Enable File History Backups Windows 10

Many people do not have any kind of automatic backup enabled and instead rely on manual backups of their data. While manually backing up files is better than having no backup. Setting an automatic backup means you wont forget to do a backup.

Because an automatic backup is always online it does come with its own problems. If the device is infected with malware, this could spread to the backup drive. This is why it is important to have multiple backups using the 3-2-1 rule.

This 3-2-1 rule is as follows:

  • 3 copies of a file
  • 2 backups on different types of medium. i.e. on an external hard drive and a NAS
  • 1 offsite copy. i.e. in the cloud, or an external hard drive stored away from your home.

Today I will be concentrating on one type of backup. That is the built-in utility included with Windows 10 called File History.

To enable File History we need an external hard drive (a secondary internal hard drive can also be used).

File History’s default settings will save files every hour and keep versions forever – as in, files wont be removed after a set period of time. This may need to be modified to suit your needs and the amount of data stored on your device.

To configure File History first plug in an External Hard Drive. You should receive some kind of notification that a drive has been inserted. Take note of the drive name and letter. i.e. TOSHIBA EXT (F:)

Press Windows Key + i to bring up the Windows Settings App. In the search box type backup and then click on Backup settings.

Click Add a drive and then select the hard drive to which you wish to backup files.

Click on Back-up options and click Back up now

On the Back-up options screen you are able to add additional folders to be backed up up, i.e. If you have a folder outside your User Directory.

Scrolling further down the screen you are also able to add folders you wish to excluded from the backup. This is handy if you have folders containing large amounts of data and need to split your File History backups over multiple drives.

This is just one way you can backup your data. While this will help protect against data loss from a deleted file or failed hard drive, it wont help protect against ransomware. To protect against malware it is recommended to also have an offline backup.

For other ways to protect yourself online and your data, check out our tech tips articles.

Remove Previous Build Versions of Windows 10

Windows 10 has changed the way we receive new versions of Windows. Previously we would get a new version of Windows every couple of years. i.e, Windows 7 -> Windows 8 -> Windows 8.1 -> Windows 10.

Windows 10 is now upgraded on a “Rolling Release”. Meaning we receive a new “build” of Windows 10 every six months. This introduces new products or features that previously we may have only gotten with a whole new version of Window.

Windows 10 allows you to rollback to the previous build if there are any issues with the install. This is an option that’s available for 14 days after installing a new build.

After this period of time, you can no longer roll back, but the files for the previous build are still sitting on your machine taking up space. It can be handy to clean up these files to keep things running correctly or if you are getting low on space.

This can be done using a tool built into Windows call Disk Clean-up.

Disk Cleanup

First thing we need to do is open Disk Clean-up. This can be done by following the steps below:

  1. Hold the Windows Key and Press R
  2. Type in cleanmgr and press enter
  3. Ensure (C:) is show in the drop down box and click OK
Select the drive you wish to clean up

Disk cleanup will now scan through files and then the main window will appear.

Scanning for files that can be cleaned up
The main Disk Clean-up window

Removing Previous Builds

Before we can remove the previous builds of Windows 10, we will need to click the Clean up system files button at the bottom of the main Disk Clean-up Window.

You will be greeted with a UAC prompt (at which you may need to enter an administrator password). Click yes to allow the application to make changes.

Again you will need to ensure (C:) is shown in the drop down box and click OK.

Disk Clean-up will again scan through some files and then take you back to the Disk Clean-up Window.

Tick Previous Windows Installation(s) in the list of items. Other items you wish to remove can also be ticked. Click OK to start the cleanup.

Select the items you wish to clean

This can take some time. Once it has finished the Window will disappear. You will need to restart the computer afterwards to finalize the cleanup.

“But I don’t have anything a Hacker would want”

“But I don’t have anything a hacker would want”, is often the reply I hear when I’m explaining the importance of strong passwords, software updates, and other tasks to improve their cyber hygiene.

“I don’t do online banking” or “I don’t have personal information stored on my computer” come in as the follow up statements.

What this tells me is that many of us have a false sense of what a cyber criminal wants.

Sure, financial gain does appear to be the motivation for many cyber criminals. Draining a bank account would be a easy pay day, but it could also be risky.

Many cyber criminals are opportunistic. They may not be targeting you specifically but if you don’t take precautions you’ll end up one of the unlucky targets they happen across.

Think of the internet like a car park, and computers as the cars. If you haven’t patched your systems, or make a habit of using a single password, you’re leaving your car unlocked in a public place.

A criminal can walk around the car park trying to unlock each an every car, once inside he might be able to take the loose change in the centre console, or take a laptop sitting on the backseat.

You would notice your laptop missing. But would you notice if the criminal took a few coins from the centre console?

A cyber criminal can scan the internet looking for computers that haven’t had the latest patches installed. These patches fix vulnerabilities in software that could potentially leave your computer “unlocked”.

Passwords are like keys. How convenient would it be to have one key that opens your house, car, safety deposit box, and mailbox? Say you lose one of these keys. How convenient is it for a criminal to then go around and access all your things with the one key?

Sure, in real life you’re probably going to notice a missing key. But digital things work a little differently. You might lose a file, but have an exact copy stored in a backup. You could have a copy of a file, and someone else could have the exact same copy of the file at the same time.

Would you know if a service you use lost a copy of a password?

