Monthly Archives - March 2020

Microsoft renames Office 365 to Microsoft 365

Office 365 Business Essentials will become Microsoft 365 Business Basic. Office 365 Business Premium will become Microsoft 365 Business Standard. Microsoft 365 Business will become Microsoft 365 Business Premium. Office 365 Business and Office 365 ProPlus will both become Microsoft 365 Apps. Microsoft 365 is not just the ‘renaming’ of Office 365. There are many useful add-ons, such as the new Microsoft Editor. This artificial intelligence program can handle Word, Outlook e-mail and web browsers, providing users with ways to make writing more concise, more inclusive, and more grammatical and logical...

Hackers Targeting People Seeking Coronavirus Information On Health Sites

Some people just want to watch the world burn. That seems to be the reason behind the recent attacks on the US Health and Human Services Department website, which serves as a clearinghouse for information relating to the Coronavirus outbreak. As the virus has spread, more and more people have been heading to the HHS.gov website for news, advice and information. The hackers, seeing this, decided it would be great fun to bring the site down. As such, an as yet...

Another Week Another New Ransomware To Be Concerned About

There's a new strain of ransomware to put on your radar. This latest one was discovered by researchers working from SentinelLabs and it has been dubbed Nefilim. Based on the initial research, it seems to share significant portions of its code base with an older strain, Nemty 2.5. The two key differences between the two strains are as follows: Nefilim's code does not contain the Ransomware-as-a-Service (RaaS) found in Nemty 2.5 Nefilim relies on email communication to arrange ransom payment, rather than...

Paradise Ransomware Using Internet Query Files To Deliver Payload

The Paradise ransomware is like a bad penny; it just keeps turning up. The strain first appeared back in 2017, when it was spread far and wide via phishing emails. Then it seemed to fall out of favor for a while, and now, it's back again. Even worse, it's back with a new trick up its virtual sleeves. In its latest incarnation, it's still being spread via phishing emails. Now, its controllers are leveraging interest in IQY (Query) files, which are...

The Web Browser Wars Have A Clear Winner In 2020

It's notoriously difficult to get reliable statistics on web browser usage. While there are sites that purport to track such things such as StatCounter and NetMarketShare, the numbers coming from these sources have proved to be problematic and unreliable. Enter the US Government's Digital Analytics Program (DAP, for short). While it doesn't reveal anything about browser statistics worldwide, it does give us a running count of the browsers used when visiting government websites over the last 90 days, which gives us a...

Phone Call And Text Phishing Scams Are On The Rise

For the last couple of years, the primary means of communication when conducting phishing campaigns has been emailed. Phishing emails have been absolutely rampant. So much so that people are increasingly on their guard against them. Naturally, this prompts scammers to change their tactics, switching things up a bit to catch people by surprise. In this case, according to recent data published by HMRC, the scammers are opting to rely on phishing calls and text messages to dupe people into giving...

Safari On Mac Now Vulnerable To Browser History Theft

There's a new macOS security flaw you and your staff need to be aware of.  It was discovered by Jeff Johnson, the developer of the Underpass app for both Mac and iOS, and the StopTheMaddness Safari browser extension. Fortunately, the new flaw is not one that can be exploited remotely.  Users would have to be tricked into installing a malicious app via social engineering or other tricks. On the other hand, the flaw is critical and impacts all known macOS Mojave...

JCrew Retailer Customers May Have Had Information Accessed

Another week, another data breach. This time, the target being US clothing retailer J. Crew. The company announced that sometime in April of 2019, an unknown group of hackers utilized a credential stuffing attack to breach one of the company's databases and access some of its customer account data. Credential stuffing, as you may know, is an attack-type that sees hackers utilizing large sets of stolen user names and passwords, which can be found in vast numbers on the Dark Web....

Google Translate Adds More Languages To Assist Communication

  Google Translate Adds More Languages To Assist Communication Every kid who grew up watching sci-fi has dreamed of the day when a Universal Translator would be available, making seamless communication possible and eliminating the language barrier entirely. That day hasn't arrived yet, but Google is steadily marching toward that goal. The company has been making use of new machine learning and other advanced AI techniques to improve the functionality of its Google Translate service. They recently added support for new languages,...

Emails Pretending To Be Secret Admirers Could Be Ransomware

Nemty Ransomware isn't an especially well-known threat, but it's dangerous and should not be discounted. Recently, researchers have discovered an ongoing spam-email driven campaign that's attempting to spread the ransomware far and wide. An unknown group of hackers are sending out what appear to be love letters from secret admirers in a broad pattern. They are probably simply using email addresses purchased in bulk on the Dark Web. The emails use a variety of subject lines like "Letter for You," "Will...