How to Keep Ransomware at Bay

Just when you thought it couldn’t get worse, the bad guys say “hold my beer”. The REvil gang has managed to pull off what appears to be the biggest ransomware infection ever through a clever supply chain attack on a company you’ve never heard of called Kaseya. Kaseya is what we call a Managed Service Provider, or MSP. They manage software and IT functions for lots of small-to-medium sized businesses, so that those companies don’t have to. But this also gives MSP’s a very privileged security position, making it a prime target for bad guys wanting to infect a lot of companies with a single hack. Today I’ll catch you up on this ongoing horror show and give you some tips on how to avoid becoming a ransomware victim yourself.

In other news: Kaspersky Password Manager (KPM) was found to have a bad bug making its generated passwords a lot easier to crack; I’ll tell you about how some Brazilian iPhone thieves came up with a clever way to hack your accounts; Google has delayed FLoC and blocking of third-party cookies for at least two years; a Microsoft exec tells the US Congress about how law enforcement and intelligence agencies make thousands of gag-order-restricted demands for data every year; a research group discovers that an old cell phone encryption standard was intentionally weakened to allow easier cracking; Microsoft’s PrintNightmare bug is still not fully patched and the back story is a comedy of errors; and with hurricane season upon us, I’ll point you to some great tips on preparing for power outages.

Article Links

Further Info