The FBI, NSA, CISA, Australia, Canada, New Zealand and the UK (AKA the US and the Five-Eyes Countries) issued a joint advisory on Chinese cyber tactics in light of the Guam critical infrastructure attack. Living off the Land means an attack that uses existing, already installed, vendor signed software to launch an attack and maintain […]
Continue reading → [DISPLAY_ACURAX_ICONS]Sometimes a Patch Goes Sideways HP is working to figure out how to deal with a firmware update to a number of Office Jet printers that “bricked” the printers, meaning that these printers are only useful as a brick or paperweight. The will not boot and all the user gets is a blue screen with […]
Continue reading → [DISPLAY_ACURAX_ICONS]The feds have upped the game and are going after companies that get breached that do not have effective cybersecurity programs. In this case, practice management software vendor Professional Business Systems, Inc. The company, who does business under the name Practicefirst Medical Management Solutions failed to install a firewall patch in January 2019. That failure […]
Continue reading → [DISPLAY_ACURAX_ICONS]There is always a dark side to any piece of tech. AI is no exception. Dozens of verified Twitter accounts with large numbers of followers showed this picture today. Only the photo posted on Twitter did not have a big red FAKE on it. Accounts such as @WarMonitors, @BloombergFeed, and RT posted an image of a large, gray smoke […]
Continue reading → [DISPLAY_ACURAX_ICONS]Part Time Hackers Get Rich A business email compromise hacking group, based in Israel, is so good that it only needs to work part time. Only targeting large companies and their executives, the average haul for this team is $712,000. The overall average from BEC attacks is only $65,000. Learn their success strategy and avoid […]
Continue reading → [DISPLAY_ACURAX_ICONS]RICO is a dragnet law which can subject people and companies to very serious penalties and jail time. This is an extension of the negligence class-actions that use the principles of the Caremark Standard to go after companies with inadequate cybersecurity programs. This is a shift away from the lawsuits the claim that “my social […]
Continue reading → [DISPLAY_ACURAX_ICONS]