Print Page   |   Your Cart   |   Sign In
Technology
Group HomeGroup Home Blog Home Group Blogs

Cyber Criminals- Holding Small Business Data Hostage For Money

Posted By Matt Maggiora, TeamLogicIT, Friday, April 15, 2016

Attend our Free April 27th Event on cyber security for small businesses and learn how to protect yourself.

Event Time- April 27th, 20016  from 11:30 to 1:00pm

Where: 2730 W. Augua Fria Freeway ( the café downstairs)

Who Should Attend: Businesses with 6 or more employees

Contact: Matt Maggiora at 480-436-7747 or email him at mmaggiora@teamlogicit.com

 

Criminals are targeting small businesses 

Extortionists have again stepped up their global assaults, this time unleashing an especially elusive and destructive bug called Locky. It didn’t take long for February’s large-scale attack to claim victims, including medical facilities in California and Kentucky.

Seasoned IT pros will recognize Locky’s malicious attack-mode, which mimics the poisoned document macro-attack of Dridex, a notorious bank-industry Trojan.

In Dridex fashion, a Locky-laced document arrives in the inbox as an invoice or other “urgent” correspondence. If users click, and macros (usually disabled by default) are turned on, Locky quickly spreads to all connected drives. A single infected text-document can hijack your entire system, paralyzing operations until a ransom is paid.

Locky also does something that makes its smarter and scarier than other programs.

“It gathers detailed statistics about each victim, which is highly unusual for ransomware,” reports security company Kaspersky. Crooks apparently use this information to determine the value of encrypted files so they can set the ransom amount for maximum profit.

Interestingly, the California and Kentucky hospitals reportedly paid less than $2,000 each to liberate ransomed data, perhaps signaling something of a “volume” strategy. Instead of demanding large amounts from just a few victims, attackers could have been going for smaller payments from more companies. Even if only a quarter of those extorted paid up, at two-grand each, the crooks’ take would still be a cool two-hundred-mil. That’s a lot of Bitcoin in anybody’s book.

Keeping Locky Outside

Regardless of their MO, Locky and thousands of its ugly cousins are clearly getting smarter and more destructive since we began reporting on the ransomware plague, which means that businesses should also be getting smarter in response.

Security experts, such as TeamLogicIT Managed Services providers, recommend that any organization that relies heavily on data–especially those in the healthcare, financial, legal, education and professional-service sectors–be more vigilant and proactive in two key areas: regular complete, system backups, and ongoing email-security training. These two precautions, (plus these others), can significantly reduce your risk of infection, and keep Locky and its cohorts outside your networks, where they belong.

Does your team need a hand updating company security policies, practices or cybercrime training curriculum?  Come to the free event and learn. Contact Team Logic IT today

Tags:  broadcasting  estate planning  events  hackers  small business  tech 

Share |
PermalinkComments (0)
 

Hackers exploit critical vulnerability in popular WordPress theme component

Posted By Arizona Small Business Association, Friday, September 5, 2014

Attackers are actively exploiting a critical vulnerability in a WordPress plug-in that’s used by a large number of themes, researchers from two security companies warned Wednesday.

The vulnerability affects versions 4.1.4 and older of Slider Revolution, a commercial WordPress plug-in for creating mobile-friendly content display sliders. The flaw was fixed in Slider Revolution 4.2 released in February, but some themes—collections of files or templates that determine the overall look of a site—still bundle insecure versions of the plug-in.

The vulnerability can be exploited to execute a local file inclusion (LFI) attack that gives hackers access to a WordPress site’s wp-config.php file, researchers from Web security firm Sucuri said in a blog post. This sensitive file contains database access credentials that can be used to compromise the whole site, the researchers said.

In February, ThemePunch, the developer of Slider Revolution, mentioned in the release notes of version 4.2 that a security issue had been fixed but didn’t release any additional details about the problem or its impact.

Information about the vulnerability circulated on underground forums for several months, but on Sept. 1 someone posted a proof-of-concept exploit for it on a public site, including a list of WordPress themes that are likely affected, security researchers from Trustwave said Wednesday in a blog post. “Our web honeypots picked up increased scanning activity today.”

Sucuri researchers also observed attempts to exploit the vulnerability. “Today alone, there were 64 different IP addresses trying to trigger this vulnerability on more than 1,000 different websites within our environment,” they said.

Slider Revolution is sold via CodeCanyon.net, an online market for Web scripts and other components. The plug-in is bought by regular site owners, but also by WordPress theme developers who then bundle it inside their products to enable content slider functionality.

The problem is that when bundled with themes, Slider Revolution’s automatic update mechanism is typically disabled. Users then have to rely on theme authors to update the plug-in along with their themes, which in many cases doesn’t happen.

“We fix all issues within hours,” a technical support representative for Damojo, the Cologne, Germany, company that owns ThemePunch, said Thursday via email. “As you know it is essential that all your plugins, WordPress and servers are always updated with the latest releases. Our direct customers do and can update their plugin regularly and automatically if they choose to.”

“The main issue is that theme authors that bundled the slider within their theme did not update the plugin for their customers,” the Damojo representative said. “The hint ‘Security Fix’ [in the release notes] should have ringed some bells. Why haven’t they updated the plugin since February?”

The latest version of Slider Revolution is 4.6, released on Aug. 25, but this particular vulnerability only affects versions older than 4.2.

The Damojo representative advised users to check if their themes contain a vulnerable version of the plug-in and to contact the theme authors in case they do, adding that the company shouldn’t be blamed for someone else’s failures.

This incident highlights yet again the risks of insecure third-party code reuse, a widespread problem that affects all types of software, not just Web applications and WordPress themes.

Many developers use third-party components and libraries in their own software projects and fail to keep up with their security updates. This can lead to situations where a vulnerability is identified and fixed in a software package, but lingers on for months or years in other applications.

 

Contributor:  

Source: http://www.pcworld.com

Tags:  hackers  slider  wordpress 

Share |
PermalinkComments (0)
 

Join @Zoho at the AC Biltmore Hotel on 11/22

Zoho One

Free seminar on business optimization! Join the Zoho team on November 22nd at the AC Biltmore Hotel for a half-day of learning and fun. Their experts will discuss how you can manage your sales, marketing, support, finance, and more all with one comprehensive platform. They'll also discuss tips and tricks and best practices to automate processes and help you optimize your business.

LEARN MORE

Join ASBA

ASBA

ASBA is the most powerful resource for your business in Arizona. We ensure the tools we offer are valuable and support the growth, education and connections necessary for today’s top business minds.

LEARN MORE

Partner Program

ASBA

ASBA’s Partner Program delivers your brand throughout Arizona. Share insights, connect with small business and highlight your company’s involvement with the association. Contact Jodi Towns to get started.

LEARN MORE

RSVP

Coffee Connect with ASBA

REGISTER

Date: Held monthly
Time: Click for times based on location

RSVP

ASBA Speed Networking

REGISTER

Date: Held monthly
Time: Click for times based on location

Have Questions on Health Insurance?

Health Insurance

Do you have questions on plans for Individual, sole proprietor, or group? We can get the answers needed to make sure you find the right plan for you and your employees.

LEARN MORE

ASBA Ask a Lawyer

ASU Law Group

ASU Law Group is here to help you with your small business legal needs! Fill out the form today and an ASU Law Group attorney will reach out to you. Only for Business/APEX members.

ASK A LAWYER

Upcoming Events

Health+Plus

Join ASBA at any of our upcoming events!

REGISTER

Association Management Software Powered by YourMembership  ::  Legal