Did the Facebook Leak Impact You?

Find Out If Your Information Was Harvested from Facebook Facebook, continues to work toward rebuilding their brand after facing a major security scandal alongside London’s elections consultancy, Cambridge Analytica.  Reports have confirmed personal data was harvested from the social media giant from Cambridge Analytica.  It is believed, the election firm then used the data to […]

Continue reading


IBM Reports Ransomware is the World’s Largest Threat

IBM Security Announces Breaches Drop, While Ransomware Skyrockets On Monday, IBM Security announced results from its 2018 IBM X-Force Threat Intelligence Index which found the number of records breached dropped nearly 25%, while ransomware continues to skyrocket.  Ransomware, malicious software that encrypts files or entire networks, demands a ransom payment to decrypt the files.  Unfortunately, […]

Continue reading


Microsoft Scrambles to Patch Windows Defender Vulnerability

Microsoft Security Programs Compromised Due to Security Gap New reports confirmed Microsoft’s security programs, including Windows Defender, are suffering from a major security vulnerability.  The security gap found is within the Microsoft Malware Protection Engine (MMPE), and if it goes unpatched, will allow hackers to do significant damage.  In order for the vulnerability to be exploited, […]

Continue reading


DOJ Moves to Dismiss Kaspersky’s Lawsuit Against Congress

Kaspersky’s Lawsuit May Be Tossed Out… This week, the Department of Justice (DOJ) filed a motion to dismiss Kaspersky’s lawsuit against Congress over the ban of their products.  The Hill reports, “…Kaspersky does not have a legal basis to challenge the Trump administration’s ban on its products because, even if reversed, Congress’s ban would remain in effect.” […]

Continue reading


US-CERT Urges Implementation of Whitelisting to Thwart Russian Attacks

Government Encourages Application Whitelisting to Boost Security On March 15, 2018 the U.S. government made a statement confirming the U.S. power grid had been compromised by the Russians.  Unsettling news, to say the least.  Although, various news outlets have reported no damage was done, and they believe the primary goal was to send a message.  […]

Continue reading


New York Clinic Goes to Paper Charting After Ransomware Infects System

New York Medical Facility Riddled with Ransomware Finger Lakes Health, of Geneva, New York was infected with an unknown ransomware variant on March 18, 2018.  Therefore, the medical facility’s systems were left completely encrypted, with an unknown third-party demanding a ransom payment.  The amount of the payment has not been disclosed, and it remains unclear […]

Continue reading


Intel Facing 32 Lawsuits Due to Meltdown and Spectre Vulnerabilities

Intel in Hot Water – 32 Lawsuits Filed According to Intel’s annual 10-K report filed with the Security Exchange Commission (SEC), the company is facing 30 customer class action lawsuits and two securities class action lawsuits as a direct result of the Meltdown and Spectre vulnerabilities reported last year.  The plaintiffs of the customer suit […]

Continue reading


Top 9 Malware Variants Targeting the Education Sector

Why Schools Are Targeted When industries think of cyber targets, often times the education sector is not included.  Why?  Well, it is believed they do not carry the financial weight of bigger targets like enterprises or the healthcare industry.  Although, school systems do still hold a plethora of critical data that can be easily exploited.  […]

Continue reading


Texas County Scrambles to Recover $888K Illegitimate Payment

Harris County of Texas Falls for Phishing Scam Hackers are ruthless.  I mean ruthless.  Just weeks after Hurricane Harvey, a hacker sent an email to the Harris County auditor’s office claiming to be a contractor who was due for payment.  The email claimed they were working on restoring damaged parking lots, cleaning up debris, and […]

Continue reading


Allscripts Faces Lawsuit Due to Ransomware Infection

Ransomware Infection May Cost Allscripts Big Money… Allscripts, a company that provides electronic record systems for medical facilities was hit with a ransomware infection earlier this month.  The ransomware attack impacted several medical locations throughout the U.S., leaving them without access to their electronic data.  The severity of the impact for each facility remains unknown.  […]

Continue reading


Fake Crytpo-Currency, Ransomware & Malware in One Attack

New “Get Rich Quick” Scheme Leads to Ransomware A new scam is luring people into downloading ransomware.  The scheme is targeting crypto-wallet users, and could also be spreading through phishing attacks.  The scam is encouraging users to download a new form of crypto-currency that is bound to make them buku bucks.  The fake crypto-currency, SpriteCoin, […]

