Homograph attacks

Ransomware attacks continue to devastate countries around the world.  Right now, CBS News is reporting that Hackers demand $70 million to end biggest ransomware attack on record. Businesses like yours are among those affected:

CEO Fred Voccola of the breached software company, Kaseya, estimated the victim number in the low thousands, mostly small businesses like "dental practices, architecture firms, plastic surgery centers, libraries, things like that."

There are truly evil people in this world, and it's discouraging and overwhelming to maintain constant vigilance against their attacks. However it's our only option, and today we'd like to expose one of their many tricks, which is called a homograph attack.

This trick is based on different alphabets.  The easiest example is the lowercase letter a in our English alphabet.  Unfortunately, the Russian (Cyrillic) alphabet also has a letter a which looks the same, but is coded differently.

Your computer, which only deals in numbers, sees the English a as 97:

It sees the the Russian a as 160:

Therefore, a hacker could use the 160 a for an URL like www.factcheck.org.  It would look perfectly OK, even if you hovered over it in an e-mail, but would lead to a completely different website. This bogus website would most likely look exactly like the real one, but would have malicious code which could lead to a ransomware attack, or simply steal your login and password for your PayPal or bank account.

The Cybersecurity and Infrastructure Security Agency, a part of the U.S. Department of Homeland Security, recommends three steps to avoid falling victim to the scheme:

• Avoid clicking on links and instead type the web address into an internet browser.
• Keep web browsers up to date because older versions have fewer protections in place.
• Hover over links before clicking on them to see the true destination. If the web address is unfamiliar, it might be an attempt to deceive you.

And it's always recommended to have antimalware software installed. The health of your system is as valuable as your own. 

Stay safe.

Tabs in Safari

Almost all web browsers, like Firefox and Chrome, use the Tab key in a very useful way: each time you press Tab, your cursor will move to the next screen element. For example, in the screen shown below, you can tab from date to date to radio set to toggle box, stepping through the screen without constantly having to move your hand from the keyboard to the mouse.

However, we noticed that Safari on Mac machines behaves differently. When you press Tab, it skips all toggle boxes and radio sets, only positioning to places where you can type characters using your keyboard. This is awkward and slower than other browsers. Don't worry, though, we know a way to fix this and make Safari work in the same streamlined way as other browsers!

1. Choose Safari → Preferences or press command key and comma (⌘ +  ,) simultaneously to open the browser settings window.

2. Navigate to Advanced.

3. Select Press Tab to highlight each item on a webpage.

 

That's it! From now on Safari will carefully tab through each part of the screen.