To ensure smooth operation during power outages, the company uses battery backups in most of its garage door openers. Replacing these batteries every one to two years is recommended for optimal performance.

A simple way to confirm whether your garage door is running low on battery is by checking the LED indicator that represents the battery status. It turns red when the battery needs replacement.

In this guide, we’ll show you how to change the battery in your Chamberlain garage door opener.

Things you need before changing the battery

Chamberlain myQ Garage Door Opener

Chamberlain's automatic garage door openers are powered by myQ. That gives you app control and linking to Amazon Key, for in-garage deliveries to defeat porch pirates.

Check Availability

KnowTechie is supported by its audience, so if you buy something through our links, we may get a small share of the sale.

Before changing the battery in your Chamberlain garage door opener, make sure you have the following items with you:

• Eye protection, gloves, and a screwdriver with suitable bits.
• Compatible replacement battery for your garage door opener (Check your device’s user manual).

You also might want a stepladder, as your garage door opener is on the ceiling. Even if you’re tall enough to reach the device, the socket for AC power might be out of reach.

Step-by-step guide to changing the Chamberlain myQ garage door battery

Check the battery status LED on the garage door opener. It should be solid green or flashing green. This indicates that the battery is charging and replaced successfully.

Wrapping Up

Changing the battery in your Chamberlain garage door opener takes some time, but it can be done without special tools.

Now you know how to confidently replace the battery in your Chamberlain myQ garage door opener.

Have any thoughts on this? Carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

• Own this garage door opener? Shut it down; hackers can target it
• NSPanel Pro: Sonoff’s answer to major smart home ecosystems
• How to hide AirTags inside a car
• How to update AirPods firmware

The post How to change a Chamberlain myQ garage door opener battery? appeared first on KnowTechie.

Seems harmless, right? But lurking beneath are potential threats hidden in these innocuous-looking ports – and not just two shots of espresso kind. 

Everyone said we’d have flying cars in 2023, but instead, we got a future where even your sacred morning coffee ritual is under threat from invisible data thieves. Thankfully, OSOM has risen like a phoenix from Essential’s not-so-essential ashes. 

OSOM Privacy Cable

$29.99

Introducing the OSOM Privacy Cable. With a simple switch, this cable disconnects USB data pins, safeguarding your devices from potential threats while charging in public. Trusted by security researchers and agencies, it helps prevent "juice jacking" and provides peace of mind.

Check Availability

KnowTechie is supported by its audience, so if you buy something through our links, we may get a small share of the sale.

06/27/2023 01:33 pm GMT

Their mission? To shield us from these digital pickpockets. And their weapon of choice in this cyber warfare? A seemingly innocent USB-C Privacy Cable.

Now you might be wondering, “How does it work?” Well, it’s almost as simple as ordering your favorite latte.

This cable comes equipped with a switch that lets you control the data flow between your device and whatever suspicious-looking port you’re plugged into.

Flip between data transfer or charging-only modes

Flip it one way for data transfer; flip it the other way for charging only – no data exchange allowed. It’s like having a bouncer at the door of your device deciding who gets to party inside.

This isn’t some fancy tech toy designed to gather dust; it’s as essential as that caffeine shot you need every morning.

“Our Privacy Cable is an elegant solution for consumers to control their data flow,” says Mary Ross, Chief Privacy Officer at OSOM. “With one flip of a switch, users reclaim control over their device.”

So now we can all play James Bond during our coffee breaks or airport layovers. This nifty cable promises reliable protection against those cyber villains who’ve found a playground in every corner of our connected lives.

Ready for this slice of spy life minus the shaken-not-stirred martinis? It’s available right now on Amazon for $30 – cheaper than most monthly streaming subscriptions and arguably more useful!

So here it is, folks—a dash of cynicism served with your daily dose of tech news. In today’s world, where privacy seems like an afterthought, OSOM offers us all a chance to fight back one charge at a time.

OSOM Privacy Cable

$29.99

Introducing the OSOM Privacy Cable. With a simple switch, this cable disconnects USB data pins, safeguarding your devices from potential threats while charging in public. Trusted by security researchers and agencies, it helps prevent "juice jacking" and provides peace of mind.

