Lipani Security LLC

A Security & Privacy Company

Author: admin

Two-factor authentication

Posted on by admin

Two-factor authentication also known as 2FA also referred to as two-step verification or dual-factor authentication, is a security process in which users provide two different authentication factors to verify themselves. Authentication using two or more different factors to achieve authentication include

  • something you know (e.g., PIN, password)
  • something you have (e.g., cryptographic identification device, token)
  • something you are (e.g., biometric)

For example, if you have a Two-factor authentication setup on your laptop you would need to enter your password then you would need to scan your fingerprint to log in. If you have a Two-factor authentication set up on Gmail, you will need to put in your password then you will need to put in a pin code that you got texted to you or by using the code generated by the Google authenticator app.

This need of using two means to authenticate provides extra safety say you are in the car on your way to work and you get a text message from one of your services like Gmail with a login code and you did not just try to login to Gmail this would tell you two things.

One that someone has your password, and you should change it and two since they have no way of getting the code off your phone, they were unable to log in thanks to the Two-factor authentication you set up on your account.

There is software solution in the business world like Duo that before you can log in to your computer you first enter your password on your computer then you must open the Duo app and hit ok on your phone to allow you to log in to your computer. I know sounds at times this sounds like a lot, but password theft is one of the top security issues on the internet today.

For personal use companies like Microsoft and Google provide free authentication apps for iPhone and Android that you can use to secure and add Two-factor authentication to your accounts.

What accounts should you secure? Any important account with a password. Things like email, bank accounts, social media, and any account that has any kind of personal information.

If you need help or think this is something, you or your company want to do please contact us.

Prevent A Windows 11 Install (Never 11)

Posted on by admin

There is an easy way to block Windows 11 from being offered to your PC.

Microsoft introduced a new TargetReleaseVersion specification in Windows 10 1803, which allows you to set which version of Windows 10 you would like your OS to upgrade to or remain at.

To prevent the Windows 11 from being offered to you, you simply need to registry editing on Windows 10 Home.

  1. to press windows + R., type regedit and press log into
  2. Navigate to Computer HKEY_LOCAL_MACHINE SOFTWARE Policies Microsoft Windows Windows Update
  3. Create a new DWORD (32-bit) value called TargetReleaseVersion and assign it a value of 1
  4. Create another DWORD (32-bit) value called TargetReleaseVersionInfo and assign it a value of 21H1

If you have Windows 10 Pro or Enterprise, you can do the same via the Local Group Policy Editor.

Simply go to Local computer policy > Computer configuration > Administrative TemplatesWindows components > Windows update > Windows Update for Business and double click Select the target feature upgrade version. Enter 21H1 and hit ok before restarting your computer.

This registry option and or group policy will need to be updated if you want the next build of Windows 10 when its released but at least you will not get Windows 11.