In my daily check of my Apple News app, where I have set up a 'topic' that provides me with daily 'computing and information technology news', I saw a concerning article about the release of over 700 million email addresses online.  

For some of these email addresses, passwords were also available - hacked from who knows where!

Here is the article for anyone wanting to read about this:

• 711 million email addresses ensnared in "largest" malware spambot    

Have you been 'pwned'

​As mentioned in the above article, it is possible to visit a website that tells you if your email address is available on any known list of 'hacked' email addresses - including this new massive list.

The website is haveibeenpwned.com.  Just enter your email address to see if it is on any list.  

I was surprised to find my own iTandCoffee email address was on this new list!  It was not on any list last time I checked, so this leaves me wondering which of the many online services I use has been 'hacked'.

So as a precaution, I have changed my password for the impacted email account, and for other key accounts that use the email address.  

​Now I need to see where else I have used this email address, and decide if password resets are needed!  Ow.  

At least I have a different password for every online account, which minimises any 'damage' if anyone does have more than the email address. And I have put all these different passwords into my 'password safe' on my iPhone. This means that I always have easy - and secure - access to my passwords whenever I need them, either from my iPhone or iPad.

(If you are an iTandCoffee Club member, you can watch the members-only video about how to set up a password safe on your iPhone/iPad. Here is the link to this video» 
If you are not yet a member, find out more about The iTandCoffee Club here »)

How to change your online passwords

If you need to change your password for your various online accounts, here are links to the relevant pages on some of the important ones:

• Google:  myaccount.google.com/security
• Hotmail/Live/Outlook.com: account.microsoft.com
• iCloud: appleid.apple.com
• Bigpond: See the details on this Telstra webpage.  Note that, if you change your main account's password, you may need to change some modem settings (if you have an ADSL internet connection).
• Paypal - See details on this Paypal help page
• ​eBay - reg.ebay.com.au/reg/ChangePwd

Need further advice or help?

​If you need advice on how to change any other online passwords, just leave a comment below.  Or if you would like assistance with making changes to your passwords, book a time with iTandCoffee.  Book online here or call 03 9886 0814 or 1300 885 420.

So many people I speak to tell me that they use the same password for more than one of their online accounts - their Mail, their iCloud/Apple ID, their PayPay, their eBay.  Or they use only a couple, or minor variations of the same password.

They tell me that this is the only way they can remember passwords.  In many cases, this password is also very simple and easy to guess.   

My advice is always to reconsider this approach, and to tighten up their security - advice that I know is rarely heeded.  It is all just too hard.

An article that I saw last week re-iterated the serious danger of using one password across all your online accounts.  It is worth reading, then considering whether it is time to get to work on updating those passwords.

Here is the article:

• ​This is what can happen if you use the same passwords over and over

Due to popular demand, we are going to re-run on a workshop that we have run previously on the topic of passwords.

At our next Free Friday for iTandCoffee Club members* on August 25th at 12pm, the topic will be 

This has been a common problem encountered by so many iTandCoffee clients.  In fact, we have already had seen two clients this week who have had the problem (and it's only Tuesday!).

Contact iTandCoffee on 1300 885 420 if you need help to solve this problem.

​If you are 'not so local' and are not yet a member, why not join The iTandCoffee Club to gain access to our huge library of great tips like this.​

Every week, there are new reports of major security breaches. Recently, there were reports that cloud storage company Dropbox was a victim of a major hack in which 68 million account email addresses and passwords were potentially compromised.

Here is an article about this breach from Macworld.

If you have a Dropbox account and have received the notification to change your password, I would strongly recommend that you act on this as soon as possible. 

If you have not yet set up something called 'two-step verification' on your Dropbox account, now is the time to do this as well.  

What is two step verification?

iTandCoffee regularly comes across clients who do not know the passcode for the Restrictions area of their (or their child's) iPad, iPhone or iPod touch.  

The consequence of this is that it is not possible to change any Restrictions already established, and it is not possible to easily 'reset' the device to its factory settings - for example, when passing on the device to someone else.

So, what do you do if an i-Device has an unknown Restrictions passcode?

iTandCoffee can assist with this.  We have a special tool that allows the Restrictions passcode to be retrieved.

If you would like iTandCoffee to determine the Restrictions passcode of a device that you own, please contact us on 1300 885 420 or email bookings@itandcoffee.com.au to arrange an appointment time.  (iTandCoffee is in Glen Iris, Melbourne.)

