Leadership – Balance Caring with Candor during employee critique

Uncategorized Comments Off on Leadership – Balance Caring with Candor during employee critique

John Maxwell shares an excellent article on the need for leaders to balance “Caring” with “Candor” during employee critique. http://johnmaxwellcompany.com/blog/confronting-employees-without-losing-them Before your leaders begin confronting employees, they need to know if the problem is one of ability or attitude. As leadership consultant Dr. Samuel R. Chand says, “We hire people for what they know and […]

Microsoft Word – Malicious content can transferred via DDE and XML

Uncategorized Comments Off on Microsoft Word – Malicious content can transferred via DDE and XML

Two excellent articles below share how malicious code using DDE protocol and XML file formats, can be manipulated in Microsoft Word to infect users.  https://isc.sans.edu/forums/diary/Macroless+Code+Execution+in+MS+Word/22970/ https://sensepost.com/blog/2017/macro-less-code-exec-in-msword/ In the past few days, the industry became aware of a new technique to deliver malware, using macro-less code execution in MS Word, leveraging the Microsoft Dynamic Data Exchange […]

Malicious EMAIL Attachments – Rare file extensions used to bypass blocking OCT-2017

Uncategorized Comments Off on Malicious EMAIL Attachments – Rare file extensions used to bypass blocking OCT-2017

The SANS ISC shares awareness that one cannot rely solely on blocking incoming email attachments by file type.  As shared below in recent spam trapping analysis some extremely rare file types are being sent in hopes of bypassing blocking controls.  While blocking is still a very effective control up-to-date AV and Windows updates complement protection […]

Ransomware – Bad Rabbit appears to be new Petya variant OCT-2017

Uncategorized Comments Off on Ransomware – Bad Rabbit appears to be new Petya variant OCT-2017

A new variant of the Petya ransomware network worm appears to have surfaced in Russia and Ukraine, based on early research. https://isc.sans.edu/forums/diary/BadRabbit+New+ransomware+wave+hitting+RU+UA/22964/ http://www.zdnet.com/article/bad-rabbit-ransomware-a-new-variant-of-petya-is-spreading-warn-researchers/ Organisations in Russia, Ukraine and other countries have fallen victim to what are thought to be a new variant of ransomware. In a tweet, Russian cyber security firm Group-IB said that at […]

FBI – Computer Security Best Practices OCT-2017

Uncategorized Comments Off on FBI – Computer Security Best Practices OCT-2017

The FBI shares best practices during October 2017, which is designated as cyber security month https://www.fbi.gov/news/stories/national-cyber-security-awareness-month-2017 1. Report incidents to Internet Crime Complaint Center (IC3).  This is a reliable and convenient reporting mechanism for the public to submit complaints about Internet crime and scams to the FBI. The IC3 uses the information from public complaints […]

DDoS attacks – One year after DYN DNS service provider attack

Uncategorized Comments Off on DDoS attacks – One year after DYN DNS service provider attack

The Internet Storm Center reflects on one of most potent DDOS attacks of all time.  This went after the core infrastructure provider rather than the site itself.  Impacting a key Internet support service in this manner created a brief outage for several major companies https://isc.sans.edu/forums/diary/One+year+Anniversary+of+Dyn+DDOS/22952/ Today,  October 21st, marks the one year anniversary of the DDOS […]

DDoS Attacks – FBI warns on Booter and Stresser hired services

Uncategorized Comments Off on DDoS Attacks – FBI warns on Booter and Stresser hired services

The FBI shares an excellent awareness of “Distributed-Denial-of-Service” (DDoS) attack services that can be hired as described below: https://www.ic3.gov/media/2017/171017-2.aspx FBI OVERVIEW FOR DDoS FOR HIRE THREAT — DDoS attacks are costly to victims and render targeted Web sites slow or inaccessible. These attacks prevent people from accessing online accounts, disrupt business activities, and induce significant […]

Google Calendar – Improved layout and corporate features OCT-2017

Uncategorized Comments Off on Google Calendar – Improved layout and corporate features OCT-2017

Google’s online calendar facility offers improved an layout and some new collaborative capabilities, as shared below: https://www.pcmag.com/news/356814/google-calendar-gets-a-new-look-on-the-web-upgrades Google’s Calendar on the web now offers a fresh color scheme and a responsive layout that auto-adjusts to your screen size. But looks aside, G Suite admins can now enter detailed information about their company’s meeting rooms, like […]

Leadership – 7 questions for leadership awareness and development

Uncategorized Comments Off on Leadership – 7 questions for leadership awareness and development

John Maxwell shares an excellent article on the need for leaders to become self-aware of their personality traits, blind spots, and other factors that might impact their team relationships. http://johnmaxwellcompany.com/blog/7-questions-for-leadership-development Here are 7 questions to encourage leadership development and greater self-awareness. Pass these along to potential leaders in your company and incorporate them into planning […]

ROCA exploit – Attackers recover Private RSA Keys CVE-2017-15361

Uncategorized Comments Off on ROCA exploit – Attackers recover Private RSA Keys CVE-2017-15361

Security experts have discovered a new vulnerability, tracked as CVE-2017-15361. An exploit called ROCA is the Return of Coppersmith’s Attack (allowing the users private keys to be recovered in breaking encryption).  A vulnerability testing tool has also been developed http://securityaffairs.co/wordpress/64401/breaking-news/roca-vulnerability-cve-2017-15361.html http://wccftech.com/roca-worse-krack-crypto-keys-risk/ While security experts are discussing the dreaded KRACK attack against WiFi networks IT giants, […]


© 2021 Computer Safety & News.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs
Entries RSS Comments RSS Log in