Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

CISA Releases Telework Essentials Toolkit

Original release date: September 30, 2020

The Cybersecurity and Infrastructure Security Agency (CISA) has released the Telework Essentials Toolkit, a comprehensive resource of telework best practices. The Toolkit provides three personalized modules for executive leaders, IT professionals, and teleworkers. Each module outlines distinctive security considerations appropriate for their ...

Continue Reading →
10
OCT
0

Android, Apple, botnet, Computers and Internet, cybersecurity, malware, ransomware, smartphones, training, Weekend Update

, , ,

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.  Insider threat edition.

Quote of the Week

Insider threats are not viewed as seriously as external threats, like a cyber attack. But when companies had an insider threat, in general, they were much more costly than external incidents… The insider that is smart often has the right skills to hide the crime, sometimes forever.

— Dr. Larry Ponemon, on the impact ...

Continue Reading →
12
SEP
0

botnet, insider threat, Weekend Update

Millions of Chinese-made IoT Devices Easily Hacked says Brian Krebs

If you bought a security camera, webcam, baby monitor, smart doorbell, digital video recorder or other IoT device manufactured in China, there is bad news.  Security flaws have been discovered that can easily  allow an attacker remote access, remote control, and password discovery on affected systems.  These devices can also be hijacked to use in a variety exploits including eavesdropping ...

Continue Reading →
8
MAY
0

authentication, botnet, Computers and Internet, cybersecurity, Internet of Things, Software vulnerability

Botnet Targets Banks With Phishing Emails

Cyber-criminals are using a botnet to send phishing emails with the apparent purpose to test a new email attachment type.  Over the course of three weeks starting August 10th, this cyber-gang released seven different types of phishing emails to over 3,000 banks around the world.  They appear to be testing which of these several approaches is most successful at tricking recipients into opening the email attachment.

The attachment itself is also something different – Microsoft Excel Web Query files that use ...

Continue Reading →
29
AUG
0

botnet, cybersecurity, Phishing

When Web Bots Attack

When web bots attack, what websites are the most likely to targets?  We discussed automated attacks against websites last month.  Here is some new information from Distil Networks about who the main targets have been in the recent past. If your business is included in the following list, you may want to ramp up the security posture of your website and web hosting account.

The industries ...

Continue Reading →
13
APR
0

botnet, Computers and Internet, cybersecurity, Identity Theft, Web Design, WordPress

Are Malicious Bots Visiting Your Website?

Bots are alive, well, and busy on the Internet, making up nearly half of Internet traffic. Bad bots are used by cyber-criminals and cyber attackers to automate harmful exploits and attacks, such as denial of service attacks, crypto-coin mining, data mining, information exfilitration, account hijacking, vulnerability scanning, spamming, and other illegal or illicit activities.

Not all bots are bad.  Some of these site visitors are helpful, such as the automated bots ...

Continue Reading →
14
MAR
0

botnet, Computers and Internet, cybersecurity, Web Design, WordPress

Merry Christmas -The Internet of Insecure Toys

Are the toys you are buying for your kids hackable?Can anyone listen in or have a conversation with your kids via an Internet connected toy?  Sorry, but the answer is “yes.”

We have been writing for a while about the grievous lack of security on Internet-connected “smart” appliances, web cameras, baby monitors, door locks, thermostats, personal assistants, Wi-Fi, Cable, and DSL routers, and ...

Continue Reading →
27
NOV
0

artificial intellegence, botnet, Computers and Internet, cybersecurity, Identity Theft, Internet of Things, Security, surveillance

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

70k minimum wage has been a profound success and failure – two years later

Tech company Gravity Payments instituted a $70 K minimum wage two years ago.  It has long been my personal contention that the drop in real starting wages (against inflation) coupled with ...

Continue Reading →
21
OCT
0

botnet, Computers and Internet, cybersecurity, education, encryption, Internet of Things, law and policy, Security, Wi-Fi, wireless

BlueBorne Bluetooth Hijacker – What Do We Know?

Cybersecurity researchers at Armis Labs have released information about a new attack vector called BlueBorne.  This exploit has the potential to put millions of devices running Windows, Linux, Android or iOS operating systems at risk.

This exploit allows attackers to connect over the Bluetooth radio system with having to first pair the two Bluetooth enabled devices.  Once installed, the attacker has full control ...

Continue Reading →
29
SEP
0

Android, Apple, botnet, Computers and Internet, cybersecurity, Internet of Things, Linux, malware, Security, smartphones, Software vulnerability, Spyware, wireless

Page 1 of 2 12