image
Patrick Domingues

Monthly Archives: May 2021


Why Cybersecurity Matters For Your Small Business

Cybersecurity is a crucial element for continued success in any industry. What I am sharing with you today are reasons why cybersecurity matters for your small business.

To succeed in today’s technical ecosystem cybersecurity must be part of your small to medium-sized business operations. So the same way that you’d never leave your store or office unlocked and vulnerable to street crime, you should never leave any aspect of your business network unprotected without security. Myself and many other managed service providers can provide a fully up-to-date understanding of cybersecurity — how to help you mitigate the risks and build cyber-resilience.

Why Cybersecurity Matters

Hackers and cybercriminals are getting more sophisticated each year, devising new, creative ways to fool people into handing over money or data. In some instances, they can target your systems without interacting with anyone at the company. There are many cyber security professionals but what really … Read the rest

Security Awareness

A macOS 0-day vulnerability let hackers take screenshots

A macOS 0-day vulnerability lets hackers take screenshots of your screen. Hackers have been exploiting a vulnerability in fully updated versions of macOS that allowed them to take screenshots on infected Macs without having to get permissions from any users. However, this attack is finally getting patched with the latest macOS 11.4 update released on May 24th, 2021. If you haven’t already, update your machine today.

 

The zero-day was exploited by XCSSET, the malware was discovered by security firm Trend Micro. XCSSET used what at the time were two zero-days aimed at developers, specifically their Xcode projects, which then got passed on to regular users.

 

No one really knows how many Macs are infected, but in a statement from TechCrunch, Apple confirmed that the exploit is no longer an issue after updating to the latest version, the macOS Big Sur 11.4 update. 

Read the rest
Vulnerabilities

VMware vCenter VMSA-2021-0010 Advisory

In this VMware vCenter VMSA-2021-0010 Advisory, VMware vCenter Server updates address remote code execution and authentication vulnerabilities (CVE-2021-21985, CVE-2021-21986).

VMware Impacted Products?

  • VMware vCenter Server (vCenter Server)
  • VMware Cloud Foundation (Cloud Foundation)

Who is affected?

VMware Security Advisories always list the specific product versions that are affected. In this case it is vCenter Server 6.5, 6.7, and 7.0.

What’s Happening?

In this VMware Advisory they have discovered multiple vulnerabilities in the vSphere Client (HTML5). If the hacker has access to point 443 they could exploit a vulnerability that would allow commands to be executed with unrestricted privileges. VMware advised to update your servers right now!

How to protect your servers.

You can protect yourself by patching vCenter Server, this is the fastest way to resolve this problem and removes the vulnerability completely. From there you can update any plugins as vendors release new versions.

 

Read the rest
Vulnerabilities

STRRAT Malware Is At It Again

A recent post from the Microsoft Security Intelligence revealed that STRRAT Malware is at it again with a new version release. The STRRAT malware is an odd duck to say the least. This STRRAT Malware is a Java-based RAT that poses as ransomware. It changes the file names on the infected devices by appending the “.crimson” extension without actually encrypting the files.

About STRRAT

The STRRAT Malware is actively distributing itself through a phishing campaign which includes a malicious attachment. Downloading this attachment will allow the malware to connect with the server to download the payload onto your computer. Once the payload is injected onto the computer the malware will start stealing data like passwords and installs keylogging software. It will also run remote commands and PowerShell, and executes other activities though it’s backdoor access. On top of it all the malware will also start renaming files and making them … Read the rest

Cyber Attacks

How to install Primavera P6 EPPM v20 Server and Client

In this tutorial you will be shown how to install Oracle Primavera P6 EPPM v20. We will start with server installation and then end with a working client installation.

Prerequisites

The following prerequisites are a must to be configured and available.

  • Windows Server 2019
  • Microsoft SQL Server 2019 Express
  • Microsoft SQL Server Management Studio (SSMS)
  • Windows 10 Workstation

Let’s Get Started With Server Installation 

  1. Decide which server you want to use.
  2. If its a new server download and configure Windows Server 2019 and make sure its fully updated.
  3. Download and Install Microsoft SQL Server 2019 Express. On the server and use the basic installation.
  4. Download and install SQL Server Management Studio (SSMS) on the server.
  5. Log into the Oracle Account 
  6. Go to your downloads section and search for Primavera. During the creation of this tutorial the latest is 20.12 that was used. Download all the packages.
  7. Transfer the file
Read the rest
Tutorials

What Your Out Of Office Message Tells Hackers

It’s time for a vacation or your going on a business trip and your super excited, naturally our out of office message may reveal some of this excitement to hackers. People don’t naturally think about how cybercriminals would benefit from the details of your Out Of Office Message (OOO). But this attack vector is a great social engineering opportunity.

