Home Archive for Security

Security

AARP presents a webinar to help you ID the “bad guys”

Posted on by

I highly recommend anyone sign up and watch these webinars. Be smart and protect yourself!

They look like the real thing, but they’re really just impostors after your identity and your money. It’s not too late to learn how to recognize and protect yourself from these clever con artists.
Don’t wait—sign up for AARP’s free, two‑part webinar today. Experts from AARP and the FTC will answer your questions live and teach you about romance scams and government impostor scams—two of the most common varieties. You’ll learn how they target people on dating sites and how they pretend to be government representatives.
Discover the local and national resources available to you. Protect yourself by registering now for this must‑see webinar from AARP.


The Impostors: Keeping Yourself Safe From Scammers
Part 1: Valentines, Candy & Online Romance Scams
Tuesday, February 5, 2019, 7 p.m. ET
Part 2: Fake Tax Bills: Protecting Yourself From the IRS Scam
Thursday, February 7, 2019, 7 p.m. ET

AARP Membership Newsletter

Register here

Even if you cannot attend the live webinar, register anyway and they will email you the recording and you can watch it anytime!

“I’m too little; I have nothing of value…”

Posted on by

An all too frequent refrain from customers when I approach them about securing their network with a firewall or a software based Security Suite. However, you ARE valuable to the bad guys and the “little guy” is the new “ripe” target as the “bad guys” have now aggressively automated their attacks with bots. They no longer care about making dollars off of your data (although you’d be surprised what some “insignificant” data is worth) — it’s all about the cents. Your data bundled together with enough others starts adding up to real money. Remember — it’s computers doing all the sorting; one “bad guy” can launch A LOT of attacks and make a nice bit of money on the side.

Don’t want to believe me? How about what Dale Drew of CSO magazine had to say in October 2017:

“But here’s a sobering thought: every second, potential cyber victims are hit with roughly 15,000 malware attempts, 15,000 phishing attempts and 8,000 scans for known vulnerabilities or exposures..”

“So, while we may not always see them, cyberattacks are nevertheless ongoing. In fact, we’re witnessing a sharp and sustained increase in attacks over the public internet just within 2017.”

Source: https://www.csoonline.com/article/3235028/security/no-target-too-small-no-industry-untouched.html

Mr. Drew continues: “A recent Incapsula report found more than 50 percent of all web traffic is botnet traffic, rather than traffic initiated by human beings. While roughly 23 percent of botnet traffic is attributed to “good” bots like search engines and feed fetchers, approximately 29 percent of bot traffic is classified as the handiwork of bad actors or automated systems scanning for exposures.”

“In the last month or so, alone, automated attacks hit some honeypots upwards of 750,000 times in a single day.”

“In other words, the bad guys don’t even have to keep their fingers on their keyboards to successfully infiltrate as many networks and machines as possible; their bots are doing it for them.”

I would encourage you to read his entire article and start considering security on your computer the same way you think about it for your home or other property. The Internet is a wondrous place full of information but it is also still the “wild west” — you need to be cautious.

daviestrek Consulting is here to help you “secure the ranch.” we can assist with helping you make your passwords more secure, install a Security Suite on your individual machine, or install a Firewall for your network that’s far more robust than a big box store router or the router provided by your ISP. All of these items are very affordable and can even be billed out monthly if that fits your budget better.

Coldroot will have you seeing red

Posted on by

As reported by Zach Whittaker at ZD Net’s Zero Day (http://www.zdnet.com/article/coldroot-nasty-mac-trojan-went-undetected-for-years/) Macs have been targets of the “Bad Guys” for years. Only recently has a very old Trojan seen the light of day: Coldroot.

These types of Trojans can act as key loggers (logging everything you type) and even act as the user with full remote control.

Antivirus vendors should be scanning for this in the near future.

 

Read the full article here: http://www.zdnet.com/article/coldroot-nasty-mac-trojan-went-undetected-for-years/

Microsoft Releases More Win10 Updates

Posted on by

Paul Thurrott (http://www.thurrott.com) just reported that Microsoft has updated the shipping versions of Windows 10 again this month. It’s another Cumulative Update so you’ll need to reboot your machine after the update gets installed. With all the Bad Guy activity going on, it’s not really surprising to me. While it’s a pain in the rear to have to reboot so often, I take solace in the fact that Microsoft is ACTIVELY trying to keep the OS patched.

Paul has all the details of what’s included in the Update here:
https://www.thurrott.com/windows/windows-10/120470/microsoft-updates-shipping-versions-windows-10-6?_hsenc=p2ANqtz-97Df9Gwmt8493Tt9ml8c0JrEM9vQ1-ipr3S4eli95oFcNNiKLKN3C2HGdPdItgqLiGDHqGNY1NPrgc1RIIsPUcV6hY3w&_hsmi=53681954

Another Day, Another Ransomware Attack: “Nyetya”

Posted on by

The Bad Guys know no shame. It appears they’re going to try every one of the tricks that was leaked from the NSA tool kit. Oh, goody. I’m saying “nyet” to “Nyetya”.

If you have servers (or even one server) you need to make sure you have all the latest patches from your Server Software Vendor — besides Microsoft that also extends to Linux (and all the variants) and even Apple products. There is no “safe” operating system from these latest attacks. Your computer (workstation) is the perfect delivery mechanism for the server attack so it’s important you keep whatever Security Suite you have up to date and fully patched. (I’m assuming you’re already keeping up with all the Microsoft and other Operating System Vendor updates regularly, right?!?)

We can provide assistance with patching all of your equipment and we also sell the Trend Micro Security Suite. We can cover your servers and your workstations (even your mobile devices) with some of the very best protection available on the Internet. You can book us online at http://connect.daviestrek.net and we’d be happy to assist you in keeping the Bad Guys at bay.

Want to know more about this latest round? Here are a couple of really good informational sources.

From Trend Micro: https://blog.trendmicro.com/trendlabs-security-intelligence/large-scale-ransomware-attack-progress-hits-europe-hard/?mkt_tok=eyJpIjoiWkdJMk16WXhOVFkyTkdFMCIsInQiOiJyTUtqZlJldHVOMVZIQjZMZDd1VGhzYVwvWTFLdGQ2Ym5CQWpIT2xPVUlJRTc4blRBdGVwelVFR1pPUW1RM0hocDYyS2loUnBPMXN0TWQ3V2hRbjl2WFwvRE9mRTd6OXJrT1dMTWQ5bmdxNGdzaWphTFwvWW5rV2tJUDNUMzZFbE1YSiJ9

From Cisco’s Talos Intelligence Group’s Blog: http://blog.talosintelligence.com/2017/06/worldwide-ransomware-variant.html