Google Joins Facebook & Twitter in Password Storage Issues

May 22nd, 2019

Google

Twitter did it. Facebook did it. Now Google’s done it. Google revealed Tuesday in a blog post that it accidentally stored its users’ passwords unprotected in plain text.  For fourteen years, any Google employee with access to the Google internal servers could read them. G Suite, previously known as Google Apps and mainly a business […]

Five Ways to Avoid a Ransomware Attack

May 20th, 2019

57e9d1474c5aa414ea898675c6203f78083edbe05b52784d772c72 1280 Hack

Ransomware attacks are on the rise, and while most attacks are aimed at large entities who can provide large payoffs, individuals are still at personal risk. Until money is paid, you could be looking at a total lockout of all of your files, email, and financial systems. Here are just a few ways to minimize […]

Ransomware Attacks Continue to Target US Cities

May 17th, 2019

55e3d6444c55a914ea898675c6203f78083edbe05b52784d732d7e 1280 Baltimore

So far in 2019, there have been 22 reported public-sector ransomware attacks on US cities, signaling a rise in frequency since 2018. The attacks are targeted at local US government facilities such as cities, police stations, and schools. Some of these attacks have cost millions of dollars in ransom to get functioning again. Recorded Future, […]

Raised Stakes in Baltimore Ransomware Attack

May 15th, 2019

Image credit: Inner Harbor sky in Baltimore after a storm passed by Mark Peters

The city of Baltimore was recently hit with a crippling ransomware attack, bringing most of the city’s servers down and affecting everything from bill payments to government communications. Baltimore has refused to pay, so the hackers seem to have upped the ante. A newly-created Twitter account claims to show screenshots of sensitive information purloined from […]

Intel Zombieland Fix Threatens Processor Performance

May 9th, 2019

5fe4dc4a4b57b114a6da8c7ccf203163143adbed5058754a7427 1280 Zombie

“Zombieload” vulnerabilities of the microarchitectural data sampling (MDS) variety have been discovered by researchers Michael Schwarz, Moritz Lipp, and Daniel Gruss at Graz University of Technology in Austria, as well as Jo Van Bulk at Belgium’s KU Leuven. These latest flaws in Intel processors can be utilized by attackers to steal private data from PCs […]

Hawkeye Uses NSA Cyberattack Tools

May 8th, 2019

57e9d0414a50ab14ea898675c6203f78083edbe05b52784d712878 1280 Cyber Attack

The mystery surrounding the misappropriation of some of the National Security Agency’s most effective cyberweapons deepened recently when a Chinese hacking group known as Buckeye, APT3, and Gothic Panda utilized NSA exploits and attack tools EternalRomance and EternalSynergy. It remains unclear how they obtained the NSA tools though both were released by the Shadow Brokers. […]

Homeland Security Warning for VPN Security Flaws

April 25th, 2019

Vpns Vulnerable

Companies use enterprise VPNs, or virtual private networks, to allow employees to work remotely. An alert from the Department of Homeland Security just announced, however, that a vulnerability has been discovered in some major enterprise VPN providers. The vulnerability stems from authentication tokens that store a user’s login credentials on their computer so they don’t […]

PayPal’s New Ransomware Detection

April 23rd, 2019

Paypal

By now everyone should know that ransomware is a huge threat. PayPal aims to do something about that. What we can figure out from the patent filed by the online transaction company is that PayPal seems to have found a way to detect ransomware before all your files are locked away, and in that time […]

Conflicting Information on Recent Microsoft Email Data Breach

April 18th, 2019

E83db40629fc063ecd0b470de7444e90fe76e7d01cb7114997f8c2 1280 Microsoft

Reports from Techcrunch a few days ago stated that an email breach occurred between January 1st and March 28th at Microsoft. The breach exposed email addresses and subject lines of an unknown number of accounts, but no actual email content. Microsoft states that a customer support representative’s account credentials were compromised which allowed access to […]

vxCrypter: Ransomware and Duplicate File Cleanup

April 11th, 2019

Ef36b8072be91c72d252440dee4a5b97e672e6dc10b8114796 1280 Duplicate

vxCrypter Ransomware not only encrypts your computer, it also deletes duplicate files.  According to Lawrence Abrams, creator and owner of BleepingComputer, the vxCrypter Ransomware could be “the first ransomware infection that not only encrypts a victim’s data, but also tidy’s up their computer by deleting duplicate files.” vxCrypter is based on an older ransomware called […]

