Large Scale Okta Phishing Campaign Targets Many Organizations
According to ongoing research by Group-IB, a massive phishing campaign is currently underway. This is a campaign that has impacted no less than 130 organizations across a broad range of industries. These include but are not limited to professional recruiting firms and companies connected to finance and technology. Some of the companies targeted include giants […]
Healthcare Data Breach Exposes 1.3 Million Patients
Do you make use of the “MyChart” portal to refill prescriptions, contact your healthcare providers or make appointments? If so, you should know that recently, the healthcare giant Novant disclosed a data breach that impacted more than 1.3 million patients. Impacted patients had their personal information collected by a Meta Pixel ad tracking script. Meta […]
LastPass Has Been Hacked
Using different passwords on every website and storing them in a secure password manager is a standard best practice in data security. It’s generally good advice, but what happens when the makers of password vaults get hacked? That’s what the more than twenty-five million users of LastPass are now finding out. LastPass is one of […]
New Tools Available With Kali Linux 2022.3
Do you have the Kali Linux distribution running on one of the machines you own? If you’re not sure what that is, then you almost certainly don’t. Kali is a Linux distro used mostly by “ethical hackers” who use it mainly to perform security audits, cybersecurity research, penetration testing and the like. Offensive Security has […]
Microsoft Releases PoC Code For MacOS App Sandbox Vulnerability
MacOS features a powerful sandbox restriction that helps keep modern Apple computers safe by limiting how code can run on the system. Unfortunately, no system is bullet proof. There’s a way that a determined attacker could bypass sandbox restrictions and execute malicious code arbitrarily. Engineers at Microsoft discovered the vulnerability, and independent security researcher Arsenii […]
Lenovo Models Affected By Medium Severity Vulnerabilities
If you own a Lenovo laptop, be aware that researchers at ESET have recently discovered a trio of bugs reported to Lenovo that could allow an attacker to disable security features and hijack your operating system. The issues are tracked as CVE-2022-1890, CVE-2022-1891, and CVE-2022-1892 and are all classed as medium severity level. The first […]
Microsoft 365 Suggests Rollback After Issues From Update
Does your company use Microsoft 365? If so, and you’ve noticed that your Office apps have begun to crash mysteriously and inexplicably, be aware that the latest update (build 15330.20298) is the culprit. Unfortunately, the bug was introduced in the Enterprise channel during the company’s regularly scheduled “Patch Tuesday.” The error manifests itself when users […]
IoT Security With Microsoft Defender
The Internet of Things (IoT) has seen explosive growth in recent years. If you like, you can now build your own smart home with intelligent toasters, washing machines, dishwashers, and refrigerators. They are all connected to your home network, and they all make vast amounts of data available to you at your fingertips. Unfortunately, security […]
Internet Safety Tips For Parents
In today’s climate, is there anything more prevalent than the Internet? In fact, we’ve grown so accustomed to using it that the Internet now seems to help us meet any need or want. Unfortunately, we don’t often think about the effect that has on our kids, who have never known a world without this level […]
Hackers Use VoIP Systems To Install PHP Web Shells
Security researchers at Unit 42, a division of Palo Alto Networks, have been tracking the efforts of a massive campaign aimed at Elastix VoIP telephony servers. They are used by companies of all shapes and sizes to unify their communications, and it is especially attractive because it can be used with the Digium phones module […]
Google Experiences International Outage
“Just Google it.” You’ve probably heard that phrase a thousand times. In fact, you may use it yourself on a regular basis. Unfortunately, Googling it wasn’t possible recently. The iconic search giant went dark across broad swaths of the world and simply could not be accessed at all for thirty 34 very long minutes. It […]
Apple Users Will Want To Update As Soon As Possible
Do you own a device running macOS Monterey 12.5.1, or iOS/iPadOS 15.6.1? If so, you’ll want to download and install the latest patches as soon as possible. Apple recently released a small but critical security update aimed at fixing a pair of serious vulnerabilities that could allow an attacker to execute arbitrary code on an […]
Raspberry Robin Worm In Hundreds Of Windows Networks
Analysts at Red Canary Intelligence have recently spotted a Windows worm on hundreds of networks belonging to a wide range of organizations around the world. Dubbed “Raspberry Robin” by the research team that discovered it, this worm spreads via infected USB devices and was initially spotted in September of last year (2021). Another firm, Sekoia, […]
The Importance Of Having An Email Newsletter
Most business owners understand the importance of being active on at least one social media channel. That’s fine as far as it goes, but have you considered supplementing your social media presence with a good, old-fashioned newsletter? Of course, when we say newsletter, we’re not talking about something you print and mail to your customers but […]
