cybersecurity Archives - WyzGuys Cybersecurity

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

FBI Releases Guidance on Defending Against VTC Hijacking and Zoom-bombing

Original release date: April 2, 2020

The Federal Bureau of Investigation (FBI) has released an article on defending against video-teleconferencing (VTC) hijacking (referred to as “Zoom-bombing” when attacks are to the Zoom VTC platform). Many organizations and individuals are increasingly dependent on VTC platforms, such as Zoom ...

Continue Reading →

4
APR

0

Share

account hijacking, Apple, cybersecurity, encryption, Facebook, Weekend Update

elections, electronic voting, firefox, robocalls, Zoom

How Secure is Your Tech Support Company?

Is your computer technology Managed Service Provider (MSP) the weakest link in your supply chain security program? Are they the easiest point of entry for an attacker? Your contracted tech support provider holds keys to your computer network that are coveted by cyber-attackers. MSPs are commonly targeted by cyber-criminal groups and other bad actors because MSPs have ...

Continue Reading →

1
APR

0

Share

account hijacking, authentication, cybersecurity, insider threat, multi-factor authentication, Phishing, social engineering

managed service provider, MSP, supply chain security, third party vendor security

Reducing Risk When Deploying IoT Devices in Business

The Internet of Things (IoT) has given us a plethora of exciting and helpful computer driven devices. But the state of IoT security remains a dumpster fire. As these devices appear in the workplace, businesses are often failing to consider the impact these poorly secured devices have on their carefully crafted cybersecurity programs. Every one of these devices represents a new ...

Continue Reading →

27
MAR

0

Share

cybersecurity, Internet of Things, Security

industrial control systems, SCADA

The Danger of Sub-Domain Hijacking

Here is a frightening twist on your typical domain name spoofing. Attackers have found ways to reuse legitimate sub-domains of well know business entities such as Microsoft and other companies to seed phishing email links with authentic sub-domains.

What is a sub-domain?

Anyone person or business that has a registered domain name can create any sub-domain they would like on the main domain that they ...

Continue Reading →

25
MAR

0

Share

account hijacking, cybersecurity, Phishing, social engineering

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Ethical hackers swarm Pentagon websites

Sounds like cyber-war! Is it the Russians? Hackers are crawling all over the US Department of Defense’s websites – and DoD officials are quite happy about the whole thing. It’s pen-testing, baby.

Adventures in Penetration Testing – Breaking into Prison

Black Hills Information Security, and owner John Strand are ...

Continue Reading →

21
MAR

0

Share

account hijacking, cybersecurity, social engineering, Software vulnerability, Weekend Update

pen-testing, penetration testing

Guest Post – Why Should Data Security Be Your Top Priority

Have you or your business been a victim of data theft? Would you even know if you were? In this world where almost everything is accessible online, data security has become a global issue. Many criminal minds have surfaced throughout the years, using their skills in technology to illegally make money at the expense of other people’s information online. In fact, ...

Continue Reading →

20
MAR

0

Share

cybersecurity, Identity Theft

VPN

FBI Reports Email Account Hijacking Is Still Number One

The FBI’s 2019 Internet Crime Report, came out February 25. Email account hijacking, or Business Email Compromise (BEC) is the top money maker for cyber-criminal groups, earning them an estimated $1.776 BILLION with a B. CEOs of companies are top targets for this exploit, and usually it begins with a phishing email.

Even though ransomware is the big noisy topic, in terms of dollar losses, it is not even in the top ten, although a lot of expenses and costs ...

Continue Reading →

18
MAR

0

Share

account hijacking, Computers and Internet, cybersecurity, law and policy, Phishing, ransomware

Cybersecurity Issues of Tele-work During COVID-19 Pandemic

Usually, I am combating computer viruses. These days, I am defending against the coronavirus, and COVID-19.

Why am I, as a cybersecurity professional, posting an article on COVID-19? Cybersecurity covers more territory than many people realize. Of course, a cybersecurity professional is always focused on protecting systems, networks, data, and information. But any cybersecurity certification I have personally taken has ...

Continue Reading →

16
MAR

0

Share

cybersecurity, Virus, Viruses

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

How to Sanitize Electronics During COVID-19 Pandemic

Usually when I am talking about sanitizing a computer, I am talking about irreversibly deleting all the personal data. If you work on a computer, especially a SHARED COMPUTER, the keyboard and mouse needs to be sanitized periodically. A keyboard can have more germs than a toilet seat, and is ...

Continue Reading →

14
MAR

0

Share

certification, cybersecurity, education, encryption, privacy, ransomware, training, Weekend Update

Brave, COVID-19, DNS over HTTPS, DNS over TLS, NSA

Scam Week – Impersonation Scams

The heart of a good scam is pretending to be someone you are not. This form of social engineering is known as the impostor scam or impersonation scam. Impostors can take different forms, and may show up on a phone call, or as an email from a trusted friend or family member, business associate, customer or coworker. Often they ...

Continue Reading →

13
MAR

0

Share

account hijacking, Computers and Internet, cybersecurity, Identity Theft, social engineering