Category: Security Page 45 of 79

More About Cerber Ransomware

On June 30, 2018

Cybersecurity is a rising concern. The soaring high figures that represent cyberattacks have been a cause of worry for businesses as well as cybersecurity professionals.

Ransomwares and phishing attacks have been a great threat throughout. Cerber is a ransomware that came into picture when 150,000 window users were infected worldwide via exploit kits in July 2016 alone.

What Happens When An Attack Is Launched?

The victim receives an email which contains an infected Microsoft office document attached to it. A malware is injected as soon as the user clicks & opens it.

When a device is attacked by the ransomware, Cerber encrypts the user’s files and demands money to decrypt and get the access back. The malware encrypts files with RC4 and RSA algorithms and renames them with a .cerber extension.

How Do You Know That You Have Been Infected By Cerber?

You will come to know that you have been attacked by the ransomware, when you’ll find a desktop note the moment you log in. Ransom notes will also be left inside folders that have been encrypted by the malware.

Apart from giving a notice about your files being encrypted, it also provides instructions on how to send the ransom amount to the attackers. The amount keeps on increasing with time and ranges from few hundreds to a thousand dollars.

Is It Possible To Decrypt Files Encrypted By Cerber?

It may or may not be possible. Though decryption tools were available for previous versions of Cerber. However, there is very less scope of recovering encrypted files for the most recent versions. Even paying the ransom amount does not guarantee that you will be able to recover your files.

How To Prevent The Ransomware?

Once your files are encrypted it is very difficult to restore them. So it is best to take preventive measures well on time. Install a latest antivirus software. Also make sure that you do not open any link or attachment sent from an unknown source.

Backup your data regularly and educate your employees about cyber security.

What Is Distinctive About Cerber

It has certain features which you must take a note of:

It Talks – Surprisingly, it is a malware that talks and speaks to the victims. Some versions contain VBScript due to which you may hear audio alerts and messages informing that your files have been encrypted and you must pay the ransom amount to decrypt them.
Works Offline – People might think that disconnecting the device may prevent files from being encrypted. However, this is not true as cerber does not need an active internet connection to operate.

For more information about IT Security, call Centex Technologies at (254) 213-4740.

Risks Associated With IoT Devices

By centexitguy

On May 29, 2018

In Security

We have entered an era of smart devices where from washing machines, TV’s to refrigerators and AC’s everything is connected with the internet. As per reports by Cisco, the number of devices connected with the internet will exceed 50 billion by 2020. However, there are certain risks associated with IoT devices which every user must be aware of. Here we have listed some of them which demand user’s attention.

Security Risks

There are a number of loopholes associated with IoT security, which a hacker takes advantage of. Security attack can be categorized into network, physical, software and encryption attack, each of which has its own consequences.

Physical attacks target hardware of an IoT system and attackers physically harm the device to disrupt the services.
Network attack on the other hand aims at disrupting the network layer of the device. DDoS attack is an example of network attack.
Software attack is launched on the software with an intention to steal information & exploit the device.
Encryption attacks target the implementation of algorithm on which the device works.

So, the user must possess thorough knowledge of the types of security risks and attacks to take preventive measures well in advance.

Legal Risks

Legal issues related to product liability can arise. For example, if an autonomous car gets into an accident, who shall be held liable? Now this is a legal issue as it is difficult to figure out whether the owner, manufacturer, passenger or the person who coded the software is at fault.

Privacy Risks

Since a lot of factors influence data protection, there are a variety of privacy risks associated with IoT. The number of cyber-attacks is soaring high and this has become a serious issue as nowadays most devices are connected to internet making it easier for cyber criminals to steal the information. This information can be applied to infer certain results or to be sold in the dark market which might be used against the IoT device user.

Lack Of Authentication/ Authorization

A lot of vulnerabilities could lead to this issue. Lack of complex device password & two factor authentication, insecure credentials etc. are more like an open invitation to cyber criminals to hack the devices and disrupt the operations.

Other Risks

Insecure Cloud Interface
Complexity
Insecure Mobile Interface
Insecure Network Services

IoT devices now play a mainstream role in our lives, and have become a major part of our official & personal space. Thus, it is important to take a note of all the risks associated with IoT in order to understand the impact they can have on us. It is high time that we take necessary measures to mitigate the risks associated with IoT so that we can enjoy maximum benefits that technology offers us.

For more information about IT Security, call Centex Technologies at (254) 213-4740.

Ways To Ensure Social Media Security

By centexitguy

On May 24, 2018

In Security

Your private information is not private anymore. Social media portals which were initially launched as platforms to connect with family & friends are now facing security issues. This has made it important for everyone to take necessary measures to ensure safety of personal information shared on social networks.

Here are some ways to secure your private information over different social media portals.

Spend Some Time On Understanding Privacy Settings
No matter how complicated it may seem to you, it is important to go through them once & understand the provisions thoroughly. By choosing appropriate settings, you can restrict information that is shared with different groups and applications.
Have Different Personal & Professional Social Media Accounts
Your professional account is generally open to public round the clock. So, in order to restrict people accessing or viewing your personal updates, it is advised to create separate account for personal and professional use. Having separate accounts is also important because if there is some dispute at personal level then the person can negatively use the information available on your social media handle to his advantage & disrupt your professional image on the web. However, having separate social media accounts can help you in preventing this.
Set Different Passwords For Different Social Media Accounts
Probably the biggest mistake that we do is to set same passwords for our different social media accounts. This is more like an open invitation to cyber criminals to hack multiple accounts that you have created on different platforms and get access to your personal & private information.
Do Not Provide Too Much Information
Social media platforms encourage you to fill in a lot of information. However, be wary of the quantum of personal information that you provide as the more information you share, more would be the chances of someone landing their hands on it.
Disable Location Settings
No matter which social media platform you are using, make sure that your location settings are disabled so that nobody is able to keep a track over your current location.
Not Everyone Is Your Friend!
Make sure that you do not add random people in your account without checking out their profiles. It is necessary that you know people with whom you share your information, else you might just provide your private data to a cyber-criminal with an appealing profile by accepting their friend request.

To know more about IT Security, call Centex Technologies at (254) 213-4740.