Twitter Speculates on How Thousands of High Profile Accounts were Hacked

By -- 2020-08-4 in Blog

Twitter has finally released information on the hack it suffered earlier in July where high profile accounts were breached, and hijacked to post cryptocurrency scams.
Victims of the attack, which was perpetrated by hackers with access to Twitter’s internal account management support tools, included Amazon’s Jeff Bezos, Elon Musk, Bill Gates, Joe Biden, Barack Obama, and Kanye West.
Twitter’s latest update on the incident includes further information about how hackers were able to breach its security, and rejects the notion that an employee deliberately assisted stating:

The social engineering that occurred on July 15, 2020, targeted a small number of employees through a phone spear phishing attack. A successful attack required the attackers to obtain access to both our internal network as well as specific employee credentials that granted them access to our internal support tools.

The Twitter employee or contractor, thinking they were speaking to a legitimate support person authorized to have access to information is likely to have revealed more details on the phone than they would via email or a conventional phishing website, providing access to the information

 

This could be equally as possible that the conversation is initiated by a scammer calling the employee, perhaps using a VOIP phone service, and using caller ID spoofing to pretend to be ringing from a legitimate number, and seeming confident, or friendly enough, to be trusted.

 

At OptfinITy, we take cybersecurity seriously, which is why we offer each client several check-in meetings per year to ensure they are constantly updated on new phishing scams and remain as protected as possible. If you are interested in hearing more regarding our services, please call (703)790-0400 or email us at info@optfinity.com

 

OptfinITy Ranked Among World’s Most Elite 501

By -- 2020-07-30 in OptfinITy News

OptfinITy Ranked Among World’s Most Elite 501

Managed Service Providers

Annual MSP 501 Identifies Best-in-Class Global MSP Businesses

& Leading Trends in Managed Services

JULY 28, 2020: OptfinITy has been named as one of the world’s premier managed service providers on the prestigious 2020 annual Channel Futures MSP 501 rankings.

For the 13th year running, MSPs from around the globe completed an exhaustive survey and application this spring to self-report product offerings, annual total and recurring revenues, profits, revenue mix, growth opportunities and company and customer demographic information. Applicants are ranked on a unique methodology that weights revenue figures according to long-term health and viability; commitment to recurring revenue; and operational efficiency.

Channel Futures is pleased to name OptfinITy to the 2020 MSP 501.

 

“The Technology industry is a constantly changing and challenging industry and to have an organization like Channel Futures recognize us each year, is a testament to the work and service our hardworking team members provide our clients. ” said Michael Drobnis, CEO of OptfinITy.

In the 13 years since its inception, the MSP 501 has evolved from a competitive ranking list into a vibrant group of service providers, vendors, distributors, consultants and industry analysts working together to define the growing managed service opportunity.

“For the third year running, the applicant pool for the annual MSP 501 has grown year-over-year, making this year’s list the most competitive in the survey’s history,” says Kris Blackmon, Senior Content Director at Channel Partners and Channel Futures. “The MSP 501 leveraged judgement methodology brand-new in 2020 to drill down into not just what makes a big managed service provider, but what makes a great managed service provider. The 2020 winners are truly the best examples of innovation, business acumen and strategic savvy on the planet. We extend our heartfelt congratulations to the 2020 winners and gratitude to the thousands of MSPs that have contributed to the continuing growth and success of both the 501 and the thriving managed services sector.”

About OptfinITy

OptfinITy offers a full suite of IT solutions including managed services, cloud and hosting solutions, application development, website development, mobile application development and phone systems while OptfinITy’s subsidiary, PerusITy, provides cyber security solutions to small and medium sized organizations. Headquartered outside of Washington, DC, OptfinITy services clients throughout the United States.

About Informa Tech

Channel Futures, Channel Partners Online, Channel Partners Conference & Expo and Channel Partners Evolution are part of Informa Tech, a market-leading B2B information provider with depth and specialization in the Information and Communications (ICT) Technology sector. We help drive the future by inspiring the Technology community to design, build and run a better digital world through our market-leading research, media, training and event brands. Every year, we welcome 7,400+ subscribers to our research, more than 3.8 million unique visitors a month to our digital communities, 18,200+ students to our training programs and 225,000 delegates to our events.

 

MEDIA CONTACT:
Allison Francis

Editor, Channel Futures & Channel Partners

Editor, MSP 501

Allison.Francis@informa.com

 

 

Suggested Social Media Accounts and Hashtags to Leverage 

  • Facebook: @ChannelFuturesMSP501
  • Twitter: @MSP_501
  • LinkedIn: MSP 501 Group
  • Instagram: @MSP_501
  • #MSP501
  • #501er

Chinese Malware Found Inside Required Business Software

By -- 2020-07-17 in Blog

Three weeks ago, security researchers detected and exposed a piece of malware lurking inside of tax software that the Chinese government requires companies to install. The evidence gathered reveals that the spy campaign showed that a separate piece of malware released equally sophisticated ways to infect the taxpayers in China. GoldenHelper, which is the name of the malware, conceals its behavior by hiding inside the Golden Tax Invoicing software which all companies that are registered in China are required to use to pay value-added taxes. Researchers found that the malware can bypass the User Account Control, the Windows Mechanism that requires the users to give permission before software can install programs or make any system changes.

GoldenHelper plays tricks to cover its existence and evade detection. These tricks include random generated filenames, random generation ‘creation’ and ‘last write’ timestamps, hardcoded logic that uses domain lookup data to control.” This discovery came to light three weeks after Trustwave exposed GoldenSpy, an advanced spyware that company researches found installed inside their network’s large multinational technology company.

