Patching and Upgrading is Good Right? Hackers Take advantage of Updates!

So we are always telling everyone one of the things you must do is to patch and update our computers, so what happens… Someone figured out how to take advantage of this.  Of course this has an acronym: BYOVD- “Bring Your Own Vulnerable Driver”.  Arstechnica story You may know one of the axioms – everything … Read more

Phishing-as-a-Service by Criminals Means More Attacks

Mandiant has a post about a Phishing-as-a-Service that has recently been investigated by Mandiant. This Phishing as a service is of course trying to make things easier for the criminals to set up phishing campaigns. Above is the Dashboard for the Service called “Caffeine V2” As I have mentioned in my book “Too Late you’re … Read more

What Happens When MFA is Hacked? Phishing is Accurate & Effective

We learned  that MFA or 2FA (Multi or Two factor Authentication) is better than just a username and password to authenticate as all security people keep drumming into everyone right? Just to review MFA is a second form if authentication where the first form is a username and password. The second form can be a … Read more

Has cloud account been Hacked? Like Uber did?

Not just Uber but anyone with a cloud account has an admin account which is susceptible to social engineering hacks. (portswigger article link below) Google example: https://support.google.com/a/answer/57919?hl=en This article is for Google Workspace administrators who manage Gmail accounts for a company, school, or other group. To manage your personal Gmail account, go to the Gmail … Read more