As an update to the NYU IT Security News & Alerts post, Zerologon Vulnerability, Windows Admins Advised to Patch Now, Microsoft has issued a blog post advisory reinforcing the original guidance supplied due to the observance of continued exploit of the vulnerability tracked as CVE-2020-1472. Further CISA (Cybersecurity and Infrastructure Security Agency) reports that nation […]
As an update to the recent post, Educational Institutions Worldwide Are Experiencing a Spike in Ransomware Attacks, please be advised that the FBI and DHS (U.S. Department of Homeland Security) have issued a joint advisory, stating that Ryuk, a Russian cyber criminal gang, is preparing to release ransomware targeting those in the healthcare sector. We […]
Email spoofing or forging is a scam in which malicious actors forge the sender’s email address in order to trick victims into taking some sort of action such as disclosing sensitive information or clicking on a malicious link or attachment. These imposter emails may target you individually or as part of a group, and may […]
What is a passphrase and why would you use it instead of a password? A passphrase is a phrase that is unique to your life, hence lengthy but easy to remember! Length = strength. It has been shown that lengthier passphrases are harder to crack than shorter, more complex passwords. For more information, please see […]
Use of public Wi-Fi comes with inherent risks, and should be avoided if possible. Instead use your device’s data plan, hotspot, or if you must use public Wi-Fi, use a virtual private network (VPN) to encrypt your data. A VPN will protect your data in transit and will make it impossible for anyone spying […]
Malicious software can take many forms: ransomware, worms, viruses, trojans, cryptocurrency mining code, keyloggers, spyware, rootkits and scareware. This post addresses scareware, and simple steps that you can take to safeguard your devices and data. Read on for more information, and be sure to check out the Security Awareness web page for National Cybersecurity Awareness […]
NCSAM presents an annual opportunity to bring cybersecurity top-of-mind with the reminder that cybersecurity awareness best practices and resources are available to help you defend against occurrences such as compromised data and devices, identity theft, monetary loss, reputational damage and more. Many cybersecurity best practices are easy to implement and the benefits cascade throughout our […]