Have you ever thought about what would happen to all your 'digital assets' when you are no longer around?  

By this I mean access to content on your mobile devices and computer (which, I hope, are password protected), email and other online accounts, content stored in the cloud, and more.

Do those you love know your all your passwords?  (Mine certainly don't.)

If not, do you want those you leave behind to have access to these passwords and all the content that they protect when you die?

I know this is something that I considered when we re-did our wills last year.  In fact, I have left a list of my digital passwords with my solicitor, to be passed on to my family if 'kick the bucket'.

Here is an article that I saw in this week's Choice magazine on this very topic.  It is thought provoking, and well worth a read.

• Digital estate planning - CHOICE                                                                

​.

I had an email from a client this week that raised something that, I have to admit, I had not thought to cover when running recent 'Keeping kids safe on iPad, iPhone and iPod Touch' information sessions at schools.

This client asked me if I use my fingerprint to access a particular Password Keeper app on my iPhone.  She was concerned about whether she should do the same on her own device.

In her email, she said that her kids know her device passcode, and had even set up their own fingerprints on her device, so that they could easily unlock Mum's phone.

I know from my experiences with helping lots of mums and grandmums with their i-Devices that she is not alone in having kids that have guessed (or been given) the passcode for the parental device.  

But now, with the newer iPads and iPhones, there is the possibility that any child accessing your device could set themselves up with a fingerprint to access the device.  

Even if you decide to change your passcode to 'lock them out', the child would still be able to use their saved fingerprint to unlock the device.

Not sure I like that idea.  If I had kids accessing my device, I would be sure to remove any fingerprints that were not mine.  In fact, it would be a rule that, in using my device, they agree not to even try to save their own fingerprint to the device.

Does the fingerprint unlock more than just the iPad/iPhone?

Before the advent of fingerprint technology on i-Devices, a child who could unlock a parent's i-Device would then need to also know the separate passwords/passcodes that have been set up for any other password-protected apps and features on the device - for example, a Banking app, a Password Keeper app, iTunes downloads and more.

These days, however, it is possible to have your fingerprint unlock protected apps and approve iTunes downloads - a great help for those of us who hate entering different passwords in different places.  On my own iPhone and iPad, I have certainly enabled this fingerprint unlock feature on any applicable app, as well as for iTunes and App store purchases .

However, if my kids had my device's passcode, I would certainly not enable fingerprint access to any of these password-protected apps or to allow fingerprint approval of iTunes download.  

It's not that I don't trust them.  I would just rather protect sensitive information and only allow my bank accounts to being accessed by me.  And I don't want any accidental deletion of files and content that are important to me.

Do your kids know your device's passcode?  Do you allow fingerprint access to apps and approval of iTunes purchases on that device? 

​What advice would you give my client?                                                   

This article appeared recently in The Age, and talks about the issue of whether or not you should monitor what your child does, uses and says on their mobile device.  

​How far should you go in trying to keep your child 'safe' on these devices?  

• Should you stalk your child's smartphone?        

The guide can also be downloaded as a PDF from the iTandCoffee online store, at a cost of $9.90. 

How many times have you forgotten a password, and gone through the process of re-setting it (assuming you are able to do this).

Many Mac users are not aware that, in many cases, their passwords are actually stored in a special place, called a Keychain.

These passwords can be viewed whenever required from a utility called Keychain Access.

All you need to know is the administrator password for your Mac, and this will allow you to view all of the passwords stored in your Keychain.

Find out more about Keychain Access - and how to view your stored passwords - in this Mac Handy Hint for iTandCoffee club members.  (Don't forget to log in first, using the 'Member Login' in the right sidebar.)

• Finding your 'lost' passwords in your Mac's Keychain.

Not yet a member of The iTandCoffee Club?  Why not join today.

You'll get access to iTandCoffee's ever-growing library of Handy Hints, special members-only information sessions and other special offers advertised from time to time.
​

Apple yesterday released an update to iOS 9, to fix problems that many users have been facing since its release on Sept 17th.

iOS 9.0.1 is now available for download and installation, from Settings -> General -> Software Update.

There are reports today that, while this new release resolves some major problems with the original iOS 9, there is a security issue with the Lock Screen that may allow unauthorised access to your Contacts and Photos.