Continue reading


Hackers Exploit Meltdown/Spectre Vulnerabilities with Malicious “Patches”

Cyber Criminals Use Processor Vulnerabilities to Spread Malware Once security issues go global, cyber criminals tend to exploit them for their own gain.  It happened with the global ransomware treats, NotPetya, BadRabbit and WannaCry.  Hackers used fraudulent decryption keys to spread malware.  Now, they’re using malicious Meltdown/Spectre “patches” to spread malware.  According to Tech Republic, […]

Continue reading


Top Cyber Threats of 2017 & Tips to Stay Safe in 2018

The 2017 Global Threat Intelligence Report (GTIR) broke down the cyber security threats the world faced last year.  Not only will we discuss some key features, but also ways to mitigate each threat. 73% of Malware Attacks were Distributed via Phishing Attacks Emails with malicious intent, or phishing emails, proved to be the method of […]

Continue reading


Two Romanians Facing Charges for Hacking 123 D.C. Cameras

Hackers Arrested for Massive Cyber Attack Almost a year ago, PC Pitstop reported on a ransomware attack that took out 123 surveillance cameras days before President Trump’s inauguration.  After determining the cameras were infected with malware, it was determined Dharma and Cerber ransomware were also on the systems.  Beyond infecting the systems with ransomware, there […]

Continue reading


Crypto-Mining Malware Spreading Through Facebook Messenger

Crypto-Mining Malware Goes Global Through Messenger With crypto-currency at an all-time high, everyone and their grandmother seems to have found a way to get their hands on it.  Which is exactly why hackers are now creating malware which will mine for the digital currency.  The new malware, deemed Digmine is spreading through Facebook Messenger.  The […]

Continue reading


Kaspersky Files Lawsuit Against Department of Homeland Security

Department of Homeland Security Files Binding Operating Directive 17-01 Leading Kaspersky to Take Action Earlier this month, President Trump signed into law the Binding Operating Directive 17-01  (BOD).  The BOD called for a ban of Kaspersky Labs products on U.S. government devices.  Throughout this year, concerns have risen regarding potential ties between the Russian government and Russian-based security […]

Continue reading


2017 Comes to a Close, But Ransomware is Still Booming

New Ransomware Attacks Target Schools and Public Municipalities In the last week, two school districts have released statements confirming ransomware infections throughout their systems.  The first, Proctor School District, located in Duluth, Minnesota, reported the infection impacted middle school and high school computers that were left on over the weekend.  The ransomware variant that infiltrated […]

Continue reading


Why Ransomware is Targeting Education Sector

The Education Sector has Major Target on Their Backs… Ransomware has been targeting educational institutions over the last twelve months.  In January of 2017, the Los Angeles Community College District was hit with ransomware, and paid the hackers $28,000 to decrypt their files.  Months later, Dorchester School District Two was infected with ransomware, and paid $2,900 to […]

Continue reading


39 Texas School Districts Impacted by a Single Ransomware Infection

Ransomware Attacks Texas Department of Agriculture In October the Texas Department of Agriculture was hit with an unknown ransomware variant.  The malicious software was able to infiltrate the system through an employee’s computer.  Although the ransomware was detected quickly, it was still able to encrypt files and compromise student data from area schools. Since the […]

Continue reading


Unpacking Malware Part 2 – Reconstructing the Import Address Table

READ FIRST: Disclaimer – Malware can destroy data, damage your computer, cause your computer to damage other computers, steal information, or cause other harm to property and even life in the case of a system which is in control of some equipment or machinery. When analyzing malware, you must always do so on a machine […]

Continue reading


Ransomware Damage Costs Projected at $11.5B in 2019

Ransomware Damages Projected to Skyrocket With 2017 coming to an end, the final ransomware damages are being released.  This year alone, ransomware damages are projected to total $5 billion.  This includes not only the ransom demands paid, but also the company downtime, remediation efforts, loss in productivity, investigation costs and reputation damages.  One would almost […]

Continue reading


Phishing Impacts Victims Far More Than Breaches

Study Reveals Phishing Victims Found to Lose More Than Breach Victims Google conducted a yearlong study regarding the impacts of data breaches compared to phishing scams.  The study found only 7% of individuals whose data was exposed due to a security breach, were still using the same password.  Therefore, although the data was breached, cyber criminals […]

Continue reading


New Bill Proposed to Address Cyber Threats in Medical Industry

In 2017, there have been over 20 medical facilities that were infected with ransomware.  It remains uncertain how many of these facilities paid the ransom demands; however, each and every one of them reported issues with patient care due to the ransomware infection.  These issues range from the inability to access patient records, to turning […]

