Security Alert: 23 Million Bogus Emails Spreading Ransomware

In just 24 hours, over 23 million phishing emails carrying the Locky Ransomware virus have been distributed in one of the largest malicious campaigns of the year. The emails have utilized subject lines like: please print documents photo images scans pictures The emails come with an attachment, this time it’s a ZIP file containing VBS […]

Security Alert: New IRS/FBI Ransomware Scam

A new ransomware phishing scam is going around using IRS and FBI emblems to trick unsuspecting victims into clicking infected links that when clicked will encrypt your files and hold your data for ransom. Remember, the IRS does not email, send text messages nor will they contact you through social media to discuss tax issues. […]

To A Hacker—You’re Not Important But Your Data Is!

Your information is everywhere—on your personal computer’s hard drive, shopping sites, social media sites, online services you’ve signed up for, etc. How many online forms have you filled out in the past three months? Probably more than you can remember. Where do you think all this information goes? To corporate and Government databases, that’s where. […]

Attended The CIANJ’s Forum On Alternative Sources of Working Capital

I had the pleasure of attending the Alternative Sources of Working Capital forum hosted by the Commerce and Industry Association of New Jersey (CIANJ) on Wednesday, July 26th at the Saddle Brook Marriott. The meeting opened with CIANJ President, Tony Russo giving a Legislative Update informing us about current Government legislation and their affects on NJ businesses […]

Criminals Attack On A Global Scale

As you’ve undoubtedly heard, a second global ransomware attack is underway affecting the countries of Russia, Ukraine, Europe and the United States so far. Here are some facts about the latest attack: Attackers are using multiple attack vectors to spread the virus, such as: ETERNALBLUE, ETERNALROMANCE, and the PsExec command line utility. The ransomware, known […]

Security Through Reading Links

As I stated before, bad guys are very smart. One way that they fool millions of people is by using links that appear legitimate but will take you to fraudulent sites (often replicas of legitimate websites) where they’ll steal your info, money, credentials and so on. To protect yourself, learn to distinguish good site addresses […]

Malware Evolves To Dangerous Levels

Criminals are an adaptable bunch. Now that most people know not to enable macros and avoid Microsoft Word attachments, hackers came up with new ways that don’t require macros to execute downloads. The first is a malware called “Zusy” that is infecting users with compromised PowerPoint attachments that automatically downloads an executable banking trojan using […]

Sometimes Low-Tech is the way to go

I’ve spoken about this at meetings and written about it in blog posts, but hacking into cameras and spying on people can and does happen. There are high-tech solutions you can use to protect yourself that will make it harder for a hacker to penetrate your security, but if they’re determined enough they’ll eventually find […]

Anatomy Of A CEO-Wire Fraud Attack

CEO-Wire Fraud is a dangerous Social Engineering attack that cost businesses billions in losses. A good Social Engineer will study potential victims sometimes for months before attacking and craft convincing spoofed emails, targeting accounting personnel with wire transfer responsibilities. Recently, one of our best clients experienced such an attack and they graciously allowed us to use […]

Security Alert: NYS DMV Email Scam Going Around

News reports on local stations here in Rockland County, NY plus notifications on various security blogs I follow announced that an email scam pretending to be from the New York Department of Motor Vehicles is going around notifying people that they have outstanding tickets that must be paid within 48 hours or their license will be revoked. If […]