INFORMATION TECHNOLOGY FOR SMBs
Our blog articles archive includes it security tips, cybersecurity alerts, state of IT reports, and tips on information technology for small and medium size businesses.
A new version of the LockBit ransomware offering recently appeared and is experiencing rapid growth. This growth is occurring to a great extent due to the July 2021 disappearance of REvil (“Ransomware Evil”), a private ransomware-as-a-service (RaaS) known for its major attacks on JBS and Kaseya, impacting the operations of over 1,500 companies. LockBit is aggressively advertising to cybercriminals, which lease out LockBit to conduct ransomware attacks. One of the selling points to cybercriminals is that the new LockBit version
Powersolution is receiving reports of the persistence of BazaCall (BasarCall) malware attacks, which were initially documented in early 2021. If you receive a fraudulent or suspicious email such as this, Do Not Respond. Here is how this fraudulent email works: Attackers use email to prompt victims to call a fraudulent call center to cancel a supposed subscription before they are automatically charged. The call center is staffed with attackers who tell the caller to access a website and download an
Threat actors are using browser push notifications to convince users into installing fraudulent Windows Defender updates. A popup will appear in the tray to notify the user of the update. If clicked, the user will be directed to a fraudulent update website that prompts users to download and run a signed ms-appinstaller (MSIX) package purporting to be published by Microsoft. Once installed, it appears in the Start Menu but serves as a shortcut to an installed data-stealing Trojan that targets
Abnormal Security, an email security vendor, has published a report on a new phishing campaign discovered that uses a compromised account, a trusted email security system (such as Zix, is an email security vendor with a primary focus on email encryption solutions), and multiple redirect links. The email is crafted to create a sense of security and authenticity as the header and footer include a message that the email was sent securely using the Zix email encryption system. When the
Global Insurance Underwriter AXA Group Drops Reimbursement for Ransomware Payouts, Reinforces the Need for Businesses to Bolster Their Cyber Defenses The AXA Group is a Paris-based global insurance underwriter and asset management company doing business in 54 countries, including the U.S. Earlier this month, the insurance giant announced that it will no longer write cyber insurance policies in France that provide reimbursements to customers for ransomware extortion payments. It appears AXA is the first insurer to take this step. It
Researchers have found three new malware families, Doubledrag, Doubledrop, and Doubleback detected in December 2020 and tracked as UNC2529. These malware strains used in an ongoing phishing campaign throughout the financial industry are being tracked as UNC2529. Organizations in the US, EMEA region, Asia, and Australia have been targeted by the sophisticated cybercriminals Key Elements to be aware of in the UNC2529 phishing campaign: Malicious emails contained highly personalized messages. Over 50 domains were similar to CEO Fraud attacks, used
This week, the Center for Internet Security’s Multi-State Information Sharing and Analysis Center issued an advisory that cited multiple vulnerabilities in Google Chrome. This is important, as Google Chrome is a commonly used web browser that enables access to the Internet. The vulnerabilities (for versions prior to 89.0.4389.128) could allow for arbitrary code execution, which might enable an attacker to view, change, or delete data. As a result, the Center for Internet Security classified these vulnerabilities as HIGH RISK for
powersolution.com, through our relationship with Infragard and The New Jersey Cybersecurity & Communications Integration Cell (NJCCIC) have been alerted to a new email threat dubbed ‘BazarCall.’ Threat actors are using a combination of customer service call centers and phishing emails in order to spread various forms of malware. Similar to other email-based scams powersolution.com has recently reported, the phishing email in this campaign states that the recipient’s free trial of a known service, such as DocuSign, is about to expire
Adobe Flash has reached its end of life on December 31, 2020. At the end of January 2021, powersolution will ensure that Microsoft patch KB4577586 is installed on eligible clients’ computers. powersolution will also be creating and remotely running a script that detects and removes Flash from managed systems. Adobe’s technology for fancy interactive graphics mostly used to spice up your browser has drifted towards its demise for so many years that it has almost single-handedly made a cliché out
World Backup Day is celebrated annually on March 31 to raise awareness of the importance of data backup for businesses big and small. World Backup Day is a day for people to learn about the increasing role of data in our lives and the importance of having your data backed recently? Every day people, businesses, even gamers lose huge amounts of valuable data because they fail to follow this one basic procedure. World Backup Day is set aside as a
Phishing scam targeting accounting professionals and members of the public in the midst of a tax season.
The Internal Revenue Service (IRS) and state tax agencies are warning of a phishing scam targeting tax professionals and members of the public in the midst of a tax season. The scammers impersonate the IRS in an attempt to collect SSN numbers, e-file identification numbers (EFINs), driver’s license images, and other credentials. These phishing emails appear to come from “IRS Tax E-Filing” and contain various headlines subject lines such as “Your IRS Data Requires Immediate Attention”, “IRS Tax Refund”, “Verifying
powersolution, through its membership with the New Jersey Cybersecurity & Communications Integration Cell (NJCCIC), has received information related to a new phishing/email threat. powersolution, along with the NJCCIC, recommends users who receive this and similar extortion threats ignore the email as they have not proven to be a credible threat. Never click on any links contained within these emails as they may expose your computer and organization to greater risk. Similar to past and present email based scams, this