Continue reading


44% of Federal Devices Remain Unprotected

It’s Crunch Time to Protect Federal Devices A recent study revealed 44% of federal devices are not properly protected against cyber security threats.  As if this isn’t concerning enough, devices are being interconnected more than ever.  Therefore, these unprotected endpoints can serve as a gateway to infect an entire system or network.  To ensure proper […]

Continue reading


96% of Employees and Businesses Paid Ransom Demands

Majority of Employees Personally Pay Ransom Demands In a survey completed by Intermedia, it was found that a vast majority of employees paid up after being hit with ransomware.  Ransomware is a malicious software that infiltrates devices, servers, and networks which encrypts data.  After encryption a ransom note will be displayed, stating in order to […]

Continue reading


Latest Ransomware, Bad Rabbit, Takes the World by Storm

Third Global Ransomware Attack of 2017 First, there was WannaCry, which hit the globe in mid-May.  Second, came NotPetya in June.  Third, was the latest global ransomware attack, Bad Rabbit.  This ransomware variant is believed to originate in Russia.  However, it quickly spread throughout Ukraine, targeting various transportation systems.  Avast also reported infections in Poland, […]

Continue reading


Ransomware Demand Increases 2500%

Ransomware Sales Exploding on the Dark Web According to International Business Times (IBT), a new study was released confirming a significant rise in demand for the malicious software, ransomware.  The study showed 6,300 websites offering ransomware, with an additional 45,000 ads promoting the malicious software.  The price points ranged from $0.50 to $3,000.  The large […]

Continue reading


Reports Claim Kaspersky Knowingly Played Role in NSA Hack

More Breaking News – Kaspersky Labs Knew of NSA Breach Role? In 2015 a government contractor placed confidential, NSA data on his personal computer.  This computer was using the Russian-based security solution, Kaspersky Labs.  Allegations have been surrounding Kaspersky Labs, regarding inappropriate ties to the Russian government, as well as collusion with the hackers who […]

Continue reading


Kremlin Hackers Use Kaspersky Antivirus to Obtain NSA Data

New Developments Explain How Russia Obtained NSA’s Internal Details – And Guess Who’s in the Middle?? In 2015, the National Security Agency (NSA) suffered a data breach, that went undetected until early spring of 2016.  The breach was direct aftermath of a contractor transferring highly classified information to his home PC.  The hackers, who were […]

Continue reading


Locky Ransomware Returns as Ykcol

Locky Encrypts Files Leaving a .Ykcol Extension A new Locky variant has been released into the wild and upon initial review it led researchers to a believe it was a new strain entirely, called Ykcol.  However, after additional review, experts have confirmed Ykcol is another version of Locky. The email subject line has been confirmed […]

Continue reading


What is an Advanced Persistent Threat (APT)?

In the anti-malware world, you may hear the term APT which is short for Advanced Persistent Threat. It sounds like a complicated buzzword. What is it really? Before we start talking about what an “advanced” persistent threat is, let’s just start with a plain ol’ persistent threat. In computer science, the term “persistence” is generally […]

Continue reading


Russians Allowed to Dissect Pentagon’s Security Software

Pentagon’s Security Software Source Codes Provided to Russian Defense Agency Wait, what?!  Yes, it is true.  Hewlett Packard Enterprise (HPE) allowed a Russian defense agency to dissect the source codes for the security software used by the U.S. military.  The HPE program, deemed ArcSight, alerts analysts when there are concerns computer systems are under attack.  […]

Continue reading


U.S. Government Ordered Federal Agencies to Remove Kaspersky From All Devices

Federal Agencies Have 90 Days to Remove Kaspersky Labs Products Moscow-based security company, Kaspersky Labs, has been in hot water this year.  With the U.S. investigating potential ties between the company and the Russian government, several entities have abandon the use of the popular antivirus.  First, the U.S. government removed Kaspersky from all military devices. […]

Continue reading


No. 1 U.S. Electronics Retailer Drops Kaspersky Products

Best Buy No Longer Selling Kaspersky Best Buy, the largest electronic retailer in America, has removed the Russian-based security solution, Kaspersky Labs, from its shelves.  The decision to cut the security program from their product line comes shortly after the FBI urged private sector companies to discontinue the use of Kaspersky on their devices. Both […]

Continue reading