What Can Hackers Learn From Your OOO Message?

If the company is being targeted an OOO message will raise a flag for the cyber criminal to take action to learn more about you. Many employees share information on social media publicly which can give them a painted picture to what you are doing. Many people would provide overly detailed leave notification in email signatures or add details about their time off in their OOO responses, even when they plan to return to work or the details of the conference they are … Read the rest

Security Awareness
UniFi Tutorials

Configure Unifi Controller Ports On Ubuntu 20.04

In this tutorial you will be shown how to configure Ubuntu 20.04’s Uncomplicated Firewall (ufw) with the necessary Unifi Controller ports. 

Lets Get Started

  1. First make sure that you have already have your Unifi Controller Installed and working.
  2. Log into your Ubuntu 20.04 using putty via SSH.
  3. We will now configure a proper firewall with rules for your Ubuntu 20.04 Server. We will be using the Uncomplicated Firewall (ufw). Before we turn on the firewall lets add some ports to the firewall rules.
sudo ufw allow 22
sudo ufw allow 8080
sudo ufw allow 8880
sudo ufw allow 8443
sudo ufw allow 80
sudo ufw allow 443
sudo ufw allow 3478/udp
sudo ufw allow 10001/udp
sudo ufw allow 6666/udp
sudo ufw allow 47763/udp

4. Now that we have the rules in place we can enable the ufw firewall and set it to auto start.

sudo systemctl enable ufw
sudo
Read the rest
Tutorials

Is A Comcast Business Modem HIPAA Compliant?

I know the reason your here is to find out if a stand alone Comcast Business Modem can be used in a Medical Practice and pass the HIPAA compliance security check for protecting a healthcare network. Well, first there are a few things we need to know about HIPAA and Firewall Requirements. 

HIPAA Firewalls 101

The internet is full of viruses and malicious software actively attempting to execute exploits and gain access to computers and networks. Without proper firewalls in place patient data will be vulnerable and accessible to bay guys.

Firewalls can provide a first line of defense. A firewall acts much like a solid brick wall around a building, complete with a gate and security guard. The security guard only allowing the specific things you have told him through.

What Would A Proper HIPAA Approved Firewall Do?


Can A Comcast Modem Reduce Risk And Impact Of Malware?

  • A
Read the rest
Security Policies and Compliance

Why you need a Healthcare Virtual CIO

Your Healthcare Virtual CIO (vCIO) will be your advocate and advisor. A Healthcare vCIO will offer you the highest quality customer service and they will have scheduled visitations to your healthcare business to offer ongoing assistance. 

How a Healthcare VIRTUAL CIO Works For You.

  • Analyze your current IT environment and provides regular assessments.
  • Develop an IT strategy to reach your healthcare business goals and achieve results.
  • Determine software and hardware needs and ensure timely updates and licensing.
  • Design a solution to address cybersecurity, disaster recovery, and HIPAA compliance, and implement best practices for enterprise-level protection.
  • Assess processes related to technology to improve efficiencies.
  • Provide recommendations for computers, software, and other technology to stay current.
  • Maintain compliance with stringent regulatory requirements such as HIPAA, even while your IT environment and industry evolve.
  • Solve problems have the ability to provide an experienced team of technical experts that is available 24/7.
  • Develop an
Read the rest
Uncategorized
Windows Tutorials

Windows Server Pending Reboot Status Won’t Clear

You may have a problem with Windows Server Pending Reboot Status Won’t Clear because you may have installed new windows updates, new drivers or new windows features and windows server is throwing a fit about needing to reboot, even though you have reboot it dozens of times. 

In comprehensive guide on troubleshooting the issue of a pending reboot status that won’t clear on a Windows Server. As a system administrator or IT professional, you might have encountered this frustrating situation where the server continues to show a pending reboot status even after a restart. In this article, we will explore the possible causes behind this issue and provide you with effective solutions to resolve it. So, let’s dive in and get your Windows Server back on track!

Solution 1: Check for Pending Updates

One of the common causes of the pending reboot status is incomplete update installations. To address this … Read the rest

Tutorials, Windows

Available On Amazon

Polls

What tutorials do you prefer?

View Results

Loading ... Loading ...

Categories

Archives

Subscribe Today

Want to know when new posts are published? Enter your email & click on that subscribe button.

Stay Informed

Receive instant notifications when new content is released.