What We Like:

• Enhanced Privacy: Protects devices by disconnecting USB data pins, ensuring privacy while charging in public.
• Counteracts "Juice Jacking": Prevents data theft and malware installation from compromised public charging stations.
• Easy to Use: Convenient switch control for data flow management.
• Data Transmission Indicator: Flashing light indicates active data transmission.
• Durable and Reliable: Built with sturdy materials for long-lasting use.
• Fast and Safe Charging: Supports USB Power Delivery at up to 60W.

Check Availability

KnowTechie is supported by its audience, so if you buy something through our links, we may get a small share of the sale.

06/27/2023 01:33 pm GMT

Have any thoughts on this? Drop us a line below in the comments, or carry the discussion to our Twitter or Facebook.

Editors’ Recommendations:

• This 3-in-1 charging cable can charge 3 devices at once, now only $15
• AtlasVPN deal saves you an unreal 85% on a 2-year subscription
• Hurry, this Amazon deal drops the latest Echo Dots down to $28
• Carl Pei reveals a new Nothing Phone 2 transparent USB-C cable

Just a heads up, if you buy something through our links, we may get a small share of the sale. It’s one of the ways we keep the lights on here. Click here for more.

The post OSOM’s $30 Privacy Cable protects you from meddling JuiceJackers  appeared first on KnowTechie.

These devices are extremely vulnerable to hackers and it’s time to consider unplugging the device until this mess gets sorted out.

Apparently, any hacker or hobbyist with a little technical know-how can prance down the street and simply open your garage door at the push of a button.

Now, you might wonder if a sophisticated hacker or bot network is behind this.

Surprisingly, no – the researcher who made the discovery found that a simple $80 remote control was all it took to exploit the vulnerability.

Here’s what it looks like

Things get a tad technical from this point, but the core issue revolves around Nexx devices designed to operate garage doors.

It turns out, the gadget relies on an easily discoverable password and exposes personal information such as names and email addresses.

It even inadvertently instructs others on how to open doors or operate plugs.

Sam Sabetan, the researcher who initially uncovered the problem, took to Medium to express his concerns and highlight the lack of action being taken to address the issue.

“Nexx has consistently ignored communication attempts from myself, the Department of Homeland Security, and the media,” wrote Sabeten in a post published on Medium. “Device owners should immediately unplug all Nexx devices and create support tickets with the company requesting them to remediate the issue.”

How many customers are affected?

As it stands, the researcher says there’s about 40,000 of these garage door openers out there and urges customers to unplug them until the company figures this out.

But as we can see, they’re not even taking ownership of it.

Thankfully, per Ars Technica, the US Cybersecurity and Infrastructure Security Agency issued an advisory that suggests users take defensive measures, including:

• Minimizing network exposure for all control system devices and/or systems, and ensure they are not accessible from the Internet.
• Locating control system networks and remote devices behind firewalls and isolating them from business networks.
• When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize VPN is only as secure as its connected devices.

For those eager to delve deeper into the technical details, we recommend reading Sabetan’s Medium article and this informative Ars Technica piece to truly grasp the ins and outs of the situation.

For me, the main takeaway is for owners to unplug these devices until all of this is sorted out, if that ever happens.

We reached out to Nexx but they did not immediately respond to our request for comment. We’ll update the post if we hear anything back. 

Editors’ Recommendations:

• A major new Android bug lets hackers take over your devices
• Google Home speakers were at risk of eavesdropping hackers
• ‘Bahamut’ hackers target Android users with phony VPN apps
• A hacker leaked tons of GTA 6 early gameplay footage (updated)

Just a heads up, if you buy something through our links, we may get a small share of the sale. It’s one of the ways we keep the lights on here. Click here for more.

The post Own this garage door opener? Shut it down; hackers can target it appeared first on KnowTechie.

The culprit? Multiple zero-day vulnerabilities in Samsung’s Exynos modems.

That’s right – just the victim’s phone number is all an attacker needs to remotely compromise a victim’s device.

