Archives 2020

Article (PSA‑0014)

Why a Changing IP Address Can Be a Problem

When you run a server from home (web site, game server, CCTV, VPN, etc.) you need a way for people on the Internet to find *your* device. Most residential ISPs assign a **dynamic public IPv4 address** that can change every few hours, days, or weeks. If the address changes, anyone using the old address will lose connectivity.

Dynamic vs. Static IP Addresses

• Dynamic IP – Assigned by the ISP’s DHCP server. It may change at any time (often nightly or after a router reboot). No extra charge, but the address is not reliable for a public service.
• Static IP – Fixed for the life of the contract. Usually only offered on business‑class plans and often costs extra (sometimes $5–$20 per month). It gives you a stable address without extra software.

Quick DNS Refresher

DNS (Domain Name System) translates human‑readable names (example.com) into the numeric IP addresses computers actually use. Think of it as an online phone book: you look up a name, get a number, and the call (or web request) is placed.

The Core Issue: Your Dynamic IP + DNS

Traditional DNS points a domain name to a single static IP. If your public IP keeps changing, the DNS record quickly becomes outdated, and anyone trying to reach your service sees a dead address.

Dynamic DNS (DDNS) – The Solution

Dynamic DNS services automatically keep a DNS record in sync with your current public IP.

• You sign up for a DDNS provider (e.g., No‑IP, DuckDNS, Cloudflare API‑based updates, or the legacy Dyn service).
• The provider gives you a sub‑domain such as myhome.no‑ip.org or myserver.duckdns.org.
• A client (built‑in to most modern routers, or a small program on a PC/Raspberry Pi) monitors your public IP. Whenever the IP changes, the client sends an update to the DDNS provider via a secure API (HTTPS or DNS‑UPDATE RFC 2136).
• The provider instantly updates the DNS record, so the domain name always points at your current IP.

Where to Run the DDNS Client

• Router – Most consumer routers (e.g., ASUS, Netgear, TP‑Link, Linksys) have a “Dynamic DNS” or “DDNS” section where you can enter your provider’s hostname, username, and password.
• Dedicated device – If the router doesn’t support DDNS, install a client on a computer, Raspberry Pi, or NAS (most Synology/QNAP devices include DDNS support).
• Cloud‑based updates – Some providers (Cloudflare, Google Domains) let you use a simple script or curl command to update the record from anywhere on the Internet.

Security & Best‑Practice Tips

• Use a **strong, unique password** for the DDNS account – the update client sends these credentials on every change.
• Prefer providers that support **TLS/HTTPS** for updates (No‑IP, DuckDNS, Cloudflare).
• Keep your router’s firmware up to date; many updates fix DDNS‑related vulnerabilities.
• If you only need occasional remote access, consider a **VPN** or a cloud reverse‑proxy (e.g., Cloudflare Tunnel) which provides a stable endpoint without exposing your home IP.

Step‑by‑Step: Setting Up DDNS (Example with No‑IP)

1. Create a free No‑IP account and choose a host name (e.g., myhome.no‑ip.org).
2. Log into your router’s admin console → Dynamic DNS (or DDNS) section.
3. Select “No‑IP” from the provider list, then enter the host name, your No‑IP username, and password.
4. Save the settings. The router will now test the connection and report the current IP.
5. Confirm by visiting myhome.no‑ip.org from a device outside your network – it should resolve to your public IP.
6. Whenever your ISP changes the IP, the router automatically updates the record – no further action required.

Alternative Approaches (When DDNS Isn’t Enough)

• Purchase a static IP from your ISP – the most reliable method for business‑critical services.
• Use a cloud‑based reverse proxy (e.g., Cloudflare Tunnel, ngrok) – the tunnel endpoint stays constant even though your home IP changes.
• Hybrid VPN + DDNS – run a site‑to‑site VPN that uses the DDNS name to reach your home network securely.

Bottom Line

Dynamic DNS lets you keep a stable, easy‑to‑remember address for any service you run from a home connection that receives a dynamic IP. It’s a cheap (often free) alternative to paying for a static IP and works with the vast majority of modern routers.

Need Help Getting Started?

If you’d like assistance setting up Dynamic DNS, configuring your router, or exploring alternatives, call PSA Computer Services at (707) 506‑6802. We’ll get you online and reachable—no matter how often your IP changes.

Article (PSA‑0013)

The COVID‑19 pandemic accelerated the shift to remote and hybrid work, and many of those practices are here to stay. Even though most regions are no longer under strict lockdowns, businesses continue to:

• Allow employees to work from home full‑time or a few days a week.
• Use cloud‑based collaboration tools for meetings, file sharing, and project management.
• Prioritize security — VPNs, multi‑factor authentication, and endpoint protection are now standard.

