential information or use benign technical information to attempt to convince you to buy counterfeit software from them. There are many ways that they can make money from this scam but the important thing to remember is that there is a reason it is called SCAREWARE.
If you need help with any unwanted popup message, please call us at 860-836-4191.
February 22, 2018
Welcome to our new website! We are introducing a new exciting and modern design to our logo and website. Please send any comments/suggestions to firstname.lastname@example.org. Thank you for you continued support.
Unlimited Monthly Maintenance Plans
We Care Computers now offers an ALL INCLUSIVE/PLATINUM Monthly Maintenance Plan. With this package we will monitor your systems, back up your files, protect you from malicious web traffic, update your servers and much more.
The all-inclusive plan includes:
- Remote help desk support
- Onsite repairs – normal onsite repair for hardware malfunctions/minor repairs
- Server support – remote and onsite
- Switch and firewall management
- Remote monitoring/management of all workstations and servers:
- Remote monitoring
- Antivirus protection
- Web protection
- Patch management
- MOB – 500gb per server
- Monthly reports
- And Much More
Call us at 860-836-4191 for more information.