Filters

RDP Brute Force Attack Detection and Blacklisting with Powershell

Overview Monitoring systems provide great value because they alert us to unusual events. They allow us to check a box on our audit sheet, but really a monitoring system is just half of the equation. The other half of the equation requires an action in response to the event. {{cta(‘eb06e7c8-c2f2-4a8f-986c-028c4223e9df’,’justifycenter’)}} Last week’s Tip-of-the-Week provided a…
Read More

Using Group Policy to Disable Show Hidden Files

There are thousands of hidden files on your workstation that were installed with your applications and operating system that you probably are not aware exist. Deleting these hidden files could be catastrophic, so keeping these files safe and hidden is important. If you discover certain hidden files and attempt to delete or alter them, there could…
Read More

Ransomware Scapegoat

What happened during and after a Florida city paid a $460,000 ransom to the Russian eCrime group, Grim Spider: An interview with Brian Hawkins, ex-Head of IT for Lake City, Florida. (more…)
Read More

Zero-Day Attack Examples

Updated August 2019  About 18 months ago, we discussed some great examples of zero-day exploits that were occurring at the time. Stuxnet, which is known as the world’s first cyber weapon, was used to break Iran’s uranium enrichment centrifuges when it was feared they were producing chemical weapons; Sony fell victim to a zero-day attack…
Read More

Stop Paying The Ransom!

Throughout the last month, city governments have made headlines for the massive ransoms they have paid to cybercriminals after being infected with ransomware. Between two Florida cities, Riviera Beach and Lake City, $1.1 million of ransom was paid to decrypt their files. With that, we have one thing to tell them and everyone else: STOP…
Read More

106 Million People Affected in Capital One Data Breach

On Monday, July 29, Capital One announced a data breach that has exposed the personal information of 106 million people. The breach includes data such as transaction data, credit scores, payment history, balances, linked bank accounts, and Social Security numbers. (more…)
Read More

NSA Issues Rare Advisory on BlueKeep Windows Vulnerability

After nearly three weeks of Microsoft urging Windows users to patch their systems, the National Security Agency (NSA) has issued a rare advisory, warning users to update their systems to protect against BlueKeep. According to Bleeping Computer, BlueKeep has the ability to infect users as quick as the EternalBlue exploit kit that has infected users…
Read More
Menu