In a recent analysis of a new ransomware, we uncovered a unique twist to the “payment” method for recovering your files. The hackers require the victim to send in at least 10 nude pictures of them. Once the victim sends in the images, the hackers will supposedly verify it is actually you, and then sell […]
The New Ransomware Currency – Nude Images? Read More »
Recently, an article was posted on CIO.com and other IDG outlets, titled “Yes, you still need endpoint malware protection”, questioning the need for end point security. Several publications pointed out that end point security is not needed, due to the operating systems and other components being more secure. However, as we’ve seen in the most
Misconceptions: PC Matic’s Whitelist Read More »
Over the past few days, many businesses have reported infections from the latest round of ransomware called WannaCrypt. This massive cyberattack is likely to have stemmed from stolen tools used by the National Security Agency (NSA). Due to the rate of infection, and the number of machines being infected by WannaCrypt, Microsoft has released an
WannaCrypt Ransomware: Protecting your computers against the latest ransomware Read More »
As if our jobs as IT admins isn’t difficult enough, hackers have taken to finding misconfigured MongoDB databases, and are holding them hostage, until a ransom has been paid. Similar to traditional ransomware, where files on a computer are encrypted until a fee has been paid, databases, are being held hostage, instead. The modus operandi
The Latest Ransomware Craze – Holding MongoDB Databases Hostage Read More »
One of the current tactics ransomware authors are using to infect your network, is to send email attachments containing malicious scripts. These scripts are often VBScript (.vbs), Windows Script Files (wsf), or JavaScript (.js) files, and when executed, will download a DLL or EXE to spawn the infection. An example JavaScript which downloads and executes
Blocking Ransomware Scripts with Exchange Transport Rules Read More »
Hackers are currently targeting business of all sizes in the latest round of phishing campaigns. The way the social engineering attack works is emails are sent to employees with PDF attachments, claiming to have “secure or protected documentations”. Unlike many cases in the past, these PDFs do not have malware embedded in them. Instead, they
ALERT: Latest Round of Phishing Campaigns Targeting Businesses Read More »
Yahoo has confirmed nearly 500 million users’ data has been stolen…
What Should the Yahoo Security Breach Mean to You? Read More »
A security team demonstrates how Tesla can be hacked by taking control of various car controls…
Hacking Connected Devices – Tesla Vulnerable to Remote Hacks Read More »
Dual protection for Samba file server could help ward off hackers…
A Creative Way to Protect Your Linux Samba Server from Ransomware Read More »
Hackers work through the holiday to send out text message phishing attacks to American Express users…
American Express Text Message Phishing Attack Read More »