Check out this article from AppleInsider for further details.  

To secure your device and protect it from this security hole, you can disable Siri on your Lock Screen, or set a more complex Passcode (since only simple 4 and 4-digit passcodes allow this lock bypass).  Instructions on haw to do both of these are shown below.

Disable Siri on your Lock Screen

Even in the absence of this security hole, it is worth considering whether you should allow Siri access when your screen is locked.  For example, if Siri is available from your Lock Screen, your phone can be used to dial any number

To disable use of Siri on your Lock Screen, 

• Go to Settings -> Touch ID & Passcode (or just Settings -> Passcode) and 
• Enter your Passcode.  
• In the section ALLOW ACCESS WHEN LOCKED, turn off Siri (so that it is not green).
  

(While you are there, think about what other information/features you want to make available while your screen is locked.  Turn off anything you want to protect.)

Setting a More Complex Passcode

This is another security setting that is worth considering, even if there wasn't a problem with lock screen security in iOS 9.  

You can use a more complex passcode instead of the simple 4 or 6-digit PIN that is standard on the iPhone and iPad.  This complex passcode can contain letters, numbers or symbols - making your device much harder to hack if it falls into the hands of the wrong person.

• Go to Settings -> Touch ID & Passcode (or just Settings -> Passcode) and
• Enter your Passcode
• Turn Off Simple Passcode
• Enter your new passcode.

Have you registered to attend the FREE* information session at iTandCoffee on Friday Sept 4th at 10am?

At this 1-hour session, we will look at how to manage all those passwords safely and securely - so that you'll never lose them or forget them again!  And, you'll have easy access to them when you need them.

This session will be held on Friday 3rd September at 10am at iTandCoffee, 34 High Street Glen Iris.

For more details and to book, click here!

*Session is free for members of The iTandCoffee Club.  Non-members can attend for a cost of $30.  Not yet a member?  Join the Club today!

How am I supposed to remember all my passwords?  Where can I store them safely?

These questions are asked every week at iTandCoffee, multiple times!  

So, let's get together and look at how to solve this password problem once and for all.

Join iTandCoffee for a FREE* 1-hour (approx) session where we will set up and learn to use a great app that allows you to safely store all your passwords and gain easy access to them whenever you need them.

This session will be held on Friday 3rd September at 10am at iTandCoffee, 34 High Street Glen Iris.

For more details and the book, click here!

*Session is free for members of The iTandCoffee Club.  Non-members can attend for a cost of $30.  Not yet a member?  Join the Club today!

Yes I know.  Here I go again, talking about passwords.

Passwords are one of the most frustrating aspects of what I do, and of living in this online and high-tech world.  

While I pretty much have my own passwords under control (safely stored and easily accessible when I need them), I am EVERY DAY dealing with other peoples' forgotten passwords or the consequences of them inadvertently giving away a key password that then provides the 'bad guys' open slather access to their online world.

So often in iTandCoffee appointments and classes, forgotten (or unknown) passwords stop us in our tracks.

So here I go again.

Please get a 'password safe' app to store your passwords, ensure that your passwords are strong and unique for each account, and store them all in this safe.

The app that you will have seen me recommend previously is the FREE app 1Password, for your iPad and iPhone.  

It can also be purchased and downloaded on your computer (should you wish to have access to it from all your technology).

The idea is that you only need to remember ONE password - like remembering the combination to a safe - and all your other passwords will be safely stored in the secure safe.

Visit the app store and download it today.

A feature of 1Password that I only just discovered!

I had an 'OMG - that's great' moment when showing a client how to use 1Password just this week. 


I discovered that, when you are using Safari and other key apps on your iPad and iPhone and need to enter a password, you don't need to switch to the 1Password app to look up your password.

1Password provides something called an 'extension', which is accessible from the Share option (the option that you use to send/print/copy etc).  So, when a password is requested, just tap the Share option, tap 1Password, enter your 1Password password, and tap on the name of the password you require.  

Magically, your password will then be filled in for you, without you having to copy and paste or type it in.

(Note.  Other 'password keepers' may also provide the same 'extension' feature.)

Tips for creating a good 'master password' for your Password Safe


The creators of 1Password, Agilebits, have and excellent article on to the topic of passwords and, in particular, for setting 'master passwords.  Check out the link below.

