This week, a security researcher named Sam Curry wrote about a recent research project where he cracked his Tesla and found a vulnerability in it. As part of his research, he attempted a XSS (cross-site scripting) injection when setting up his car’s name in the in-car menu system. After a few tries with no results he decided to call it a night. In his Blog post, Sam wrote … [Read more...]
Coast Guard Cyber Warnings – Security Byte
Over the past few months, the Coast Guard has surprisingly issued cyber security alerts to commercial vessels. Between targeted phishing campaigns and run-of-the-mill malware, even boats seems to be under digital bombardment. Watch today’s video to learn more about these recent Coast Guard cyber warnings and what a general business or netizen might learn from them. Episode … [Read more...]
Targeting New Hires Makes for Easy Pawnage
Generic social engineering attacks may affect a few people but a targeted attack with specific company details are much more effective. Stephanie “Snow” Carruthers, who works for IBM X-Force Red as a social engineering tester, goes into how she gathers information to start a social engineering attack in this article. Unethical social engineers often use social media to … [Read more...]
Beware MSP Targeted Attacks – Security Byte
In the past two weeks, sophisticated threat actors have targeted managed service providers (MSPs) and Cloud service providers (CSPs), intending to install ransomware within their infrastructure and customer base. Often, these attacks specifically target products and services MSPs use, such as ConnectWise/Kaseya software, the Webroot Management Console, RDP services and more. If … [Read more...]
MSPs Beware: Attackers Targeting MSP Infrastructure to Install Ransomware
In the past two weeks, sophisticated threat actors have targeted managed service providers (MSPs) and Cloud service providers (CSPs), intending to install ransomware within their infrastructure and customer base. Often, these attacks specifically target products and services MSPs use, such as ConnectWise/Kaseya software, the Webroot Management Console, RDP services and more. … [Read more...]