You know that little padlock icon you look for to ensure your Web traffic is encrypted and secure? It turns out that you might not be as secure as you think thanks to a vulnerability that was accidentally introduced into the code of OpenSSL.
Apple rushed to release iOS 7.0.6 on Friday and OS X 10.9.2 today with patches for a shockingly overlooked SSL encryption issue that leaves iPhone, iPad and Mac computer users open to a man-in-the-middle (MITM) attack. All users of iOS 7 and Mac OS X Mavericks (10.9) should download and apply these patches. The vulnerability is not present in versions of OS X prior to OS X 10.9 Mavericks or iOS prior to iOS 6.
Scammers, hackers, and identity thieves are looking to steal your personal information – and your money. But there are steps you can take to protect yourself, like keeping your computer software up-to-date and giving out your personal information only when you have a good reason.
In a recent news release by US-CERT, the United States Computer Emergency Readiness Team, US-CERT stated they are aware of a malware campaign that surfaced in 2013 and is associated with an increasing number of ransomware infections. CryptoLocker, a new variant of ransomware, restricts access to infected computers and demands the victim provide a payment to the attackers in order to decrypt and recover their files. As of this time the primary means of infection appears to be phishing emails containing malicious attachments.
Everyone who makes use of computer systems, including email, should be on guard for these types of malware infection attempts. In many cases the email will appear to be legitimate and harmless but you need to ask yourself if you were expecting this communication, and if not, contact the sender to make sure it's legitimate.
To help mitigate any loss of data should you fall victim to this infection, you should take regular backups of your system and store your important files onto your file server which is backed up regularly.
To get more information about CryptoLocker, follow this link to the US_CERT website and think before you click!
In celebration of National Cyber Security Awareness Month this October we will be featuring an Information Security video each week. Please take the time to review this video which reviews a number of information security safety tips, and also how not to be a Billy.
In celebration of National Cyber Security Awareness Month this October we will be featuring an Information Security video each week. Please take the time to review this video on MALWARE and how best to combat it.
Please take the time to review some of our resources available to help you become more aware of the current landscape for cyber-threats.