Prepare For Windows Server 2012 End Of Support
Another week, another Microsoft “End of Life” reminder to write about. This time, it’s Windows Server 2012 R2. If you’re a user, then you’re probably already aware of the looming deadline. If you’ve blocked it out of your mind, or if you’ve missed the notifications that Microsoft has been sending out, here’s what you need […]
Microsoft Is Phasing Out Windows 8.1
If you are still using Windows 8.1 and if you’ve somehow managed to avoid seeing the parade of notices Microsoft has been sending out, you should know that the end is nigh. Support for the aging OS will end on January 10, 2023. If you have not already done so, you should begin making plans […]
Twilio Data Breach Happened Via Employee Smishing
Twilio is the Cloud Communications Company. They are the latest to fall victim to a data breach. The company recently disclosed that some of its customer data was accessed by unknown attackers who gained access to the system by stealing employee login credentials via an SMS phishing attack, known as ‘Smishing,’ for short. The company’s […]
OpenSea Warns Users Of Phishing Attacks From Data Breach
Are you a fan of NFTs? If so, you’ve probably heard of OpenSea, which is the largest marketplace for non-fungible tokens. If you have an account there, be aware that recently the company disclosed that their network had been breached and they issued a warning to their clients urging them to be on the lookout […]
Microsoft Office And Google Docs Sync For Offline Use
Recently, Google announced a small but significant change to Google Docs. Now, if you have enabled offline access for files you have stored on your Google Drive, the system will auto-sync any Microsoft PowerPoint, Excel, or Word files if you have opened them with Google Slides, Sheets, or Docs. This is a tremendously handy change. […]
Secret Twitter Accounts Are Not What You Think
Do you have a Twitter account? Have you been patting yourself on the back while assuming that your identity was a secret, allowing you to ply the waters of Twitter in anonymity? Unfortunately, that’s probably not the case. Recently, Twitter disclosed the existence of a critical security vulnerability that allows someone to discern whether a […]
Malware Is Targeting Small Office And Home Office Routers
Researchers at Lumen’s Black Lotus Labs recently spotted evidence of a highly sophisticated and tightly targeted campaign aimed at SOHO (small office/home office) routers across both Europe and North America. Based on the evidence the team has collected thus far, their conclusion is that the unidentified actor must be state sponsored. This is because garden […]
New Version Releases For iOS Devices
Apple has recently announced a new string of updates for their OS family including iOS, iPadOS 15.6, macOS 12.5, watchOS 8.7 and tvOS 15.6. Bear in mind that the next version of all of these will be out in just a few months, so these updates are a bit light on features as compared to […]
How To Easily Create An Efficient Workspace
The more efficient you are, the more effective you are. That’s true whether you’re working from the office or from home. Fortunately, most office environments lend themselves to being efficient, so there’s probably not much you need to do on that front. So, the tips below are aimed mostly at those who are working from […]
Hackers Are Stealing Facebook Accounts With Malicious Messenger Bots
Researchers at Trustwave have shed light on a recently discovered phishing campaign revolving around Facebook Messenger bots. If you don’t spend much time on social media, chatbots are programs designed to impersonate live people and are usually relegated the task of answering simple questions as a form of triage customer support. If the bot can’t […]
Fake Copyright Infringement Emails Used To Spread Malware
Hackers found a new way to slip malware past your defenses. Researchers around the world have spotted a curious new campaign designed to scare victims by sending them emails warning of copyright infringement. The email begins by warning that the recipient’s website is hosting copyright-protected content and threatens legal action if the offending material isn’t […]
Conflict Resolution In The Workplace
Conflict in the workplace is sadly inevitable. Put a group of people in a room together for eight hours or longer every day, week after week. No matter how well they get along, sooner or later, it’s going to happen. Since it can’t be completely avoided, the next best thing is to have a plan […]
Android And iOS Network Protection Added With Microsoft Defender
Recently, Microsoft added a new feature for Microsoft Defender for Endpoint (MDE) which has fans of the product cheering. Once the new “Mobile Network Protection” feature is enabled on the iOS and Android devices you want to monitor, the security platform will provide the same robust protections and notifications that your other network devices currently […]
The Windows 11 Apps That Use Your Microphone And Camera
Are you a member of the Windows 11 Insiders group? If so, then you already know that you get a sneak peek at all the cool new features the engineers at Microsoft are building into the new Operating System. If you’re not yet a member of that group, then this announcement might entice you to […]
