Description
When you left home this morning did you leave the front door OPEN? Windows OPEN? Alarm OFF? No, Of course not! Well why do that to your computer system?? Information Security Specialists - helping businesses protect their Information Assets through Managed Security and Education
Tell your friends
RECENT FACEBOOK POSTS
facebook.comI received a suspicious SVG file via Facebook message. What does it do?
Received an SVG file in Facebook - is it Malware - Quite Possibly http://security.stackexchange.com/questions/143141/i-received-a-suspicious-svg-file-via-facebook-message-what-does-it-do
Timeline Photos
SCAM update Please be aware of scams like this one appearing to be from Apple re iCloud Care. Do not click the link or provide details. Also note the senders are never apple.
Timeline Photos
Moving offices today and culling out my IT stock so GIVING AWAY Mouse Mats, Power Cables, Fan Motors, Power Switches, Ribbon Cables, Serial Cards, Back up tapes, Serial Port Extenders and much more but you need to.be quick! Like Axial Networks on Facebook and share this post then pop down to Unit 1 (this week) or Unit 2 (next week) 45-47 Salisbury Rd Asquith 2077 to grab what you need!
Beware of business scams impersonating the ACCC
What happens when Cyber Criminals impersonate an Australian Government Agency? https://www.scamwatch.gov.au/news/beware-of-business-scams-impersonating-the-accc
Sixfold surge for ransomware activity
This article demonstrates just how significant the threat is becoming. Staff training and making sure you have all the Protective and Disaster Recovery measures in place to recover your business is more critical than ever. Axial Networks is now offering a range of vulnerability scanning services in conjunction with Staff Awareness Training.
Lenovo Accelerator Application Insecure Update Mechanism
THREE URGENT SECURITY WARNINGS TODAY 1. DO YOU HAVE A LENOVO? Vulnerability Alert 2. AGL Phishing emails leading to RANSOMWARE 3. Social networking sites Reddit, Tumblr and Myspace compromised - change your passwords You may have seen several urgent warnings today from various anti-virus and government sites. I draw your attention to the one from Australian Government - Stay Smart Online web site regarding Lenovo pre-installed software As you know I recommend Lenovo Business Grade equipment None of the equipment supplied by Axial Networks has this vulnerability as the software in question is not installed on the Lenovo Business Grade equipment we source and supply. IMPORTANT - If you have independently purchased Lenovo equipment from a retail outlet (Harvey Norman, Officeworks, JB HiFi, etc), or the Lenovo Online shop (LENOVO-AP)or a local computer shop it is critical that you check whether you have one of the systems listed on this web page https://support.lenovo.com/au/en/product_security/len_6718 as these sellers generally supply domestic grade equipment which could have this vulnerability. There are two other URGENT warnings today: 1. A very authentic looking AGL phishing email which will launch a RANSOMWARE attack https://www.agl.com.au/about-agl/media-centre/article-list/2016/june/agl-customers-targeted-by-email-scam 2. “You are advised to change your social media passwords following a series of reports about data leaks, including email addresses and passwords from social networking sites Reddit, Tumblr and Myspace”. Source (Stay Smart Online staysmartonline@communications.gov.au) Reddit blog https://www.reddit.com/r/announcements/comments/4l60nc/reddit_account_security_and_you Tumblr blog https://staff.tumblr.com/post/144263069415/we-recently-learned-that-a-third-party-had Myspace blog https://myspace.com/pages/blog If you need any assistance do not hesitate to contact Axial Networks .
Australians lose over $229 million to scams in 2015
The ACCC has released its findings for SCAMS in 2015 - and this is only the reported SCAMS the https://www.scamwatch.gov.au/news/australians-lose-over-229-million-to-scams-in-2015
How InfoSec Security Controls Create Vulnerability
This is a great article even if somewhat technical that delves into the mind and actions of attackers to your network. The simple message if you don't need access to specific data in your job function - Don't. https://blogs.technet.microsoft.com/johnla/2016/02/20/how-infosec-security-controls-create-vulnerability/
Stay Smart Online
HIGH PRIORITY Make sure you upgrade your Adobe Products to get these security holes patched ASAP. Note that Microsoft have ALSO included patches for all operating systems including Windows 10 devices
Pros examine Mossack Fonseca breach: WordPress plugin, Drupal likely suspects
The low down on the Mossack Fonseca "Panama" data breach appears to have been primarily caused by the Revolution Slider Wordpress plugin not being updated. The fact that Mossack Fonseca was using WordPress to store un-encrypted confidential information is beyond comprehension. How would your organisation fare if this happened to you? The big lesson here for all businesses is the need to use qualified security professionals to audit and advise on protection of digital assets - whether they be a web server or other data retention methodology. Many companies use Wordpress and a plethora of "Plugins" and in this case the "un-patched" Revolution Slider left this site wide open for a breach, making it easy for the hackers to exploit other plugins that stored their email server information which appears to have been on the same network effectively giving access to everything that Mossack Fonseca had.
Consider the Panama Papers breach a warning
Interesting to note in the case of the Panama Papers scandal that global media is focusing on who was exposed rather than how this information was gained. Was it an internal breach (Snowden style) or was it an external actor (individual or state sponsored). When Sony and Target (US) were breached the focus was on the company and how the breach occurred not the individuals. To me it appears the leaking of the documents was the criminal act rather than the legal processes used to move or hide assets - that is a matter for individual jurisdictions. The lesson here is that all businesses - Big and Small - need to have identified their assets and have procedures in place to protect them.
Stay Smart Online
Axial Networks provides Managed Security Services to assist business owners to assess their exposure to these types of threats.
Quiz
