January 8th, 2020
Directly on the heels of LockerGoga and MegaCortex, a different strand of ransomware, Maze, which was first discovered nearly a year ago, started to target private companies in the US in November, and the FBI wants to make sure you know about it. Just two days after issuing an alert for LockerGoga and MegaCortex, the […]
Posted in Cyber Security | Comments Off on FBI Warns Business Owners: Beware of Increasing Maze Attacks
December 26th, 2019
Ibrahim Balic, a security researcher, recently exposed a flaw in Twitter’s app that allowed to match unique Twitter user accounts with 17 million phone numbers months ago. He was able to accomplish this by uploading large lists of phone numbers by way of Twitter’s “Contacts Upload” feature that is available on the social media giant’s […]
Posted in Blog, Cyber Security | Comments Off on Twitter Vulnerability Exposed in a Big Way
December 14th, 2019
It seems like something that only happens in movies and TV shows: It’s Friday the 13th. You, your colleagues, your entire department, the entire city, in fact, receives the same command to power down their computers immediately and disconnect all devices from the network. But this wasn’t a movie and it wasn’t a TV show… […]
Posted in Blog, Cyber Security | Comments Off on Ransomware Attack Shuts Down New Orleans
December 10th, 2019
“Eight is Enough” A great, wholesome, family show from the late 70’s and early 80’s. Also: what Sentara Hospital, with over 300 facilities across the states of North Carolina and Virginia, is telling the Department of Health and Human Services’ Office for Civil Rights (OCR) after being on the receiving end last month of this […]
Posted in HIPAA | Comments Off on Sentara Doubled Down When They Should Have Folded
December 9th, 2019
There is a reason hackers have started targeting hospitals and medical practices. Not only is their cyber security known to be woefully lacking (despite the best efforts of the U.S. Department of Health and Human Services [HHS] and HIPAA regulations), but the electric Patient Health Information (ePHI) can literally be life and death. Meaning? The […]
Posted in Blog, Cyber Security | Comments Off on Russian Hackers Hold Nursing Home Patients’ Data Ransom for $14M
December 9th, 2019
Researchers at Trustwave recently discovered a malicious spam campaign. The email comes as an executable file via email with a tell-tale two sentence subject line that reads “Install Latest Microsoft Windows Update now! Critical Microsoft Windows Update!” There is only one sentence to the actual email itself. Disguised as a .jpg, the file really contains […]
Posted in Cyber Security | Comments Off on Cyborg Ransomware Delivers Via Fake ‘Windows Update’ Email
November 19th, 2019
Looters broke into a Durham health clinic sometime after the downtown gas explosion on April 10th that affected over 20 businesses, injured 25 people, and caused the death of two people. The subsequent theft of clinic property has prompted the clinic to notify patients that their information, including diagnoses and treatment information may have been […]
Posted in Cyber Security, HIPAA, Local News | Comments Off on Looting Adds Insult to Injury for Durham Clinic
November 14th, 2019
PureLocker, an unusual form of ransomware that attacks enterprise servers, has gone undetected for some time but has recently been revealed by cybersecurity analysts at Intezer and IBM X-Force. What makes PureLocker so unique is that it’s written in PureBasic programming language. Malicious software written in PureBasic is difficult for most security systems to detect. […]
Posted in Blog, Cyber Security | Comments Off on PureBasic-based Ransomware Discovered
November 13th, 2019
HIPAA Violations have been making headlines recently, and for good reason. Fines for violations can be crippling to companies, and the more mobile our data becomes, the greater the risk for security breech. According to the Health and Human Services website, as of September 30, 2019 the OCR has settled or imposed a civil money […]
Posted in Blog, Cyber Security, HIPAA, Press | Comments Off on HIPAA Violations Top $100 Billion
November 13th, 2019
Ascension is sharing private healthcare information with Google. The project, dubbed “Project Nightingale,” was put into play to help Ascension centralize its patient database for the over 2600 hospitals in its healthcare system. Patient information, including names, test results, and dates of birth are also being collected by Google to help develop a new software […]
Posted in Blog, Press, Technology | Comments Off on “Project Nightingale” Raises Data Security Concerns
November 13th, 2019