Unprotected Amazon Cloud Puts Half Billion Facebook Users at Risk

April 10th, 2019

Unlocked Cloud

Third party Facebook app developers have caused yet another database leak.  Unprotected Amazon cloud servers put more than half a billion Facebook user information at risk. UpGuard, a cybersecurity firm, discovered that two datasets were publicly accessible—Coltura Colectiva, a Mexican media company, and “At the pool”, a Facebook-integrated ap. Researchers at the cybersecurity firm UpGuard […]

Wake County leaders trying to get out in front of wave of ransomware attacks

April 9th, 2019

Wake County Leaders Trying To Get Out In Front Of Wave Of Ransomware Attacks

RALEIGH, N.C. (WNCN) – As hackers’ attacks impact local governments and other entities across the country, Wake County leaders took a closer look Monday at efforts to detect threats and mitigate their effects. Bill Greeves, the county’s chief information and innovation officer, told county commissioners about training employees receive in identifying risks and how his […]

Your Best Defense: Training, Prevention and Cyber Insurance

April 2nd, 2019

Eb34b50f21f0013ecd0b470de7444e90fe76e7d01db3104690f9c5 1280 Armor

Insurance companies are among the growing chorus of those who say it’s not a matter of if your law firm will get hacked, it’s a matter of when. And that has given rise to more carriers offering cybersecurity insurance. “If I could convince people of one thing, it’s that security by anonymity is false. It’s […]

Repetitive Exposure to Phishing Improves Employee Click Rate

March 27th, 2019

Ea3db00d2afc1c3e81584d04ee44408be272e7d61eb0164594f9 1280 Click

Like most things in life, practice makes perfect.  Well, perhaps, better at least.  KnowBe4 has reported that a “long-term phishing study involving 6 healthcare institutions shows employees are vulnerable to phishing attacks and that they can become more vigilant through exposure.” Researchers initiated 95 separate campaigns studying employee interaction with over 2 million simulated phishing […]

Meditab Fax Server Leak

March 26th, 2019

Fax

California-based Meditab, a leading software maker for healthcare electronic medical records, was leaking thousands of doctor’s notes, medical records, and prescriptions. The cause? A security lapse that left a fax server without a password. Without a password, the over six million records in its database could be read in real time. And to add insult […]

North Carolina First in Flight Again: First UPS Drone Delivery

March 26th, 2019

Wakemeddrone Jmw 01

North Carolina proudly claims the slogan “First in flight” thanks to the first manned flight carried out by the Wright brothers in Kitty Hawk, North Carolina. Now North Carolina can claim another first in flight. UPS’s first drone delivery was carried out in the state capital, Raleigh. The use of drones is expected to not […]

Time To Change Your Facebook Password (Again)

March 22nd, 2019

Ee33b40c2ae91c72d252440dee4a5b97e672e1d710b0154295 1280

Hard on the heels of CEO Mark Zuckerberg’s lengthy Facebook post that the social network was doubling down on privacy and ensuring users’ data remains safe, Facebook faces yet more negative publicity. KrebsOnSecurity recently announced that an internal investigation has found between 200-600 million Facebook user passwords stored in insecure plaintext format. Meaning any of […]

Citrix Systems Attacked Again

March 18th, 2019

Eb36b90f2cf6033ecd0b470de7444e90fe76e7d01bb8144994f1c8 1280 Computer Attack

Citrix Systems announced an apparent network penetration by hackers. The Fort Lauderdale, Florida technology business was appraised by a suspected problem last Wednesday by the FBI. They have launched a full investigation. Stan Black, Citrix’s CSIO, said in his blog post on Friday that while the hackers appear to have accessed and stolen business documents, […]

Your Partner in Fighting Ransomware

March 18th, 2019

Eb36b40b2dfc023ecd0b470de7444e90fe76e7d01bb814459cf6c3 1280 Attack

Ransomware is here with a vengeance. Cybercriminals are seeing far too much reward for their efforts to stop now. Coverware recently released their 2018 Q4 Ransomware Marketplace report with numbers that confirm the trend. Victim company sizes have increased so their payouts have increased. Coverware has also seen a 39% increase in attacks on backups, […]

Jackson County Pays $400k Ransom

March 13th, 2019

Ransomware Red

Jackson County, Georgia finds its coffers down by $400,000 this week thanks to cybercriminal ransom. A ransomware infection blocked access to the county IT systems for most of the local government with the exception of its website and 911 services. Though the county has hired a cyber-security consultant, they have yet to confirm how the […]