According to TechCrunch, Google’s Project Zero team discovered a total of 18 zero-day vulnerabilities, four of which are severe enough to allow an attacker to execute remote code with no user interaction.

Project Zero’s Tim Willis wrote in a blog post:

“With limited additional research and development, we believe that skilled attackers would be able to quickly create an operational exploit to compromise affected devices silently and remotely.”

In other words, skilled attackers could easily create an operational exploit to compromise affected devices silently and remotely. Scary stuff, right?

So, which devices are affected by these vulnerabilities? Well, it’s not just a few devices – there are dozens. And you know what? Even Google’s latest smartphones aren’t safe from cover.

Here’s the list of products that Google provided:

• Google’s own Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, and Pixel 7 Pro
• Samsung devices in the S22, M33, M13, M12, A71, A53, A33, A21s, A13, A12, and A04 series
• Vivo devices in the S16, S15, S6, X70, X60 and X30 series
• Any vehicles using the Exynos Auto T5123 chipset

Yea, that’s a lot of devices.

A security researcher on the Project Zero team, Maddie Stone, confirmed in a tweet that Samsung was given 90 days to release a patch, but none has been forthcoming.

So, if you own one of the affected devices and don’t want to wait for a security patch, Google advises you to turn off Wi-Fi calling and Voice-over-LTE (VoLTE) in your device settings.

If you need help, we made a guide here on disabling Wi-Fi Calling on Samsung devices. Additionally, we’ll share them below, just in case.

How to turn off WiFi calling on a Samsung phone

You can find the WiFi calling toggle in the settings of your Samsung phone. But you don’t get there through the traditional settings app.

Instead, you can start by opening the Phone app on your phone.

And while you’re at it, could you check to see if your device has any updates waiting to be installed.

According to Tim Willis, head of Project Zero, there are still 14 zero-day exploits that require either a malicious mobile network operator or an attacker with local access to the device.

The eye of the storm

These aren’t as severe, but Samsung will still need to produce a patch to fix these security vulnerabilities as soon as possible.

In the meantime, stay vigilant, Android users. Keep your devices updated and follow Google’s advice to turn off Wi-Fi calling and VoLTE.

And remember, as Willis said in a blog post:

“With limited additional research and development, we believe that skilled attackers would be able to quickly create an operational exploit to compromise affected devices silently and remotely.”

Have any thoughts on this? Drop us a line below in the comments, or carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

• New Riot Games hack will delay future game updates
• DraftKings hack exposes 67,000 users’ personal and financial info
• Chrome users: Update now to patch active zero-day vulnerability
• Update Google Chrome now – there are two new zero-day vulnerabilities

The post A major new Android bug lets hackers take over your devices appeared first on KnowTechie.

Editor's Choice	Runner up	Popular Choice
4.5	4.5	4.3	4.0	4.0	4.0
NordPass	1Password	LogMeOnce	Sticky Password	IronVest (previously Blur)	Dashlane
Check Price	Check Price	Check Price	Buy Now	Learn More	Learn More

Editor's Choice

4.5

NordPass

Check Price

Runner up

4.5

1Password

Check Price

Popular Choice

4.3

LogMeOnce

Check Price

4.0

Sticky Password

Buy Now

4.0

IronVest (previously Blur)

Learn More

4.0

Dashlane

Learn More

As long as technology exists in the spaces it does, like the internet and the cloud, passwords will always be necessary.

We have been changing them up in recent years, like using fingerprints or facial recognition to get into some devices; otherwise, passwords remain largely the same for most programs or website accounts.

Trying to pick a password the website or service will accept is a task. Remembering what you chose is another problem entirely.

One site may require a certain amount of letters, numbers, and unique characters, while another asks for a mix of upper- and lower-case letters.

Having different passwords for different sites is a security best practice, but it’s useless if you can’t remember them. That is where password managers come in to save the day.

What are password managers?

As its name suggests, a password manager is a system that keeps track of all your passwords.

The manager is a program that stores the passwords and sometimes auto-fills them in when you’re logging into sites, thanks to browser extensions.

On the surface, a password manager may sound like a bad idea. If all your passwords are available in one spot, and a single password is all that stands between them and a hacker attaining access, there seems to be little point.

