Category Archives: Cybersecurity
Why You Need Security Education and Awareness Training.
One of the greatest threats to information security could actually come from within your company or organization. Inside ‘attacks’ have been noted to be some of the most dangerous. It is not always disgruntled workers who are a threat. Often, it is the non-malicious, uninformed employees. 1. It is the first line of defense against…
New SpeakUp Backdoor Infects Linux and MacOS
A new malware campaign has been found containing a new Backdoor Trojan called SpeakUp and they are targeting Linux Servers and MacOS by exploiting vulnerabilities in their systems. Check Point researchers stated that the malware campaign attacks Linux servers from all over the world using the CVE-2018-20062 ThinkPHP remote code execution vulnerability as an initial infection vector….
The Decorating Website Houzz Was Breached
The decorating website called Houzz stated that account usernames and passwords have been compromised by an unknown source. They also mentioned if their users also logged into Houzz using Facebook, their user’s public Facebook ID was exposed as well. Houzz quickly sent emails to their users base to urge them to change their passwords. “Houzz…
Airbus suffered a data breach.
Aerospace giant Airbus has become the latest victim to hackers, they said the company suffered a cyber attack that lead to a massive data breach which released billions of records onto the Dark Web. “Airbus SE detected a cyber incident on Airbus ‘Commercial Aircraft business’ information systems, which resulted in unauthorized access to data,” the company…
Is Microsoft OneDrive HIPAA Compliant?
Are you looking to find out if OneDrive is a HIPAA compliant cloud storage solution? We reviewed the Microsoft Trust Center and found a page called HIPAA and the HITECH Act. Within the document Microsoft states the following: “Currently there is no official certification for HIPAA or HITECH Act compliance. However, those Microsoft services covered under the BAA…
Apple Disables Group FaceTime due to Major Privacy Glitch
Apple has disabled the Group FaceTime software temporarily due to a software bug that allows other iOS users to listen in on private conversations without any notification to reject or accept a call. The bug is believed to impact any pair of devices running iOS 12.1 or later, according to reports. Security Experts – like Eva…
Top Scam Emails You Should Be Vigilant About
Scam emails have evolved to a point that make it very difficult to tell which are real and which are fake. These days phishing emails are imitating legitimate brands to trick victims into providing credentials over a fake landing page. Roughly one in four Americans in constantly online. According to Research, Email Phishing scams this…
Phishing Campaign Delivers A Double Hitter
A phishing attack is being sent with Word attachments that deliver both the Gandcrab ransomware and Ursnif executable. This phishing campaign was detected by researchers at Carbon Black, this attack has hit infected systems with a lethal attack combination that harvests credentials, gathers system and process information and afterwards it encrypts data in order to…
DHS Issue Urgent Warning on Domain Name Service Hijacking
The Department of Homeland Security states that some agencies are being targeted by specific attacks that modify the Domain Name System Records, which critical function of the processes to locate websites. DHS issued an emergency statement giving government agencies 10 days to verify that their DNS records are accurate. There has been a series of incidents where…
MySQL Design Flaw can be leveraged to steal sensitive information
MySQL has released a security statement providing the following information: The LOAD DATA statement can load a file located on the server host, or, if the LOCAL keyword is specified, on the client host. There are two potential security issues with the LOCALversion of LOAD DATA: The transfer of the file from the client host to the server host is initiated…