Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


Bad bots detected on 100% of web login pages, here’s how to protect your business

We have written and spoken frequently about web site hijacking attacks.  Here is an article that shows that EVERY website is a target of automated attacks.  Every website with a login page faces Account Takeover attempts, which increase 300% after a data breach, according to Distil Networks.


Patch now! Microsoft and Adobe release critical security updates

…And the Microsoft vulnerabilities include 0-days. Get the patches now!


Twitter admits to password storage blunder – change your password now!

Twitter has been storing your password safely in its database – but not in its logs, where it’s been writing plaintext passwords by mistake.


10 bits of career wisdom for beginning cybersecurity professionals

Cybersecurity can be a demanding and rewarding field. Here are some tips for those just starting out, based on the experience of two seasoned security pros.


5 simple tips for better computer security

Small steps really can make a big impact.


Traditional firewalls fall short in protecting organizations, says survey

A new survey, sponsored by Sophos, asked IT managers how their firewall technology is working for them. The results are in


Cyber Attacks on Schools Ramp Up: 5 Ways Districts Can Fight Back

Malware attacks against school districts are increasing in volume and complexity. Take a look inside two recent incidents that wreaked havoc on school systems in North Carolina and Idaho, then discover five practical things IT pros at any organization can do to protect their networks.


AVCrypt Ransomware Attempts to Uninstall Antivirus Software

Researchers have spotted a new ransomware variant that attempts to delete and uninstall a variety of security features, including the infected machine’s antivirus software. The malware targets Malwarebytes and Windows Defender, specifically, but also attempts to identify and uninstall all other AV solutions, as well.


 

0

About the Author:

Cybersecurity analyst, pen-tester, trainer, and speaker. Serving small business owners in the St Paul, Minneapolis, and western Wisconsin area since 2001. Cybersecurity and hacking have been a passion of mine since I entered the computer and networking business in 2000. I hold several cybersecurity certifications including Certified Information Systems Security Professional (CISSP), Certified Advanced Security Pratitioner (CASP), and Certified Ethical Hacker (CEH). Other computer industry certifications include A+, Network+ and Microsoft Certified System Engineer (MCSE). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of security on their computers, networks, and websites. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. We also provide Cybersecurity Awareness Training for clients and their employees. I am a frequent speakers at cybersecurity conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference, the (ISC)2 World Congress, and the ISSA International Conference, and many local community organizations, Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2008.

Add a Comment


This site uses Akismet to reduce spam. Learn how your comment data is processed.