However, as long as you use a unique password for the manager itself, there’ll be no problems.

The manager will even help you discover new ways to make stronger passwords, providing additional layers of security rather than peeling them away.

Many managers encrypt themselves across various devices, so you can take the program anywhere.

How to create secure passwords

A manager can go a long way, but having a strong password on your accounts can be invaluable against malicious activity.

A secure password should ideally be longer than 12 characters and contain a mix of letters, numbers, symbols, and spaces.

It would be best if you also avoided password reset questions that ask for any personal information that might be easy to find on social media.

Two-factor authentication is among the most secure mobile authentications, which can also come in handy. Passwords could still get stolen or decrypted, so ensuring your login takes multiple steps can save your accounts.

E-mail or text verifications are common, fast, and easy. Using these with a password manager can give you extra security.

The best free password managers

Password managers aren’t difficult to come by, but what if you don’t have time to wade through them all and find the best one for you?

Allow us to step in and lend a hand. We’ve compiled a list of the best password managers available for you to try for free.

Dashlane

Dashlane comes with two-factor authentication and the power to change many passwords simultaneously.

The best thing about this manager is its simplicity and ease of use, allowing automation to change passwords immediately if a site gets hacked.

Dashlane is free but offers premium versions at either $5 or $10 monthly.

Premium offers web monitoring, secure VPN access, identity theft insurance, and credit monitoring.

Dashlane

4.0

Dashlane is a sleek and feature-packed password manager that offers a great balance of security and convenience. With a clean and user-friendly interface, it makes managing your password a breeze.

Learn More at Dashlane Best Current Offer

KnowTechie is supported by its audience, so if you buy something through our links, we may get a small share of the sale.

1Password

1Password is a well-known, favorite manager with password generators and a watchtower service that notifies you of website breaches.

1Password can sync to Dropbox, iCloud, and other computers and is available for Windows, Mac, iOS, and Android.

There is a free 30-day trial and a premium version costing from $3 to $5 a month. Premium offers guest management and account recovery.

1Password

4.5

Starts at $2.99 per month

1Password is one of the best free password managers available, offering a robust set of features, including multi-factor authentication, password sharing, and a secure password generator.

Quick Verdict: 1Password is an excellent password manager with a great user experience across its apps and browser extensions. It’s fast, smart, and secure, and worth the asking price.

Pros:

• Intuitive user interface and experience
• Seamless across different platforms
• A lot of great features

Cons:

• No free tier
• Pricing may be a little steep for light users

Who is this good for?: If you’re someone who juggles a lot of passwords across multiple devices, and aren’t happy with the free options, 1Password is definitely the password manager for you.

Who is this not good for?: Who is it not for? If you don’t feel the need to have a dedicated password manager or are paranoid about third parties having your data, 1Password is not for you.

Try 14 Days FREE Read our Review

KnowTechie is supported by its audience, so if you buy something through our links, we may get a small share of the sale.

Sticky Password

Sticky Password supports many browsers, including Pale Moon, Yandex, and SeaMonkey, as well as the more common ones.

This manager supports Face ID, fingerprint scans, and cloud encryption, all on a single secure platform.

The premium version is $30 a year or $150 for life, offering password sync, sharing, backups, and donations to save endangered manatees.

Sticky Password

4.0

Sticky Password Manager is a solid choice for a no-nonsense password manager. It's a great option for anyone who values simplicity and reliability over bells and whistles.

Check Price See Current Offer

KnowTechie is supported by its audience, so if you buy something through our links, we may get a small share of the sale.

IronVest (previously Blur)

IronVest (previously Blur) rounds out this list with password generation, tracker blocks and the ability to mask your email address.

This manager also supports auto-fill, ad blockers, and data collection. The premium version ranges from $40 to $100 a year and offers masked credit card numbers, masked phone numbers, backup, and device sync.

IronVest (previously Blur)

4.0

IronVest password manager offers decentralized infrastructure, biometric authentication, and goes beyond traditional password management to protect accounts and secure personal information.

