The latest cybersecurity concerns are now revealed
Cybersecurity concerns are at an all-time high.
Cybersecurity concerns are higher than ever for good reason. Within the last couple of days, we have been notified about a few, new, very serious threats.
First, we learned from our security friends at Network Box that there’s been an outbreak of an aggressive new threat that has the entire AV industry scrambling. The attacks they’ve witnessed contain what appears to be Microsoft type documents – mostly word or excel – but hidden within the document, are obfuscated macros which, once activated, will download ransomware. You can thwart the attack by disabling your macros. The macros are essentially downloaders – they download the actual malware over HTTP or HTTPS protocol so shutting them off should eliminate the risk of infection.
Then, our partners at Datto, the leaders in intelligent business continuity, have advised of two other ransomware threats: Locky and TelsaCrypt.
Locky it isn’t any more sophisticated than other strains of CryptoLocker. That said, it has been spreading quickly. It’s estimated that it has been affecting 90,000 per day in the first week of detection. Yikes. Locky is spread through spam email and encrypts files on a victim’s’ computers with a ransom demand anywhere from $210 to $420. Please be mindful of your mail before you open anything that doesn’t “feel right”. The emails have been typically disguised as an invoice with the subject line “ATTN: Invoice J-[RANDOM NUMBERS]”.
In addition, WordPress and Joomla domains are being attacked by a ransomware known as TeslaCrypt. This campaign uses admedia to exploit files hosted on websites under these domains. The exploit leads to installation of multiple backdoor vulnerabilities as well as malicious domains generated on these sites sent unwittingly to visitors, according to ZDNet.
So, now that you know the current cybersecurity concerns, you’ll need to know how to protect yourself. Here are a few tips to follow:
1) Never click on links or download attachments if you aren’t completely sure they are legitimate.
2) While not fail-safe, arm yourself with a good antivirus software and make sure that your computer is updating that software on a regular basis.
3) The most important thing that you can do is to make sure that you have backups–and a backup of that backup! I’m serious, make sure there are 3 copies in different locations. Watch this to see how backing up your data can arm you against cyberbullies.
While you may not be able to stay ahead of the latest trend in cybercrime, you can arm yourself by making sure you have your data and servers backed up. Be safe out there. Cybersecurity concerns are real. Please contact us if you would like assistance safeguarding your business.