Attended The CIANJ’s Forum On Alternative Sources of Working Capital

I had the pleasure of attending the Alternative Sources of Working Capital forum hosted by the Commerce and Industry Association of New Jersey (CIANJ) on Wednesday, July 26th at the Saddle Brook Marriott. The meeting opened with CIANJ President, Tony Russo giving a Legislative Update informing us about current Government legislation and their affects on NJ businesses […]

Criminals Attack On A Global Scale

As you’ve undoubtedly heard, a second global ransomware attack is underway affecting the countries of Russia, Ukraine, Europe and the United States so far. Here are some facts about the latest attack: Attackers are using multiple attack vectors to spread the virus, such as: ETERNALBLUE, ETERNALROMANCE, and the PsExec command line utility. The ransomware, known […]

Security Through Reading Links

As I stated before, bad guys are very smart. One way that they fool millions of people is by using links that appear legitimate but will take you to fraudulent sites (often replicas of legitimate websites) where they’ll steal your info, money, credentials and so on. To protect yourself, learn to distinguish good site addresses […]

Malware Evolves To Dangerous Levels

Criminals are an adaptable bunch. Now that most people know not to enable macros and avoid Microsoft Word attachments, hackers came up with new ways that don’t require macros to execute downloads. The first is a malware called “Zusy” that is infecting users with compromised PowerPoint attachments that automatically downloads an executable banking trojan using […]

Sometimes Low-Tech is the way to go

I’ve spoken about this at meetings and written about it in blog posts, but hacking into cameras and spying on people can and does happen. There are high-tech solutions you can use to protect yourself that will make it harder for a hacker to penetrate your security, but if they’re determined enough they’ll eventually find […]

Anatomy Of A CEO-Wire Fraud Attack

CEO-Wire Fraud is a dangerous Social Engineering attack that cost businesses billions in losses. A good Social Engineer will study potential victims sometimes for months before attacking and craft convincing spoofed emails, targeting accounting personnel with wire transfer responsibilities. Recently, one of our best clients experienced such an attack and they graciously allowed us to use […]

Security Alert: NYS DMV Email Scam Going Around

News reports on local stations here in Rockland County, NY plus notifications on various security blogs I follow announced that an email scam pretending to be from the New York Department of Motor Vehicles is going around notifying people that they have outstanding tickets that must be paid within 48 hours or their license will be revoked. If […]

9 Online Shopping Security Tips To Keep You Safe

  Statistics show that 51% of Americans prefer to shop online and that percentage is growing rapidly. Cyber-thieves are just waiting to steal your money, information and identity. But, taking common-sense precautions will go a long way to keeping you safe:   Never use a debit card. If a hacker gets your information, they’ll be […]

Security Alert: DocuSign Breach Leads To Phishing Attacks

A recent breach at DocuSign has led to phishing campaigns designed to infect recipients with credential stealing and banking trojans: Pony, EvilPony and ZLoader. DocuSign is one of the most widely used electronic signature applications with 200+ million users. As an immediate measure, DocuSign recommends that you delete any email that appears to come from […]

How To Identify A Phishing Email—An Example

One of our good clients sent us a phishing email supposedly from Microsoft. It fooled a very experienced user and so would be a good example to use to show our readers how to identify Phishing emails. Fortunately, the bogus link did not forward to an infected website where ransomware could have been instantaneously downloaded, […]