Learn More

The best premium password managers (paid alternatives)

If you don’t mind paying a fee for a password manager, there are some strictly paid alternatives to the free options mentioned above.

NordPass

NordPass is one of the best password managers available.

The program keeps all of your passwords safe and organized. It also helps you identify weak passwords and leaked data from breaches.

It works with all devices for easy use across your day-to-day life.

NordPass is available for $1.99 per month for a one-year plan or $1.49 per month for a two-year plan, so it won’t break the bank.

NordPass

4.5

Starts at $2.29

NordPass is our go-to choice for password management, it's sleek, user-friendly, and packs a punch when it comes to security. Sure, it's on the pricey side, but the peace of mind it brings is totally worth it.

Quick Verdict: NordPass offers strong security features and an easy-to-use interface with great business options. However, it's pricier than competitors, and the free version has limitations compared to others. Overall, it's still among the best choices available right now.

Who is it good for?:

• People who struggle to remember multiple passwords
• Useful for couples or families who need to share passwords securely and efficiently
• Businesses that prioritize strong security features and ease of use in managing password

Pros:

• Easy-to-use interface that only requires one master password
• Its data breach scanner and actionable password health report help users identify weak and compromised passwords
• Supports secure credential sharing

Cons:

• The free version has limitations
• It's a bit more expensive than some of its competitors

Check Price

KnowTechie is supported by its audience, so if you buy something through our links, we may get a small share of the sale.

LogMeOnce

LogMeOnce is another relatively inexpensive password manager.

It offers encrypted storing, emergency access, live password sharing, and more. Plus, there are separate business plans for users managing passwords across many people.

The company offers services starting at $2.50 per month. Plus, there’s a free tier that you can use to try the service out before you buy.

LogMeOnce

4.0

Looking for a password manager that won't break the bank? Look no further than LogmeOnce. And if you're not quite ready to commit, the company offers a free tier to test drive the service before making a purchase. 

Check Price

KnowTechie is supported by its audience, so if you buy something through our links, we may get a small share of the sale.

Safety and Security

These days, password managers are automatically available on our devices or browsers, so there’s no excuse not to use them.

Apple products with iOS 11 or higher have them by default, and Chrome allows users access to one built into the browser.

Even the best free password managers can be a mixed bag if you don’t take proper safety measures to begin with. But they can offer a lot more security when used correctly.

If you’re on the fence, try one of these free password managers or one already on your device and see what all the fuss is about for yourself.

Do you use a password manager? Which one is your go-to? Let us know down below in the comments or carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

• How to export LastPass data and switch password managers
• Here are the most used passwords in 2022
• Your browser’s spell checker is reportedly leaking passwords
• Chrome’s password manager now looks and works better

Just a heads up, if you buy something through our links, we may get a small share of the sale. It’s one of the ways we keep the lights on here. Click here for more.

The post The best free password managers (2023) appeared first on KnowTechie.

Vice reporter Joseph Cox was recently able to access their bank account over the phone using nothing but an AI-generated voice and their birthday.

Of course, the twist is that Cox never actually spoke to the automated verification system. Instead, they used readily available (and free!) AI tools.

The reporter managed to trick the system through multiple prompts and eventually gained access to financial information such as their balance and recent transactions.

Of course, Cox did need to know their own birthday. This could cause issues for hackers, but between social media and data breaches, it’s not a far stretch to believe they would have access to additional information.

AI-generated technology is on the rise, including voice tools.

Microsoft has a tool that can clone a person’s voice with just three seconds of audio. Hell, Samsung boasts that its new Bixby tool can mimic your voice for phone calls.

With the advancement of AI voice tools, banks and other companies will need to take a long and hard look at voice verification tools. It’s clear from this report that they are already lagging behind.

Have any thoughts on this? Drop us a line below in the comments, or carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

• Microsoft’s ChatGPT-powered Bing search begins initial rollout
• Sony introduces ‘unbeatable’ AI racer to Gran Turismo 7
• Student creates tool that exposes AI-generated text
• Spotify launches an AI DJ that talks through its music picks

The post Reporter breaks into bank account with AI-generated voice appeared first on KnowTechie.

