Archive for March, 2019

Repetitive Exposure to Phishing Improves Employee Click Rate

Wednesday, March 27th, 2019

Like most things in life, practice makes perfect.  Well, perhaps, better at least.  KnowBe4 has reported that a “long-term phishing study involving 6 healthcare institutions shows employees are vulnerable to phishing attacks and that they can become more vigilant through exposure.” Researchers initiated 95 separate campaigns studying employee interaction with over 2 million simulated phishing […]

Meditab Fax Server Leak

Tuesday, March 26th, 2019

California-based Meditab, a leading software maker for healthcare electronic medical records, was leaking thousands of doctor’s notes, medical records, and prescriptions. The cause? A security lapse that left a fax server without a password. Without a password, the over six million records in its database could be read in real time. And to add insult […]

North Carolina First in Flight Again: First UPS Drone Delivery

Tuesday, March 26th, 2019

North Carolina proudly claims the slogan “First in flight” thanks to the first manned flight carried out by the Wright brothers in Kitty Hawk, North Carolina. Now North Carolina can claim another first in flight. UPS’s first drone delivery was carried out in the state capital, Raleigh. The use of drones is expected to not […]

Time To Change Your Facebook Password (Again)

Friday, March 22nd, 2019

Hard on the heels of CEO Mark Zuckerberg’s lengthy Facebook post that the social network was doubling down on privacy and ensuring users’ data remains safe, Facebook faces yet more negative publicity. KrebsOnSecurity recently announced that an internal investigation has found between 200-600 million Facebook user passwords stored in insecure plaintext format. Meaning any of […]

Citrix Systems Attacked Again

Monday, March 18th, 2019

Citrix Systems announced an apparent network penetration by hackers. The Fort Lauderdale, Florida technology business was appraised by a suspected problem last Wednesday by the FBI. They have launched a full investigation. Stan Black, Citrix’s CSIO, said in his blog post on Friday that while the hackers appear to have accessed and stolen business documents, […]

Your Partner in Fighting Ransomware

Monday, March 18th, 2019

Ransomware is here with a vengeance. Cybercriminals are seeing far too much reward for their efforts to stop now. Coverware recently released their 2018 Q4 Ransomware Marketplace report with numbers that confirm the trend. Victim company sizes have increased so their payouts have increased. Coverware has also seen a 39% increase in attacks on backups, […]

Jackson County Pays $400k Ransom

Wednesday, March 13th, 2019

Jackson County, Georgia finds its coffers down by $400,000 this week thanks to cybercriminal ransom. A ransomware infection blocked access to the county IT systems for most of the local government with the exception of its website and 911 services. Though the county has hired a cyber-security consultant, they have yet to confirm how the […] Breach Leaks Over 800 Million Records

Wednesday, March 13th, 2019

Charlie Osborne at ZDNet has revealed a data breach of epic proportions. Bob Diachenko and Vinny Troia discovered over 809 million records in MongoDB. The information offered included varying degrees of private information including email addresses, zip codes, phone numbers, physical addresses and dates of birth. “Although not all records contained the detailed profile information […]

Why You Need a Fractional CISO

Friday, March 8th, 2019

Chief Information Security Officers play an essential part in the success of your business security, yet recent studies have found that only 13% of organizations are truly prepared for attacks on their network, mobile, and physical security. Without a CISO, the majority of security readiness falls on the CEO who usually has an overflowing to-do […]

Misconfigured Server Exposes Nearly 1 Million Patient Records

Wednesday, March 6th, 2019

Over 974,000 people are being notified by The University of Washington Medicine. For a three-week period in December, their information was exposed on the internet. A misconfigured server on the UW Medicine database was the cause of the breach. A patient discovered the leaked information while doing a Google search on themselves and contacted the […]