Global social media ad spending is projected to grow by as much as 20% this year, bringing it up to the number three slot of largest advertising channels according to Zenith’s Advertizing Expenditure Forecast. Zenith is a media ad agency parented by Publicis Media. $84 billion is slated for global social media spending, exceeding print […]
Posted in Blog, Tips & Tricks | Comments Off on Social Media Ad Spend Rising to Third Largest Advertising Channel
October 8th, 2019
Researchers at Kaspersky have uncovered a new highly sophisticated, high impact malware threat that breaks encryption: Reductor. According to the researchers, the malware “compromises encrypted web communications in an impressive way” and gives the threat actors behind it “capabilities that few other actors in the world have.” Reductor compromises the encrypted HTTPS communication, which enables […]
Posted in Cyber Security | Comments Off on Encryption Breaking Malware “Reductor” Threatens Windows Users
October 5th, 2019
The Federal Bureau of Investigation (FBI) released a warning to U.S. businesses and organizations Wednesday regarding high-impact threats across the country. Numerous cyberattacks have been documented recently involving ransomware. Despite the ever-evolving attack strategies, the FBI highlights three main attack techniques that are being used by criminals to avoid detection and infiltrate businesses and organizations: […]
Posted in Cyber Security | Comments Off on FBI Releases Malware Threat Warning
October 5th, 2019
According to Danny Adamitis and Elizabeth Wharton from Prevailion, spear phishing emails have been targeting the U.S. utilizing an obscure file format to beat antiviral software. They call this campaign “Autumn Aperture”. Attackers are sending word documents to recipients with content specialized to the victim’s recent activities. This level of specialization results in a significantly […]
Posted in Cyber Security | Comments Off on Autumn Aperture: Don’t Enable Macros
October 2nd, 2019
Not one but THREE hospitals in the DCH Health System in Alabama are unable to accept new patients today due to ransomware: DCH Regional Medical Center in Tuscaloosa, Northport Medical Center in Northport, and Fayette Medical Center. Cybercriminals have demanded an undisclosed amount of money for the unlock code. “A criminal is limiting our ability […]
Posted in Cyber Security, HIPAA | Comments Off on Malware Attack Closes Alabama Hospitals
September 30th, 2019
A security researcher who goes by the Twitter handle “axi0mX” announced on Friday that there is a permanent Bootrom vulnerability “checkm8” in Apple iOS. The flaw enables bypassing the security protections present in most Apple mobile devices. Downside: cannot be patched. Upside: physical access is needed to exploit it and a system restart erases any […]
Posted in Cyber Security | Comments Off on ‘Checkm8’: A Permanent Bootrom Vulnerability
September 30th, 2019
Airbus, a European aerospace company, had found itself the victim of several possible Chinese hacker attacks searching for proprietary data and insider secrets. According to sources, AFP spoke to seven security and industry sources, all of whom confirmed a spate of attacks in the past 12 months but asked for anonymity because of the sensitive nature […]
Posted in Cyber Security | Comments Off on Airbus Victim of Multiple Attacks
September 30th, 2019
“Advance fee” or “419” scams have been around for years. The scam works via an attempt to contact the victim so they can be gifted an exuberant amount of funds left unclaimed by a deceased individual who has the same last name as the victim or is their long-lost relative. Or in the case of […]
Posted in Cyber Security | Comments Off on NOT Your Prince Charming: Old Scam Makes Updated Revival
September 18th, 2019
The Justice Department is suing Edward Snowden and his publisher MacMillan and Holtzbrinck. Snowden, a former contractor for the CIA and NSA government agencies, released his book Permanent Record today. The Justice Department says that Snowden failed to “clear” the book with them, and they are now attempting to recover “all proceeds earned by Snowden […]
Posted in Blog, Cyber Security | Comments Off on Snowden & Publisher Sued for Book Proceeds
September 11th, 2019
Microsoft issued security updates yesterday to plug roughly 80 security issues holes in its Windows operating systems and software. Over 25% of those updates are critical. This is the fourth time this year that Microsoft has had to fix bugs in its Remote Desktop Feature. Two of the bugs resolved in this month’s patch batch […]
Posted in Cyber Security | Comments Off on Microsoft Security Patch Released 9/10/19