Even technology companies have suffered with unwanted malware subtly placed within their systems. If you are worried that your business may be exposed to unwanted malware, please feel free to reach out to OptfinITy at (703)790-0400 or email us at info@opftinity.com

Warning Reveals that Hackers are Targeting Smartphones to Access Company Networks

By -- 2020-07-10 in Blog

According to a new cybersecurity study, there was an increase of 37% in phishing attacks that target smartphones in the just the first few months of 2020 . While those using laptops and desktops have been used to the threat of emails containing phishing campaigns, criminals setting their sights on IOS and Android devices with these attacks is relatively new. Specialist believe this is because it is more difficult to track phishing campaigns from smart phones, and also because people are most likely to open emails and messages on their phones than they are likely to open it within their email.

 

Believe it or not, many organizations are still unaware of the threat that phishing campaigns and ransomware poses on their businesses. That is why OptfinITy is here to educate and help businesses with the importance of cyber-security. For more information, please contact us at (703)-790-0400 or via email at info@optfinity.com

Microsoft Sacks Dozens of Employees to Be Replaced By Artificial Intelligence

By -- 2020-07-1 in Blog

Almost 30 journalists have been laid off this week after Microsoft announced that it will soon be implementing A.I. Software (aka Artificial intelligence) to replace journalists. Microsoft believes it will  no longer need to  employ people for editing, research, and choosing articles for their pages as the data collected by AI software has been able to provide the same service, while do so quicker, more accurate, and without a monthly salary.  Journalists who are capable of reporting and commenting on news will remain in their jobs.

Although Artificial intelligence software is removing the need for some jobs, it is also helping in many ways such as monitoring the dark web and enhancing security.  To see how AI can help your organization, give OptfinITy a call or email us at sales@optfinity.com.

Over 100,000 Cameras Reported to Have a Security Flaw Allowing Hackers Access to Live Footage

By -- 2020-06-25 in Blog

Do you have a camera within your organization?   Recent reports currently released show that certain brands of wireless cameras feature a security flaw that allows the opportunity for hackers to access people’s home network. Although the connected cameras are meant to issue a sense of security for its owners, it opens the door for malicious actors to compromise both their security and privacy. The cameras are manufactured by the Chinese firm, HiChip, and are extremely popular with individuals across the UK and other countries. Over 100,000 cameras sold across the UK have been confirmed to contain the security flaw.

 

The security flaw allows hackers to access live footage and access other devices connected to the home networks. It also allows hackers to eavesdrop, speak through the camera’s microphone and even pinpoint where the camera user lives. Reports also state that an attacker could still access your network and carry out malicious activity even if the user changes the password.

 

If you fear your business may be vulnerable to unknown security flaws, feel free to contact OptfinITy on (730)790-0400 or info@optfinity.com

How One Security Flaw Can Cost Your Business 150,000 Dollars

By -- 2020-06-18 in Blog

A small Kentucky business recently found themselves to be victims of a ransomware attack, resulting in their having to pay $150,000 to regain control of their data.  The company, which is only made up of 8 computers, simultaneously received messages on their screens saying that the hacker group had control of their PCs and they needed to pay to have their files returned. After exhausting all other options, the company was forced to work with a third-party contractor in order to help handle the ransom payment  This is the cost of not having proper backups.

If your business, big or small, does not have security and online backup plans, you could be spending this much money just to stay in business. Contact us at info@optfinity.com, or call us at 703-790-0400.

Does Zoom’s New Announcement Matter for Your Business?

By -- 2020-06-17 in Blog

Zoom announced this past week that those who use the video platform for free will no longer have encrypted calls and that this new change will be happening soon. According to the company, the reason for the change is the company is  wanting to comply and work with local law enforcement in case Zoom is ever used for any malicious reasons. Those who use Zoom for free only need to provide an email address which is not considered adequate information to verify the identity of an individual, so Zoom is removing that capability so that only verified users can have access to encryption.

This new change is making business owners wary of Zoom, and some have begun considering other communication platforms   For more information on security related issues, keep an eye on the OptfinITy social media and blogs.

Companies Looking For New Hires are Being Targeted by Phishing Scams Now More Than Ever

By -- 2020-06-9 in Blog

Researchers at Check Point have recently discovered that in May 2020, nearly 250 domains were registered with the word “employment” inside. They found that 7% of the domains were found to be malicious and 9% were suspected to be as well. They also found that these malicious files being a fake CV phishing scam has been doubling in the past two months. Cybercriminals are luring in potential victims into opening .xls attachments by using phishing emails with subject lines such as “applying for job” or “regarding job.” Victims are then asked to enable content permission, which immediately initiates the malicious file that downloads the trojan or ransomware.

 

If your company is currently in the process of searching for new hires and are not sure if you are fully safe from potential phishing attacks, please feel free to contact OptfinITy at (730)-790-0400 or at info@optfinity.com.

Elexon’s Cyber-Attack Leaves Businesses Wondering If They are Safe

By -- 2020-05-28 in Blog

 

A UK power grid company has been rumored to have suffered a ransomware attack, although electricity supply for their customers did not seem to have been affected.

Elexon administrates a crucial part of the power supply chain, known as the Balancing and Settlement Code (BSC), which includes the country’s suppliers, generators, distributors, traders, and energy importers and exporters.

After the issue came up, a message from Eloxon appeared saying that they have identified the root of the problem and are taking steps to restore the IT systems. It has been mentioned that a cyber-attack has been confirmed.; however, cybersecurity specialists have not been able to identify whether or not the attack was ransomware.

If you would like to learn more about how to keep your business safe from cyberattacks, feel free to call OptfinITy at (703)790-0400 or email us at sales@optfinity.coms