Protecting Your Data From Theft, Corruption and Loss


DATA ENCRYPTION SERVICE

I really only promote one type of encryption service. This type of encryption is called by various names, such as .... volume encryption, whole disk encryption, container encryption, partition encryption etc. These are the main features ......

  • Unlimited size - encrypt massive amounts of data with ease. Ten terabytes which is about as much one can fit into a PC is no problem
  • Great for encrypting flash drives and removable hard disks
  • Encryption is always automatic. Once you either power down the system, switch off, hibernate or suffer a power failure, everything is automatically encrypted.
  • Once you disconnect a flash drive or hard disk, the contents are automatically encrypted.
  • Encrypts the entire C: drive including the operating system. Pre-boot authentication is required. This is essential for laptops. If a laptop is stolen, it will be almost valueless to the thief.
    They will have no option but to purchase a new operating system and software, format the hard disk, find all the drivers (not easy) and install everything from scratch and then update everything.
    Of course the above would not apply if the laptop has a very weak password or the password was written down and was with the laptop.
  • You only need to enter your password once per session. After that, all encryption and decryption is fully automatic.
  • A completely hidden decoy operating system can be installed.
  • Strong Anti-Keylogger features are built in.
  • The secure backup of encrypted files is as easy as backing up any other files.
  • Special options .... e.g. you can set up an encrypted data container for say five users each with their own private password. You can then then configure the container to be openable by say any three of the five users.
  • Secure deletion of any files (encrypted or unencrypted). If you merely delete a file and then delete it from the recycle bin, it's still there! You need to overwrite it multiple times to totally erase it. Wiping of free space is also important.

Please note the following ....

  • I will ensure that any important passwords that you use, will be very strong, yet quite easy to remember.
  • You can be absolutely confident that I will never know what any of your important passwords are. I always turn my back or leave the room when you are entering or using these passwords.
  • Your encrypted data is your business and your business only. I just show how to encrypt, secure and backup encrypted data.
  • In a single user environment, if you ever lose or forget your password you are in trouble. Your data is gone and lost for ever. No amount of computer processing will ever it recover it!
  • In a corporate environment, password loss is not a problem if things are setup properly at the beginning. With administrative and multi-user passwords, data can be recovered and user passwords reset.

Contact me and I'll get you started and show you how to do all your own future encryption.

There are many other types of encryption which I can help you with if needed. Here are some of them ...

  • Inbuilt encryption in word processing programs, databases etc are only useful if you want casual protection of a few files. Passwords can be easily hacked and the operation of the password system is not user friendly, in that you have to remember to encrypt each file.
  • Miscellaneous options such as zip and rar files are useful for file collections or emailing confidential files. Modern zip files are very secure if you use a good password, rar files are even better.
  • PGP is primarily used for highly secure communication via email between two or more parties who do not necessarily know each other. It is not suitable for the encryption of large volumes of data or the operating system. It's also fairly complicated to use.
  • Windows XP built in system. I don't recommend it because of usability issues and major security flaws. See Wikipedia
  • Windows Vista built in encryption system is an improvement but you have to own the Enterprise or Ultimate versions of Vista to get adequate protection. I haven't tried it, so I cannot honestly comment on it's usability.

BACKUP Photos, Documents, Spreadsheets, MP3s Emails etc.

Backing up your data is even more important than keeping viruses and spyware out of your computer. Most well set up systems have automatic virus/spyware protection and updating, which make it very user friendly.

The same is rarely the case for backing up data. You usually have to start a backup program, choose a backup profile, insert backup media and run the backup program. You then wait until it's finished and shut down the program. You then have to remove the media, label it, and file it away. It's no wonder that many people neglect data backup.

As an analogy ... the only reason most people use their car alarms is that they are very convenient to use - just one press on the remote. If you had to open the bonnet and use a key every time you wanted to turn the alarm on or off, how often would you use it?
Using the same philosophy, I like to setup most backup operations to be just one or sometimes two clicks with no media insertion. The typical time required to start the backup operation is just one second. There is nothing more to do - just watch as your files are copied to your dedicated backup hard drive or flash drive.

Modern hard disks are extremely reliable and very rarely fail. This reliability leads to complacency and to users not bothering to back up data or operating systems. The fact is ... hard disks do fail ...... it's rare but it does happen! If you are lucky, you will get some indication of a failing hard by metallic clicking sounds or sometimes a "Write Error" warning message. Special hard disk monitoring software can be installed which will give advance warning of failing hard disks.

As an analogy ..... House fires are very rare. Would you risk canceling your building insurance on the basis of this rarity?  I know that you wouldn't take the risk because of the dire consequences of the combination of a fire and no insurance. The fact that hard disk failure is very rare should not lead to you neglecting the almost free insurance of data backup.

And on the topic of fires .... A fire can destroy all your computers, all your data, and all your backups, if you haven't taken the extra precaution of some kind of off-site encrypted backup, you are in trouble. This could be for example, a vehicle, a garage or a relatives house.

Contact me and I'll get you started and show you how to do your own backups.

