Dell recently released a software update that fixes a privilege elevation vulnerability in SupportAssist 2.0. SupportAssist is software that is preinstalled on most of its Windows endpoints. SupportAssist performs diagnostics and streamlines the creation of support tickets by reporting data back to Dell. This vulnerability, could lead to arbitrary code execution, so Dell users, who […]
More than 500+ malicious Chrome extensions forming a malicious network of extensions have been removed from Chrome’s Web Store. They were found to be: Requesting a high permissions level (always a red flag), which in turn allows them to access a lot of browser data Injecting malicious ads, a/k/a malvertising, in millions of installations Collecting […]
As an update to our 10/25/19 and 4/8/19 blog posts on the phishing attempts by the hacking group known as “Silent Librarian”, please be advised of the following recent example of a phishing email in this campaign: Please note the following indicators: The from line often appears as: “University Libraries”, with an external sender’s address […]
Safer Internet Day (February 11th) is a worldwide event which is geared to promoting not only a safer internet, but an internet where everyone is empowered to use technology responsibly, respectfully, critically and creatively. Wondering what a safer internet might look like or how you can get involved? Please see SID2020.org. Additional Resources: CISA Security […]
Tax identity theft awareness week starts today, and is a great opportunity to learn about how to protect yourself from tax related scams, such as someone using your social security number to file a fraudulent tax return and collecting a refund. You may be unaware that this has occurred and only find out […]