In a data breach, cyber criminals are able to steal data (lose a key), and the company still maintains a copy of their own. The cyber criminal who initially stole the data can then sell it to other cyber criminals.

If this data happens to hold copies of passwords, a cyber criminal can then use these password to access the account of those users. If you use the same password everywhere, well, you can see where we are going.

You’ve left the car unlocked, you use the same keys for everything, the dog walker lost a copy of your key and didn’t tell you about it. You might still be thinking “But I don’t have anything a hacker would want”.

I’m sorry, but you do.

A DDoS attack (or Denial of Service Attack) is where a cyber criminal floods a website with traffic in order to slow down a website and try and take it offline. This is often done in protest (perhaps the website has different views to the cyber criminal, and she is angry), for the lulz (or for fun as it is known), or even just to cover up a separate attack that the cyber criminal is undertaking on the same site.

Back to our car – perhaps the criminal is going to use it to damage the property of a big corporation in protest. Perhaps he is going to cruise around town doing burnouts and driving through the garden of a local park ‘for the lulz’, or perhaps he has found one of your lost keys and is going to wander in a steal the jewellery in your home, whilst at the exact same time doing a burnout, out the front of your house to keep you distracted. All because you inadvertently left the car unlocked.

While it seams silly that the the criminal is in two places at once, that’s exactly how things are online. A cyber criminal can be doing multiple nefarious activities simultaneously; she can be attacking a website with a DDoS while also stealing the customer database.

To count as a DDoS (Distributed Denial of Service), the attack has to come from multiple sources. Computers (or other devices) that an attacker has compromised will be added to what is known as a botnet. This network of thousands of computers can have their resources pooled together to undertake malicious activities.

Resources such as storage are also something a cyber criminal requires. Perhaps she has some questionable material and need somewhere to store it. Perhaps she is selling the data stolen from another website. Instead of hosting it on her own servers, she might provide access to your computer and the buyer can download the information from there.

The car analogy still works here. Your car (the vulnerable un-patched computer), that you think is safe and locked, is sitting in a car park (the internet), completely open for anyone to access.

Remember the dog walker that lost a copy of your key (passwords) earlier. We’ll apparently he lost a copy of all his clients keys. The criminal who found them is storing them in your car. He found a buyer who will pop by your car later on to collect them. It doesn’t even matter if your using the car when the buyer comes along, he’s almost invisible.

This is really convenient for the cyber criminal because its your computer and not tied directly to him.

The purchaser of these stolen passwords, can use your email and password combination to then attempt to log into other service you use online.

Remember before I mentioned how convenient it was that you had a single key that opened the car, house, mailbox, and everything else? Yep. Ouch.

You might be thinking again, “But I don’t have anything a hacker would want”.

Facebook is a trove of information and everyone likes to overshare. “Happy Birthday Grandma”. Grandma is pretty tech savvy these days. We only communicate over Facebook.

“Hi Grandma! I’m in a bit of a pickle, I’m overseas at the moment and I have just had my wallet and phone stolen. I’ve been able to setup a temporary bank account and was wondering if you could transfer a couple of hundred dollars to it. The details are xxxxx. Thanks Grandma, I’ll be back home (hopefully) in time to pop by and wish you happy Birthday. Love from your Grandson and definitely not the cyber criminal who just bought access to this account.”

Look at that, you had exactly what a cyber criminal wanted. Access to Grandmas money.

It might not go down exactly like that, but your accounts as well as your computer can be used to attack other unsuspecting people.

I mentioned before whether or not you would notice a few coins missing from your centre console. You probably wouldn’t at first glance, but perhaps down the track.

If this was a cyber criminal taking files (the coins) from your PC, you probably wouldn’t notice at all because you are left with a copy even when she takes a copy.

What files do you store on your PC? Photos? Is there something that could be used for blackmail?

Do you have data that could be used for identity theft?

What about the drivers licence you scanned and emailed to the car dealership that time? What about the bill that Telstra insists on sending digitally? It has your name, address, and phone number listed on it.

You might not be doing online banking, but that’s not the only way you can lose money. A cyber criminal can use these details for identity fraud and have an expenses paid online shopping experience on your dollar.

“But I don’t have anything a hacker would want”, except for everything.

How do you protect yourself?

Passwords are hard. This is why we are all using the same old Petsname1! or Farm2810$ for our passwords. Don’t use the same password for everything. Even a variation of the same password is a bad idea.

Use a unique passwords for every account you have. This can make it difficult to remember, but it is OK to have them written down in a notebook stored securely at home. A password manager would be an even better choice.

To increase your password security, enable 2FA (Two Factor authentication) on all accounts that support it. If you are not sure if a services offers 2FA you can look it up on Two Factor Auth List.

Update software and Operating Systems. Windows can be updated by holding the Windows Key and pressing R. In the run dialog box type in control update and then press enter. Click the button that says Check for Updates.

Running a Windows Operating System that is out of support means it is no longer being maintained and therefore not receiving any security patches. If you are running Windows Vista or XP you really need to upgrade. Vista has been out of support for almost two years. Windows XP a lot longer.

If you are running Windows 7, your should aim to upgrade before January 2020.

Other software can be updated via its own menus within the software. It can be hard to keep track of versions when we have multiple programs installed. PatchMyPC is a free program for home users to easily update all the software on their PC.

While these task aren’t going to make you 100% secure, it is a good start. I have written multiple articles in the past on how to stay secure online. Check out our Tech Tips articles for more information.