If you have FaceTime enabled you can be evesdropped on without your consent. A user simply calls you with FaceTime and before you answer they add themselves as a caller. They can instantly hear your phone without you knowing or having the option to stop it. If you attempt to it may transmit video. Simple solution though is to just go to Settings / FaceTime and disable it until the patch comes out later this week. Read about it here: https://www.cnbc.com/2019/01/28/apple-facetime-bug-lets-you-listen-even-if-someone-doesnt-answer.html Or basically anyplace on the net right now.
In this New York Times article they discuss FaceBook sharing your personal information with 3rd parties. This is probably not a surprise to anyone in IT, but you may not realize how much data they share and with whom. Two of the companies have links to the Russian and Chinese government. You may not care if Microsoft has your info or Apple, but how do you feel about a Russian search engine being able to tell who & what you like, where you are and even possibly information in private messages. All while trying to effect the outcome of a presidential election. In their research the NYT finds that permissions were given above what was needed and they weren’t monitored or rescinded when there was no longer a need. I encourage you to read more on the link below.
Internal documents show that the social network gave Microsoft, Amazon, Spotify and others far greater access to people’s data than it has disclosed.Source: As Facebook Raised a Privacy Wall, It Carved an Opening for Tech Giants
Another Data Breach. Just a reminder that you cannot be to careful with your data. More information on NBC News at the link below.
The breach could potentially be one of the largest in history, behind the hacking of about 3 billion Yahoo accounts.Source: Marriott says data breach compromised info of up to 500 million guests
Don’t trust inbound e-mails, phone calls, texts, etc. People will say anything to trick you out of your money. As a rule, change your passwords often. Protect your passwords. Don’t share them with anyone and don’t use the same ones on different accounts. Keep your AV up to date. We recommend WebRoot (ask us about it). Cover your camera when not in use as a rule of thumb too. Read more about this scam at the link below. Source: Sextortion Scam Uses Recipient’s Hacked Passwords — Krebs on Security
The Hacker News reports a serious flaw in Outlook that has exited since 2016 and took about 18 months to patch is only a partial fix. Users even after the patch can still be compromised. Read more at the link below or contact us for help securing your network.
An information disclosure vulnerability (CVE-2018-0950) has been discovered in Microsoft Outlook that could allow hackers to steal Windows users’ login credentials.Source: Flaw in Microsoft Outlook Lets Hackers Easily Steal Your Windows Password
Teams of software experts have discovered a bug in both Intel and AMD processors that can allow malicious code access to confidential information. Some patches are currently available, but not all aspects are fixable at the moment. This issue is serious and effects Microsoft Windows, Apple MacOS and Linux as well as as mobile devices Apple iOS and Google ChromeBooks. Basically anything with an Intel or AMD effected CPU. Keep up to date on your patches, Retire old Out of Service Operating systems. Yes people are still using XP, 2003, etc. It’s time for them to go away finally. No patches will come out for older OS making them just huge targets. Keep your OS and AV up to date or just ask us about RMM and WebRoot. Read more in the links below. https://www.pcworld.com/article/3245606/security/intel-x86-cpu-kernel-bug-faq-how-it-affects-pc-mac.html http://www.theregister.co.uk/2018/01/04/intel_amd_arm_cpu_vulnerability/
FCC chairman mocks REAL concerns shared by millions. Pushes through damaging policies that remove protections established to ensure unobstructed access to internet resources and fair competition in the market. Making it even easier for local monopolistic internet providers to restrict/charge or cripple the competition. Yes, it’s that serious.
Watchdog’s clown, er, chairman debases policymaking in the United StatesSource: FCC douses America’s net neutrality in gas, tosses over a lit match
A long used service to be shutdown in less than 2 weeks. AIM or AOL Instant Messenger is closing down after about 20 years. You can read more about it at the link below. There are many other options now including SMS or Text messages. Still, it will be missed…
Read more about the shutdown of AIM and what it means for you.Source: AIM will be discontinued on December 15, 2017
If you have any Eltima Software installed on your Mac, you may have some Malware along with it. This is another legitimate piece of software that Hackers have managed to sneak in some malicious code. Remember recently CCleaner suffered the same fate. Look for the existence of any of these files: /tmp/Updater.app/ /Library/LaunchAgents/com.Eltima.UpdaterAgent.plist /Library/.rand/ /Library/.rand/updateragent.app/ Read the full article on the Register (link below) http://www.theregister.co.uk/2017/10/20/mac_os_reinstall_eltima_elmedia_malware/ This proves that you can do everything as securely as possible and still get compromised from a “Trusted” source. Safe computing, and ALWAYS have a reliable trusted AntiVirus software installed. We Recommend WebRoot.
CCleaner a widely used utility was hacked opening a backdoor and allowing Malware to be attached to some seemingly legitimate versions of the software. As a precaution to our clients (Those under our IDMax protection) we set a global removal of any older versions. There are updated versions that are not susceptible and the 64Bit versions are not effected by this specific issue. If you would like more info read below: Forbes – Hackers Hid Backdoor Avast Blog Response / Update