Announced by Apple, the security update for macOS Ventura includes a WebKit fix (which deals with Safari) that addresses malicious web content.

You can read the exact messaging from Apple below:

Available for: macOS Ventura
Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Description: A type confusion issue was addressed with improved checks.
WebKit Bugzilla: 251944
CVE-2023-23529: an anonymous researcher

Additionally, the iOS and iPad update includes the same WebKit patch. All devices are also getting some minor bug fixes with the update, as well.

How to update iPhone, iPad, and Mac

If you need a step-by-step guide to updating your Apple products, don’t worry. We’ve got you covered:

Follow along with any of the guides above to get your devices up to date. On iPhone and iPad, you’ll find the update in Settings > General > Software Update.

On Mac, you’ll find the update under System Preferences > Software Update.

If you don’t see the update on your device, check back in a couple of hours. Typically, Apple rolls out these updates to users gradually, so there might be a slight delay.

Have any thoughts on this? Drop us a line below in the comments, or carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

• Apple reportedly delays rumored iPhone subscription plan
• How to customize app icons on iPhone
• iPhone trade-in values are worth less now, but Macs get a bump
• MLS Season Pass brings all Major League Soccer games to Apple TV

The post Apple users: Update your iPhone and Mac to fix an active exploit appeared first on KnowTechie.

Eufy, an affordable security camera brand from Anker, is under fire for security concerns regarding uploaded footage.

The brand markets itself as a local security system where footage is stored locally, and not uploaded to the cloud. But a recent discovery challenges that entire premise.

Paul Moore is a security consultant. Last week, Moore discovered a significant flaw in how the Eufy Doorbell Dual Camera had been storing data.

Moore shared a video showing how the camera had been uploading and storing images of faces on the cloud. The camera did this despite Moore not signing up for a Eufy Cloud Storage account.

The flaw was later confirmed by other users and recreated by Android Central. The publication reached out to Eufy, and the company explained what exactly was happening that required these uploads.

Eufy says this particular flaw comes from push notifications. If a user opts to have push notifications from the app for motion detection, Eufy temporarily uploads the thumbnail to its servers before sending it out.

Moore had turned on the push notification setting for the Doorbell Dual Camera. Eufy’s default notification settings are text-only, and they don’t require the uploaded thumbnail.

Eufy plans on addressing the wording of its push notification setting to make it clear that it has to temporarily upload thumbnails. It also says it will change its marketing materials to better reflect its use of the cloud.

Eufy has found itself the center of controversy in the past. Users discovered a strange glitch in the cameras in early 2021 that allowed people to see into other users’ homes.

The company quickly addressed that problem, and nothing terrible seemingly came out of it. I would imagine it does the same this time, delivering on the changes it promised.

Have any thoughts on this? Carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

• GoPro’s new action cameras are perfect for social media videos
• Police in one city are using Ring Doorbells to monitor video livestreams
• Kangaroo’s new weatherproof security camera can go anywhere you need it
• Review: Akaso Brave 8 action camera

The post Eufy cameras secretly uploaded footage to cloud (updated) appeared first on KnowTechie.

For context, LastPass is one of the world’s most popular password management apps. You store your passwords in the app, so you don’t have to remember them all.

Back in November, LastPass reported an incident where they believed hackers gained access to their systems.

According to GoTo, the November security breach resulted in hackers making off with some of the encrypted data belonging to its customers.

Here’s the snippet of GoTo’s announcement below:

“Our investigation to date has determined that a threat actor exfiltrated encrypted backups from a third-party cloud storage service related to the following products: Central, Pro, join.me, Hamachi, and RemotelyAnywhere,” GoTo CEO Paddy Srinivasan, wrote in a blog post.

“We also have evidence that a threat actor exfiltrated an encryption key for a portion of the encrypted backups. The affected information, which varies by product, may include account usernames, salted and hashed passwords, a portion of Multi-Factor Authentication (MFA) settings, as well as some product settings and licensing information. In addition, while Rescue and GoToMyPC encrypted databases were not exfiltrated, MFA settings of a small subset of their customers were impacted. 

