Since November 25, over 100 dental offices were compromised via their managed service provider (MSP), Complete Technology Solutions (CTS). CTS is a Colorado-based company that provides IT services to numerous dental offices. The threat was identified as the infamous Sodinokibi ransomware strain, which has played a role in several MSP attacks this year alone. Reports from … [Read more...]
My Journey into the Dark Web: At Your Service
This blog expands on my previously written My Journey into the Dark Web, which can be found here. The previous post covers where to start prior to meandering on the dark web, doing so in a safer manner by utilizing a VM and the Tor browser. Following is the clarification of some buzzwords that can seem ambiguous; surface web vs. deep web vs. dark web. It then covers what the … [Read more...]
Ccleaner Supply-chain Attack – Daily Security Byte
Ccleaner is one of the most widely used Windows maintenance programs out there, with over 2 billion downloads. In fact, it was a utility that even I used often before moving to OS X. Unfortunately, Talos researchers have discovered that the official Ccleaner installer had been booby-trapped with malware for over a month. In order to have planted this malware into an installer … [Read more...]
Were the US Navy Ship Collisions the Result of Hacking?
With the recent string of US Navy ship collisions including the USS McCain and Fitzgerald, the mind of a security professional will instantly think of all the possible malicious ways an attacker could target naval systems to cause a vessel to crash. Multiple collisions with similar factors will lead to even more speculation. Although professionals should not claim attribution … [Read more...]