ZLoader is a popular malware among hackers, and has recently been used to steal user credentials and other sensitive information by exploiting a vulnerability in Microsoft’s digital signature verification. So how does this affect you? Microsoft’s signature verification tool Authenticode is used to ensure that a file is legitimate and trustworthy. Researchers at Check Point… Read more »
Posts By: Michael
The VA General Assembly was Attacked- What Happens Now?
On December 12th, the Virginia General Assembly was hit by a ransomware attack. Specifically, the Legislative Automated Systems branch was attacked by currently unnamed threat actors. This department essentially acts as the information technology arm of the state legislature, dealing with affairs involving publication production and distribution, computer technology information, and legislative information collection and… Read more »
The Log4j Bug is of the Most Serious Threats in Recent Years
As you may have seen on the news, on December 9th, 2021, a zero-day exploit was observed targeting Log4j, a ubiquitous open-source logging tool. In short, Log4J is a logging tool for programs to track any errors that may occur within an application. The bug (known as Log4Shell) has affected thousands of various systems across the… Read more »
Hey Google, Stop Listening!
If you’re someone who owns a smart device (or expects to receive one this holiday season), you may be concerned about the security of these devices. Apple, Amazon, and Google home gadgets can be convenient ways to consume information or communicate with others, but given these companies’ controversial histories of recording and reviewing voice data… Read more »
Is Your WordPress Website Safe?
In the past few weeks, hundreds of WordPress sites have experienced an onslaught of ransomware attacks. The hackers implement encryption notices and demand a ransom of 0.1 Bitcoin, which equates to roughly $5,500 dollars. The hackers include a countdown timer and tell the website owners that they will delete their entire website, which for a… Read more »
TSA Fights Back Against Wave of Transportation Cyberattacks
The Transportation Security Administration (TSA) recently announced that it will soon implement new cybersecurity requirements on the railroad and airline industries. To many, this comes as no surprise, as critical infrastructure has been subject to a slew of high-profile cybersecurity attacks this past year. The new directives will all but waive existing voluntary cybersecurity measures… Read more »
How Big of a Threat is Killware?
Many cybersecurity experts are now warning of a new ware called killware. Unlike ransomware and malware, which primarily aim to gain money and access to sensitive data, killware’s aim is to take lives. Authorities warn that these types of attacks could impact hospitals, transportation, law enforcement agencies, banks, and even the water supply. Hospitals specifically… Read more »
Will this Streaming Platform Experience another Breach?
In early October, an anonymous 4chan user posted a 125GB torrent link to the 4chan site containing breached data from the popular streaming platform Twitch. The hacker claimed that the intent of the leak was to “foster more disruption and competition in the online video streaming space”, suggesting that the breach was driven by spiteful… Read more »
4 Most Common Mobile Attack Channels that Hackers Use
Cybersecurity Awareness Month 2021: Week 3 Last week, we discussed email phishing and the red flags you need be aware of. This common yet effective method of harvesting personal data laid the foundation for attacks that target mobile devices. Though many people are aware of phishing email campaigns, not the same can be said about… Read more »
OptfinITy Announces Commitment to Global Efforts Advocating for Cybersecurity and Online Behavior Change during Cybersecurity Awareness Month
October 1, 2021 — OptfinITy today announced its commitment to Cybersecurity Awareness Month, held annually in October, by signing up as a 2021 Champion and joining a growing global effort to promote the awareness of online safety and privacy. The Cybersecurity Awareness Month Champions Program is a collaborative effort among businesses, government agencies, colleges and… Read more »