BACKUP (CLONE) YOUR OPERATING SYSTEM

Cloning creates an exact copy of the hard disk that contains the operating system of your computer (usually drive C:). The cloned copy is created on a separate dedicated hard disk (or partition of a hard disk). The cloning operation clones the serial number and makes the cloned disk bootable.

The best time to create the first clone of your operating system is when you have everything installed and up to date. Any time you add new software or carry out major updating, you should perform a new up to date cloning operation.

Once your operating system is cloned, you can recover from major crashes or hard disk failures in a very short time and with the minimum of inconvenience. The alternative is at least a day's work re-installing, updating and configuring everything.

Contact me and I'll get you started and show you how to do your own future cloning.

DATA RECOVERY

Please read the DATA BACKUP tab on this page for related information on hard disk failure.

If you accidentally delete important data and you cannot recover it from the recycle bin, do not write any more data to your disk. It can be easily recovered in about 30 minutes. This can often be done with directions given by me over the phone. The more you use the disk the greater the possibility that you will overwrite the data and make it unrecoverable.

If your computer simply will not start, it could be any number of things. However, you can be about 99% sure that your data is recoverable. This is usually a straightforward operation taking less than an hour. Occasionally a deep scan with special software is required which can take many hours or even overnight for a large hard disk.

If your operating system is corrupted to the point that your computer will not start properly, the operating system can usually be repaired. This will save having to re-install your operating system and all your software. Then having to update and reconfigure everything. This is always a last resort which can take a whole day!
However, the important thing is that your data is safe and has been separately backed up.

If an external hard disk will no longer work there is about a 90% - 95% chance that the data can be recovered. If a CD or DVD is no longer readable there is about a 50/50 chance of recovering the data. Some DVD rental shops have special disk polishing machines that will make a disk readable long enough to copy the data.

Note: Data can be retrieved from failed hard disks more often than not. See the DATA RECOVERY tab on this page for more information.

Contact me if you have any problems with any of the above.

MALWARE... Viruses, Spyware, Trojans etc

Protection of your data from malware is a vital element to the integrity of your data. Please go to General Services for details

WIRELESS NETWORKING

No wireless network can be completely secure. The only network that cannot be directly attacked from outside a premises is a wired network.

If you do use wireless networking be sure to change the administrator username and password. Use WPA encryption (or better WPA2). Don't use DHCP - use a private range of fixed IPs. Use MAC Filtering, change the SSID of your router and turn off SSID broadcasting. Switch off your wireless network when it is not in use for extended periods.

The consequences of someone accessing and using your broadband can be extremely serious. All your banking information, passwords etc could be stolen. Worse, your broadband could be used in all sorts of crimes, such as credit card fraud, terrorism, extortion, child pornography etc. You don't want the police crashing through your door at 5am - do you?

ROUTERS & FIREWALLS

Windows has a basic software firewall which is better than nothing. There are loads of better software firewalls available, many of which are free. Comodo is my favourite.

A router is a network device which has a hardware firewall built in. It is a great security device that goes between your computer and your internet connection. Even if you don't need one for networking purposes you should still have one installed because of the greatly enhanced security.

They are not expensive and you may already have one included with your modem. If you only have a modem between your land line broadband and your computer, you need a router.

If you have nothing between your computer and your wireless broadband, you need a router.

If you only have dial-up internet, you don't need a router.

ONLINE SECURITY

Much of this topic is already covered under other headings. These are some of the areas I will cover ....

  • Totally erase all browsing, Download & Files Accessed records
  • Keeping anti-virus, anti-spyware and firewall software up to date
  • Keeping Windows up to date
  • Keeping browsers up to date
  • Keeping Javascript up to date
  • Avoiding infected web pages
  • Bluetooth risks
  • Protecting your email address and personal information
  • Online passwords (Financial, Forums, Shopping, Social Networking)
  • Spam & Scams & Phishing
  • Safety for Children On Line
  • Personal data on social networking sites
  • Ebay Scams
  • Online Anonymity
  • P2P Risks
  • All about Usenet / Newsgroups

Yet another risk, is the improper use of your computer(s) by third parties such as employees, flatmates etc. This could be simply employees wasting your time and money on social networking sites etc. It could also be more serious. There loads of software options available which can restrict and monitor what users do.

PHYSICAL SECURITY

If your desktop or laptop computer is stolen, you are hopefully insured and you can buy a new one. If your data was encrypted you have nothing to worry about. If everyone routinely encrypted their laptops, they would be stolen very rarely. See the Encryption tab on this page for more info.

Another risk is that someone (employee or flatmate perhaps) could simply insert a flash drive or blank dvd into your computer when the data is unencrypted and copy your private data. USB ports and CD/DVD writers can be physically disconnected inside desktop PCs. There are also various software solutions available which will disable various physical components and access to sensitive areas of the operating system such as windows file explorer.

If you are disposing of an old unencrypted computer by scrapping it, the best way of ensuring that it contains no personal data is to remove the hard disk(s). You can then totally wipe the contents or physically destroy it. If you want to recycle your PC there are charities that will erase all your personal data for you before shipping to Africa. If you want to sell your PC or give it to a charity/school, you can use software that will erase and overwrite all data and free space multiple times. This will leave the operating system intact.

Contact me if you need any help with the above. (Having had a security company I can even offer you some free security advise).