Intel and AMD CPU Vulnerability / Meltdown and Spectre

Written by Randy on . Posted in Android, Antivirus, Apple, Chrome, Google, iPhone, Linux, Microsoft, Randy's Blog, Safety, Security, Tech, WebRoot

Teams of software experts have discovered a bug in both Intel and AMD processors that can allow malicious code access to confidential information.  Some patches are currently available, but not all aspects are fixable at the moment.  This issue is serious and effects Microsoft Windows, Apple MacOS and Linux as well as as mobile devices Apple iOS and Google ChromeBooks.  Basically anything with an Intel or AMD effected CPU. Keep up to date on your patches, Retire old Out of Service Operating systems.  Yes people are still using XP, 2003, etc. It’s time for them to go away finally.  No patches will come out for older OS making them just huge targets. Keep your OS and AV up to date or just ask us about RMM and WebRoot. Read more in the links below. https://www.pcworld.com/article/3245606/security/intel-x86-cpu-kernel-bug-faq-how-it-affects-pc-mac.html http://www.theregister.co.uk/2018/01/04/intel_amd_arm_cpu_vulnerability/  

Some new Mac Malware found in Eltima Software

Written by Randy on . Posted in Antivirus, Apple, Randy's Blog, Safety, Security, Tech, trojan, WebRoot

If you have any Eltima Software installed on your Mac, you may have some Malware along with it.  This is another legitimate piece of software that Hackers have managed to sneak in some malicious code.  Remember recently CCleaner suffered the same fate. Look for the existence of any of these files: /tmp/Updater.app/ /Library/LaunchAgents/com.Eltima.UpdaterAgent.plist /Library/.rand/ /Library/.rand/updateragent.app/ Read the full article on the Register (link below) http://www.theregister.co.uk/2017/10/20/mac_os_reinstall_eltima_elmedia_malware/ This proves that you can do everything as securely as possible and still get compromised from a “Trusted” source. Safe computing, and ALWAYS have a reliable trusted AntiVirus software installed.  We Recommend WebRoot.

CCleaner Hacked.

Written by Randy on . Posted in Antivirus, Downloads, Microsoft, Randy's Blog, Safety, Security, Support

CCleaner a widely used utility was hacked opening a backdoor and allowing Malware to be attached to some seemingly legitimate versions of the software. As a precaution to our clients (Those under our IDMax protection) we set a global removal of any older versions. There are updated versions that are not susceptible and the 64Bit versions are not effected by this specific issue.   If you would like more info read below: Forbes – Hackers Hid Backdoor Avast Blog Response / Update  

WannaCry? If you get hit with this Ransomware you might want to.

Written by Randy on . Posted in Microsoft, Randy's Blog, Safety, Security, Support, Tech, Tech Tip

In case you haven’t heard (if you follow our Blog or Facebook page you should have) there is some fallout from the NSA hacking tools being leaked.  At least allegedly.   Our  WebRoot customers are covered and our IDMax customers have been updated.  Are you one?  If not contact us and stay protected. The ‘new’ Ransomware has been wreaking havoc, causing outages, effecting Hospitals, telecoms and business in the UK, Russia, Tiawan and elsewhere. Microsoft has put out patches for it’s operating systems as well as offering some patches for it’s older XP and 2003 OS even though it discontinued support for them sometime ago.   Read More: Here on NetworkWorld, Here on ZDNet.com, More here on ZDNet.com including links to the Patches for Older OS (XP/2003)  

NSA Toolkit is now in the wild.

Written by Randy on . Posted in Antivirus, Randy's Blog, Security, Support, Tech, Tech Tip

As I have said many times undisclosed vulnerabilities make EVERYONE susceptible to exploits. In an attempt to extort money, a group know as Shadow Brokers has acquired a bunch of hacking tools used by the NSA (and others?).  These are a bit dated, but still very effective on Windows 7 to 2012.  When no one would pay the hush money they demanded they decided to just start releasing them to the public.  So now unpatched systems or ones with no current patch available can be fairly easily exploited. In layman terms someone you don’t like could have complete access to your computer.  Install or run any software they wanted including key loggers, monitoring software, viruses or just download or delete your files.  That’s not all either.  Think you’re safe behind your firewall?  There are also exploits for Cisco and VPN technologies. Read more on The Register. The Register Remember to patch your systems or have us do it for you.

New ransomware abuses Windows PowerShell, Word document macros | Network World

Written by Randy on . Posted in Antivirus, Microsoft, Randy's Blog, Security

More Ransomeware, People DO NOT TRUST ATTACHMENTS!  If someone sends you a doc it should not need to use a macro.  Do NOT enable these.  Optionally request they send them in PDF format, etc. ALWAYS use a good AntiVirus program like WebRoot (which you can obtain from Intelligent Designs) to protect your system from Viruses.  Nothing can protect a system from the user though.  Read more about this on NetworkWorld or click the link below. Network World Logo
A new ransomware program written in Windows PowerShell is being used in attacks against enterprises, including healthcare organizations, researchers from Carbon Black warn.
Source: New ransomware abuses Windows PowerShell, Word document macros | Network World

Hospital pays $17,000 ransom to get access back to its encrypted files

Written by Randy on . Posted in Antivirus, Randy's Blog, Security, Tech Tip, WebRoot

We encourage all our clients to use WebRoot on all their networked machines.  It only takes one unprotected computer to compromise your entire network.  Read below on what Not to do.
A Los Angeles hospital has paid a $17,000 to cyberattackers who crippled its network by encrypting its files, a payment that will likely rekindle a fierce debate over how to deal with a problem known as ransomware.
Source: Hospital pays $17,000 ransom to get access back to its encrypted files

Trend Micro flaw could have allowed attackers to steal all passwords

Written by Randy on . Posted in Antivirus, Microsoft, Randy's Blog, Security, Support, Tech, Tech Tip

We Prefer WebRoot, it’s Small, Super Fast and Very reliable.  Installs in 1 minute, Full scan on most computers in LESS that 5 Minutes!  But hey, you could use Trend and deal with this.
Trend has patched that problem and another remote execution flaw found by a well-known Google security researcher
Source: Trend Micro flaw could have allowed attackers to steal all passwords