Print Page   |   Your Cart   |   Sign In
Technology
Group HomeGroup Home Blog Home Group Blogs

Cyber Criminals- Holding Small Business Data Hostage For Money

Posted By Matt Maggiora, TeamLogicIT, Friday, April 15, 2016

Attend our Free April 27th Event on cyber security for small businesses and learn how to protect yourself.

Event Time- April 27th, 20016  from 11:30 to 1:00pm

Where: 2730 W. Augua Fria Freeway ( the café downstairs)

Who Should Attend: Businesses with 6 or more employees

Contact: Matt Maggiora at 480-436-7747 or email him at mmaggiora@teamlogicit.com

 

Criminals are targeting small businesses 

Extortionists have again stepped up their global assaults, this time unleashing an especially elusive and destructive bug called Locky. It didn’t take long for February’s large-scale attack to claim victims, including medical facilities in California and Kentucky.

Seasoned IT pros will recognize Locky’s malicious attack-mode, which mimics the poisoned document macro-attack of Dridex, a notorious bank-industry Trojan.

In Dridex fashion, a Locky-laced document arrives in the inbox as an invoice or other “urgent” correspondence. If users click, and macros (usually disabled by default) are turned on, Locky quickly spreads to all connected drives. A single infected text-document can hijack your entire system, paralyzing operations until a ransom is paid.

Locky also does something that makes its smarter and scarier than other programs.

“It gathers detailed statistics about each victim, which is highly unusual for ransomware,” reports security company Kaspersky. Crooks apparently use this information to determine the value of encrypted files so they can set the ransom amount for maximum profit.

Interestingly, the California and Kentucky hospitals reportedly paid less than $2,000 each to liberate ransomed data, perhaps signaling something of a “volume” strategy. Instead of demanding large amounts from just a few victims, attackers could have been going for smaller payments from more companies. Even if only a quarter of those extorted paid up, at two-grand each, the crooks’ take would still be a cool two-hundred-mil. That’s a lot of Bitcoin in anybody’s book.

Keeping Locky Outside

Regardless of their MO, Locky and thousands of its ugly cousins are clearly getting smarter and more destructive since we began reporting on the ransomware plague, which means that businesses should also be getting smarter in response.

Security experts, such as TeamLogicIT Managed Services providers, recommend that any organization that relies heavily on data–especially those in the healthcare, financial, legal, education and professional-service sectors–be more vigilant and proactive in two key areas: regular complete, system backups, and ongoing email-security training. These two precautions, (plus these others), can significantly reduce your risk of infection, and keep Locky and its cohorts outside your networks, where they belong.

Does your team need a hand updating company security policies, practices or cybercrime training curriculum?  Come to the free event and learn. Contact Team Logic IT today

Tags:  broadcasting  estate planning  events  hackers  small business  tech 

Share |
PermalinkComments (0)
 

Hackers exploit critical vulnerability in popular WordPress theme component

Posted By Arizona Small Business Association, Friday, September 5, 2014

Attackers are actively exploiting a critical vulnerability in a WordPress plug-in that’s used by a large number of themes, researchers from two security companies warned Wednesday.

The vulnerability affects versions 4.1.4 and older of Slider Revolution, a commercial WordPress plug-in for creating mobile-friendly content display sliders. The flaw was fixed in Slider Revolution 4.2 released in February, but some themes—collections of files or templates that determine the overall look of a site—still bundle insecure versions of the plug-in.

The vulnerability can be exploited to execute a local file inclusion (LFI) attack that gives hackers access to a WordPress site’s wp-config.php file, researchers from Web security firm Sucuri said in a blog post. This sensitive file contains database access credentials that can be used to compromise the whole site, the researchers said.

In February, ThemePunch, the developer of Slider Revolution, mentioned in the release notes of version 4.2 that a security issue had been fixed but didn’t release any additional details about the problem or its impact.

Information about the vulnerability circulated on underground forums for several months, but on Sept. 1 someone posted a proof-of-concept exploit for it on a public site, including a list of WordPress themes that are likely affected, security researchers from Trustwave said Wednesday in a blog post. “Our web honeypots picked up increased scanning activity today.”

Sucuri researchers also observed attempts to exploit the vulnerability. “Today alone, there were 64 different IP addresses trying to trigger this vulnerability on more than 1,000 different websites within our environment,” they said.

Slider Revolution is sold via CodeCanyon.net, an online market for Web scripts and other components. The plug-in is bought by regular site owners, but also by WordPress theme developers who then bundle it inside their products to enable content slider functionality.

The problem is that when bundled with themes, Slider Revolution’s automatic update mechanism is typically disabled. Users then have to rely on theme authors to update the plug-in along with their themes, which in many cases doesn’t happen.

“We fix all issues within hours,” a technical support representative for Damojo, the Cologne, Germany, company that owns ThemePunch, said Thursday via email. “As you know it is essential that all your plugins, WordPress and servers are always updated with the latest releases. Our direct customers do and can update their plugin regularly and automatically if they choose to.”

“The main issue is that theme authors that bundled the slider within their theme did not update the plugin for their customers,” the Damojo representative said. “The hint ‘Security Fix’ [in the release notes] should have ringed some bells. Why haven’t they updated the plugin since February?”

The latest version of Slider Revolution is 4.6, released on Aug. 25, but this particular vulnerability only affects versions older than 4.2.

The Damojo representative advised users to check if their themes contain a vulnerable version of the plug-in and to contact the theme authors in case they do, adding that the company shouldn’t be blamed for someone else’s failures.

This incident highlights yet again the risks of insecure third-party code reuse, a widespread problem that affects all types of software, not just Web applications and WordPress themes.

Many developers use third-party components and libraries in their own software projects and fail to keep up with their security updates. This can lead to situations where a vulnerability is identified and fixed in a software package, but lingers on for months or years in other applications.

 

Contributor:  

Source: http://www.pcworld.com

Tags:  hackers  slider  wordpress 

Share |
PermalinkComments (0)
 

Affordable Dental Plans for ASBA Members

Delta Dental of Arizona

2 employees? No problem! We’ve got a dental plan to meet your needs & budget. Click to learn more!

LEARN MORE

Join ASBA

ASBA

ASBA is the most powerful resource for your business in Arizona. We ensure the tools we offer are valuable and support the growth, education and connections necessary for today’s top business minds.

LEARN MORE

Enterprise Bank & Trust

ASBA

Enterprise was founded on the idea of serving the lifetime financial needs of privately held businesses.Today, we continue to empower privately held businesses and also help families to secure their financial futures.

LEARN MORE

RSVP

Coffee Connect with ASBA

REGISTER

Date: Held monthly
Time: Click for times based on location

RSVP

ASBA Speed Networking

REGISTER

Date: Held monthly
Time: Click for times based on location

Have Questions on Health Insurance?

Health Insurance

Do you have questions on plans for Individual, sole proprietor, or group? We can get the answers needed to make sure you find the right plan for you and your employees.

LEARN MORE

Investment Partner Program

CopperPoint

ASBA’s investment partner program delivers your brand throughout Arizona. Share insights, connect with small business and highlight your company’s involvement with the association. Contact Jodi Towns to get started.

LEARN MORE

Upcoming Event

Health+Plus

ASBA is bringing you Health+Plus, an all-inclusive healthcare experience for business owners! We’re getting you in front of healthcare providers, insurance carriers, health and wellness experts, HR, software solutions, telemedicine, and more.

REGISTER

Association Management Software Powered by YourMembership  ::  Legal