In case you missed that last key piece: “affected information, which varies by product, may include account usernames, salted and hashed passwords, a portion of Multi-Factor Authentication (MFA) settings.”

In other words, that means usernames, passwords, and other sensitive settings. That’s literally all the things GoTo’s LastPass is supposed to keep away from hackers.

On a lighter note, Srinivasan adds that some passwords were scrambled to make it harder for the hacker to access them.

Here’s my question: if they could penetrate LastPass and other services, what’s stopping them from unscrambling the data?

Who’s responsible here? Sure, obviously, the hackers. But that’s what hackers do, they hack. So who else is a fault here?

Could it have been the company whose sole purpose is keeping people’s information and data secure and private, like GoTo?

There’s a pattern here, and it’s pretty simple really: LastPass is really bad at offering the core services they promote to its customers. Seriously, this isn’t a one-time incident. Look at some of the stories we covered in the past two years:

Yea, certainly is not a good look.

Next steps for LastPass customers

So what should LastPass customers do in the meantime? My first suggestion? Cancel whatever subscription you have with LastPass. They’re clearly not in a position to handle your data.

Second, change all of your passwords. Every single one of them. And lastly, look for a new password management system that doesn’t bleed out sensitive data.

And if you plan to cancel LastPass and need a new option, we recently published this updated piece of the best free password managers.

If you were to ask me, I’m bringing my business to NordPass from the folks at NordVPN, just because I know they haven’t suffered three data breaches in the past year.

And if you decide to stay with LastPass, at the very least, GoTo is putting some extra security systems in place.

For example, resetting affected users’ passwords and migrating accounts to a more advanced Identity Management Platform with enhanced security features.

Now, excuse me while I go cancel my LastPass subscription.

Are you a LastPass customer? Have any thoughts on this? Drop us a line below in the comments, or carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

• Twitter data breach exposes millions of email addresses
• Plex users: Reset your password – a data breach has you at risk
• Twitter will now remember your preferred timeline on desktop
• New Riot Games hack will delay future game updates

Just a heads up, if you buy something through our links, we may get a small share of the sale. It’s one of the ways we keep the lights on here. Click here for more.

The post LastPass owner confirms worst fears: stolen customer vault data appeared first on KnowTechie.

Now, before you tell everyone on your contact list to unplug their devices, Google patched the issue and fixed the speaker’s vulnerability.

Alright, now some background. Security researcher Matt Kunze noticed a loophole allowing any clever hacker to install a “backdoor” account on your smart speaker.

More importantly, Kunze found that bad actors could potentially remotely send commands to the device, listen in on your every word, and even snoop on your other smart devices.

Kunze shows how he remotely listened in on a Google Home speaker

Here’s a quick video Kunze uploaded to YouTube showing how he can remotely tap into the device, eavesdrop, and record a conversation.

Before the fix, all an attacker had to do is be within wireless range, and boom – they had full access to your life.

And as if that wasn’t bad enough, they could potentially expose your Wi-Fi password or gain access to other devices.

Thankfully, the issue is now patched. Kanze brought this to Google’s attention, and the company rewarded him with $107,500 for responsibly disclosing the vulnerability.

Don’t panic – there’s no cause for concern

Now, before you go running for the hills (or at least unplugging all your gadgets), it’s worth noting that these types of vulnerabilities are rare.

In fact, Kunze states that Nest and Home devices are secure for the most part and don’t have many weaknesses for attackers to exploit.

So, you can probably keep your smart speaker plugged in without worrying, at least for now. To learn more, check out Kunze’s blog detailing everything in his research.

Have any thoughts on this? Carry the discussion over to our Twitter or Facebook.

Editors’ Recommendations:

• Google and Amazon allowed creepy eavesdropping apps to its smart speakers
• How to prevent hackers from attacking your system
• Hackers post thousands of passwords to internet file sharing site
• Hackers are making a killing selling stolen Fortnite accounts on the dark web

Just a heads up, if you buy something through our links, we may get a small share of the sale. It’s one of the ways we keep the lights on here. Click here for more.

The post Google Home speakers were at risk of eavesdropping hackers appeared first on KnowTechie.