Key Tools for a Productive Remote Set‑up

Video‑conferencing

Popular choices (2024): Zoom, Microsoft Teams, Google Meet, Cisco Webex.

Why it helps: HD video, screen sharing, meeting recordings, integrated calendars.

Instant Messaging / Collaboration

Popular choices (2024): Microsoft Teams, Slack, Discord (for informal teams).

Why it helps: Real‑time chat, file sharing, searchable history.

Remote Desktop / Application Access

Popular choices (2024): TeamViewer, AnyDesk, LogMeIn, Microsoft Remote Desktop, VNC Connect.

Why it helps: Control a workstation from anywhere; useful for legacy apps.

File Collaboration & Storage

Popular choices (2024): OneDrive, Google Drive, Dropbox, SharePoint.

Why it helps: Real‑time co‑authoring, versioning, secure sharing.

Security & Network Access

Popular choices (2024): Cisco AnyConnect, OpenVPN, Pulse Secure, Zscaler Private Access.

Why it helps: Encrypted tunnel to corporate resources; enforces MFA.

Three Simple Practices for a Balanced Remote Work Day

1. Set Clear Work‑Life Boundaries – Define a start‑time and end‑time, and stick to them. Use a dedicated “work” calendar and mute non‑urgent notifications after hours.
2. Move Your Body – Short walks, stretching breaks, or a quick home workout boost circulation and lower stress. Even a 5‑minute stretch every hour can improve focus.
3. Stay Connected Socially – Schedule brief video coffee chats or phone calls with family, friends, or coworkers. Human interaction reduces feelings of isolation and improves morale.

Security Tips You Can Deploy Right Now

• Enable multi‑factor authentication (MFA) on all cloud services (email, video‑conferencing, file‑sharing).
• Keep your operating system and applications up‑to‑date; enable automatic patches.
• Use a trusted VPN when connecting to corporate resources or sensitive data.
• Lock your workstation when you step away – a quick Windows + L (or macOS Control‑Command‑Q) does the job.
• Back up critical files regularly (cloud or external drive) following the 3‑2‑1 rule.

Hybrid Work – The New Normal

Many companies now operate on a “flexible” model: a few days in the office for collaboration, the rest remote for focused work. When planning a hybrid schedule, consider:

• Which tasks need a physical office (e.g., hardware‑intensive work, team workshops).
• How you’ll keep security consistent across both environments (same VPN, same MFA).
• Ensuring all employees have a reliable internet connection and an ergonomic workspace at home.

Need a Hand Getting Set Up?

If you’d like advice on choosing the right remote‑work tools, or want a security review of your home office, give PSA Computer Services a call at (707) 506‑6802. We’ll tailor a solution that keeps you productive and protected.

Dear Reader,

The FBI is the lead federal agency for investigating malicious cyber activity by criminals, nation-state adversaries, and terrorists. To fulfill this mission, the FBI often develops resources to enhance operations and collaboration. One such resource is the FBI’s Internet Crime Complaint Center (IC3) which provides the public with a trustworthy and convenient mechanism for reporting information concerning suspected Internet-facilitated criminal activity. At the end of every year, the IC3 collates information collected into an annual report.

This year’s Internet Crime Report highlights the IC3’s efforts to monitor trending scams such as Business Email Compromise (BEC), Ransomware, Elder Fraud, and Tech Support Fraud. As the report indicates, in 2019, IC3 received a total of 467,361 complaints with reported losses exceeding $3.5 billion. The most prevalent crime types reported were Phishing/Vishing/Smishing/Pharming, Non-Payment/Non-Delivery, Extortion, and Personal Data Breach. The top three crime types with the highest reported losses were BEC, Confidence/Romance Fraud, and Spoofing. More details on each of these scams can be found in this report.

Of note, the IC3’s Recovery Asset Team (RAT), which assists in recovering funds for victims of BEC schemes, celebrated its first full year of operation. During its inaugural year, the team assisted in the recovery of over $300 million lost through on-line scams, boasting a 79% return rate of reported losses. We’re also pleased to announce the creation of a Recovery and Investigative Development (RaID) Team which will assist financial and law enforcement investigators in dismantling money mule organizations.

Information reported to the IC3 helps the FBI gain a better understanding of cyber adversaries and the motives behind their activities. Therefore, we encourage everyone to use IC3 and reach out to their local field office to report malicious activity. Cyber is the ultimate team sport. Working together we hope to create a safer, more secure cyber landscape ensuring confidence as we traverse through a digitally-connected world. We hope this report provides you with information of value as we work together to protect our nation against cyber threats.

Matt Gorham
Assistant Director
Cyber Division
Federal Bureau of Investigation

Read the full report here: https://www.ic3.gov/Media/PDF/AnnualReport/2019_IC3Report.pdf