There has been a recent uptick in phishing emails attempting to deliver the FlawedAmmyy remote access trojan (“RAT”). If successful, this RAT may provide malicious actors with full control of affected systems, including Remote Desktop control, proxy support, audio chat, and file system manager functionalities. Recent emails in this campaign have a Subject line beginning […]
Google recently disclosed that they discovered a vulnerability in their Google+ People API in March of this year, which was patched immediately. This vulnerability: which has been open since 2015, potentially exposed the private data of 500,000+ users to third party developers. disclosed data including user full names, email addresses, dates of birth, gender, profile […]
The Internet Crime Complaint Center (IC3), the FBI and the DHS issued a Public Service Announcement on September 27th, which details increased exploitation of RDP in connection with malicious cyber activities. RDP is a proprietary network protocol developed by Microsoft that allows an individual to gain control of computer resources and data over the Internet. […]
On Friday September 28th, Facebook announced a breach that impacted 50 million users. In this breach, malicious actors exploited a series of bugs, including a weakness in Facebook’s “View As” feature which allows users to see how their profile appears to others and malicious actors also stole digital keys which allow users to stay logged […]
October is National Cybersecurity Awareness Month (“NCSAM”). The overall theme of NSCAM is that security is everyone’s shared responsibility, and the month of October is dedicated to education about cyber threats, including tips and best practices. NYU’s National Cybersecurity Awareness Month 2018 themes are: Learn to Spot a Phony IT Safety & Security at […]
As an update to our September 24th post entitled Free Credit Freezes and Year-Long Fraud Alerts Now Available, please note that Equifax and TransUnion have abandoned the use of PINS in connection with the online unfreezing of frozen credit files. However, if you are seeking to unfreeze your credit file via phone, a PIN is […]