Consultant Alliance

A Different Kind of Consulting

Tag: Security

  • Feel Free to Upgrade to macOS 14 Sonoma When You’re Ready

    Feel Free to Upgrade to macOS 14 Sonoma When You’re Ready

    Although we’re cautious about recommending that people upgrade to the latest major release of macOS, we think Apple has done a good enough job with macOS 14 Sonoma that anyone who wants to upgrade can do so now. That doesn’t mean you have to upgrade immediately, but there’s no major reason most people need to…

  • Stay Alert! Voice Phishing Used in Recent Ransomware Attacks

    Stay Alert! Voice Phishing Used in Recent Ransomware Attacks

    All it took for MGM Resorts International to be compromised with ransomware was a quick phone call, which some now call “voice phishing” or “vishing.” An attacker using LinkedIn information to pose as an employee asked MGM’s help desk for a password change, after which they were able to install ransomware. MGM is now up…

  • Want to Password-Protect a PDF? Follow These Best Practices

    Want to Password-Protect a PDF? Follow These Best Practices

    We periodically field questions about password-protecting a PDF to prevent the wrong people from reading it. Lawyers want to ensure that drafts of legal documents don’t fall into the wrong hands, financial advisers want to keep confidential financial information private, and authors want to prevent their writing from being shared broadly on the Internet. Others…

  • Faster Copying of Two-Factor Authentication Codes from Messages

    Faster Copying of Two-Factor Authentication Codes from Messages

    One welcome feature of Safari is its automatic detection and auto-filling of SMS-based two-factor authentication codes you receive in Messages. It allows you to complete your login quickly, without having to retrieve the code from Messages. But what if you use a different Web browser, like Google Chrome, Firefox, Brave, or Arc? Apple doesn’t allow…

  • What Should You Do about an Authentication Code You DIDN’T Request?

    What Should You Do about an Authentication Code You DIDN’T Request?

    We strongly encourage using two-factor authentication (2FA) or two-step verification (2SV) with online accounts whenever possible. The details vary slightly, but with either one, after you enter your password, you must enter an authentication code to complete the login. Although it’s always best to get such codes from an authentication app like 1Password (which enters…

  • When Should You Upgrade to macOS 14 Sonoma, iOS 17, iPadOS 17, watchOS 10, and tvOS 17?

    When Should You Upgrade to macOS 14 Sonoma, iOS 17, iPadOS 17, watchOS 10, and tvOS 17?

    September is upon us, so Apple will soon start releasing major upgrades for all its operating systems. Note that we say “start.” Apple will undoubtedly release iOS 17 and watchOS 10 alongside new iPhone and Apple Watch models in mid-September. The company hasn’t said when it will release iPadOS 17, although it’s likely to accompany…

  • Beware Executive Imposter Scams Aimed at New Employees

    We’re hearing about new hires who receive an email or text from someone claiming to be the CEO of their new company, asking the employee to carry out some small task like sharing personal information, purchasing a gift card for a client, or wiring funds to another business. The new employee, eager to make a…

  • Legitimately Worried That You’re Being Targeted Online? Try Lockdown Mode

    Legitimately Worried That You’re Being Targeted Online? Try Lockdown Mode

    Most people fall into one of two extremes when it comes to device security. Many believe they’re not interesting enough to be targeted by online attackers and thus don’t take sensible precautions, like making sure every website account is protected with a strong, unique password. (Most attacks these days are bots, so whether you’re interesting…