• Toward Better Master Passwords    
  

I think we need a free session on this one

This topic comes up so regularly that I will shortly be organising a free session for iTandCoffee Club members, where we will 'workshop' setting up and using a password safe.

If you think you'd be interested in attending such a workshop in the near future, email me at bookings@itandcoffee.com.au.

iTandCoffee regularly espouses the value of apps that provide you with a 'Password Keeper' or 'Password Safe', where you can keep all your passwords safely stored behind a single password.  

This means that you only need to remember that single password to gain access to all the rest, allowing you to set up strong and different passwords for each of the systems, sites and services that you use.

One such password keeper is called LastPass, a free app that stores your 'password safe' online on the LastPass server, protected by a Master Password that you use to open this online safe.  

Other password keeper apps, such as 1Password and OneSafe store your password safe on your device, with a Master Password that is only known to your device and is not stored online.

I prefer the second style of password keeper, because I have always been nervous about storing my valuable set of passwords online - in case of attack by hackers targeting the site that holds my password safe.

Well, it appears that such a breach by hackers has occurred this week with LastPass, where Master Passwords (as well as email addresses and other information) were 'compromised'.

LastPass is notifying users of the service if they need to reset their Master Password, and to also change their password on any other online account that uses the same password.

Here is the full article from MacWorld this week.

Thanks Allison for this article, which we all need to read.  We are all potential victims of hacking, so need to arm ourselves with the knowledge of what to do to protect ourselves.

If you haven't already updated to the latest version of iOS, here is a really good reason to 'take the plunge'.  

This article alleges that there is a device that can be purchased online for only US$300 that can crack your passcode if you have a 4-digit pin on your iPhone or iPad.

Here's the article.

iTandCoffee Camberwell is proposing some great new classes for early 2015, and is taking registrations of interest for these classes now.

Here is the list of proposed new classes:


Safely managing all your passwords (2 hours)

In today's online world, it is essential that you use strong passwords, that you use different passwords for all your online accounts (iCloud, iTunes, eBay, PayPal, your email, your banking, Groupon, Deals.com, etc etc.), and that you consider something called 'two-step verification' some key online accounts.

But how do you keep track of all these passwords, especially when they need to be so different?!

Find out how to safely manage all your password, and have easy access to them whenever you need them - without storing them in hard-copy, or in Notes or Contacts on your iPad or iPhone (or computer).  

Introduction to iCloud (2 hours)

For most people, iCloud is just a glorious mystery - something to perhaps fear, and steer clear of due to misunderstanding of what it is and what it offers.

This session will unravel that mystery, and show you how iCloud can be a wonderful way of protecting valuable information on your iPad and iPhone - especially your photos and your contacts, but perhaps also valuable notes, calendar events and reminders.  

Managing your Life in Evernote (2 hours)

Evernote is my very favourite app, that I use every day on my iPad, iPhone and Mac.  It is where is store all my family information - school notices, health information, recipes, receipts, property records, etc - but also where I store all my business information.  

It allows me to have a largely paperless life, and can even remind me of things I need to do and provide instantaneous access to the information I need for those things.

Find out how Evernote can make a massive different in your own life.  I'm sure you'll become an Evernote convert, just like the many other mums and small business owners I have introduced to this amazing app.



Are you interested in attending one (or more) of these classes?

Visit the 'registration of interest' web page and let us know that class/es you are interested in attending, and any preference/s you have for day/time for the class/es.

Check out our other scheduled classes

A variety of classes have been scheduled form Feb 2015.  View the class schedule here.

Do you have a suggestion for a different class topic?

We would love to hear from you!  Just email classes@itandcoffee.com.au with details of your suggestion.

In summary, if a passcode has been forgotten, and perhaps the device disabled due to too many attempts, the steps to resolve the problem depend on whether you have an iTunes or iCloud backup of the device and whether you have enabled 'Find my iPhone' (or iPad) on the device.

It's pretty bad news if you don't have a backup

If you don't have a backup, you will (unfortunately) be forced to erase your device and return it to its factory settings, resulting in the loss of whatever was stored and set up on your device.

Restoring your device

Here is the Apple Support article that provides the various recovery and restoration options.

Needless to say, if you have any issues understanding or following these instructions, contact iTandCoffee on 1300 885 420 or enquiry@itandcoffee.com.au.