Teams of software experts have discovered a bug in both Intel and AMD processors that can allow malicious code access to confidential information. Some patches are currently available, but not all aspects are fixable at the moment. This issue is serious and effects Microsoft Windows, Apple MacOS and Linux as well as as mobile devices Apple iOS and Google ChromeBooks. Basically anything with an Intel or AMD effected CPU. Keep up to date on your patches, Retire old Out of Service Operating systems. Yes people are still using XP, 2003, etc. It’s time for them to go away finally. No patches will come out for older OS making them just huge targets. Keep your OS and AV up to date or just ask us about RMM and WebRoot. Read more in the links below. https://www.pcworld.com/article/3245606/security/intel-x86-cpu-kernel-bug-faq-how-it-affects-pc-mac.html http://www.theregister.co.uk/2018/01/04/intel_amd_arm_cpu_vulnerability/
Some new Mac Malware found in Eltima Software
If you have any Eltima Software installed on your Mac, you may have some Malware along with it. This is another legitimate piece of software that Hackers have managed to sneak in some malicious code. Remember recently CCleaner suffered the same fate. Look for the existence of any of these files: /tmp/Updater.app/ /Library/LaunchAgents/com.Eltima.UpdaterAgent.plist /Library/.rand/ /Library/.rand/updateragent.app/ Read the full article on the Register (link below) http://www.theregister.co.uk/2017/10/20/mac_os_reinstall_eltima_elmedia_malware/ This proves that you can do everything as securely as possible and still get compromised from a “Trusted” source. Safe computing, and ALWAYS have a reliable trusted AntiVirus software installed. We Recommend WebRoot.
CCleaner a widely used utility was hacked opening a backdoor and allowing Malware to be attached to some seemingly legitimate versions of the software. As a precaution to our clients (Those under our IDMax protection) we set a global removal of any older versions. There are updated versions that are not susceptible and the 64Bit versions are not effected by this specific issue. If you would like more info read below: Forbes – Hackers Hid Backdoor Avast Blog Response / Update
NSA Toolkit is now in the wild.
As I have said many times undisclosed vulnerabilities make EVERYONE susceptible to exploits. In an attempt to extort money, a group know as Shadow Brokers has acquired a bunch of hacking tools used by the NSA (and others?). These are a bit dated, but still very effective on Windows 7 to 2012. When no one would pay the hush money they demanded they decided to just start releasing them to the public. So now unpatched systems or ones with no current patch available can be fairly easily exploited. In layman terms someone you don’t like could have complete access to your computer. Install or run any software they wanted including key loggers, monitoring software, viruses or just download or delete your files. That’s not all either. Think you’re safe behind your firewall? There are also exploits for Cisco and VPN technologies. Read more on The Register. Remember to patch your systems or have us do it for you.
Chrome Mobile App Hole Allows Trojan through.
Google is working to patch a hole that allowed over 300K Users to receive malware on their devices. The patch may be another 3 weeks away though. So, Android users beware! Read more on the Register here: Google to patch Chrome mobile hole after bank trojan hits 318k users
New ransomware abuses Windows PowerShell, Word document macros | Network World
More Ransomeware, People DO NOT TRUST ATTACHMENTS! If someone sends you a doc it should not need to use a macro. Do NOT enable these. Optionally request they send them in PDF format, etc. ALWAYS use a good AntiVirus program like WebRoot (which you can obtain from Intelligent Designs) to protect your system from Viruses. Nothing can protect a system from the user though. Read more about this on NetworkWorld or click the link below.
A new ransomware program written in Windows PowerShell is being used in attacks against enterprises, including healthcare organizations, researchers from Carbon Black warn.Source: New ransomware abuses Windows PowerShell, Word document macros | Network World
Hospital pays $17,000 ransom to get access back to its encrypted files
We encourage all our clients to use WebRoot on all their networked machines. It only takes one unprotected computer to compromise your entire network. Read below on what Not to do.
A Los Angeles hospital has paid a $17,000 to cyberattackers who crippled its network by encrypting its files, a payment that will likely rekindle a fierce debate over how to deal with a problem known as ransomware.Source: Hospital pays $17,000 ransom to get access back to its encrypted files
Trend Micro flaw could have allowed attackers to steal all passwords
We Prefer WebRoot, it’s Small, Super Fast and Very reliable. Installs in 1 minute, Full scan on most computers in LESS that 5 Minutes! But hey, you could use Trend and deal with this.
Trend has patched that problem and another remote execution flaw found by a well-known Google security researcherSource: Trend Micro flaw could have allowed attackers to steal all passwords
The World’s First Firmware Worm for Mac Is Here, and It Sounds Scary
I’ve said for years “You NEED AntiVirus software on ANY computer”. Sure you are less likely (for now) to get a Virus on a Mac, BUT it is defiantly possible. So get a trusted AV and install it. Worst case scenario install a free one and periodically scan. It doesn’t hurt. Not sure? Just ask us, we love to help! – R.
“Oh don’t worry,” your uncle said when you were shopping for a new computer. “Macs are virtually virus proof.” Your uncle was wrong.Source: The World’s First Firmware Worm for Mac Is Here, and It Sounds Scary
“Biggest smart-phone flaw ever discovered” impacts all Android phones made in the last five years | WTHITV.com
This the “Biggest smart-phone flaw ever”… Was known by Google since at least April (with fix) but it’s still not out on a large number of it’s popular Android phones. It may effect nearly a Billion phones. Is yours one of them?
New research suggests that nearly one billion Android phones are capable of being hacked…and all it takes is a text.Source: “Biggest smart-phone flaw ever discovered” impacts all Android phones made in the last five years | WTHITV.com