508-909-5961 [email protected]

New malware infects SOHO routers worldwide

Talos recently warned that at least half a million routers have been endangered by a new form of malware called VPNFilter. After an earlier version targeted devices in Ukraine, VPNFilter has spread rapidly in around 54 countries, affecting home and small business routers.

The post New malware infects SOHO routers worldwide appeared first on Complete Technology Resources, Inc..

New malware infects SOHO routers worldwide

Talos recently warned that at least half a million routers have been endangered by a new form of malware called VPNFilter. After an earlier version targeted devices in Ukraine, VPNFilter has spread rapidly in around 54 countries, affecting home and small business routers.

How VPNFilter Works

Talos cited the vulnerable devices as Linksys, MikroTik, Netgear, and TP-Link networking equipment, as well as network-attached storage (NAS). Upon infecting a small office home office (SOHO) router, VPNFilter deploys in three stages.

In stage 1, the malware imposes its presence by using multiple command-and-control (C2) infrastructure to capture the IP address of the existing stage 2 deployment server. This makes VPNFilter so robust that it can deal with any unpredictable changes in C2. This stage of the malware persists through a reboot, which makes preventing reinfection tough in stage 2.

Stage 2 involves deploying modules capable of command execution, and data collection and exfiltration. According to the United States Department of Justice (DOJ), this can be used for intelligence gathering, information theft, and destructive or disruptive attacks. Moreover, stage 2 malware has a “self-destruct” feature that once activated by the hackers will overwrite a critical area of the device’s firmware so it stops functioning. This can happen on almost every infected device.

In Stage 3, a module with packet-sniffing capabilities is added to enable monitoring of internet traffic and theft of website credentials. And yet another module is installed to deploy communication support for the Tor network, which can make communicating with the C2 infrastructure harder.

Taking Action

According to Talos, the likelihood of the attack being state-sponsored is high, something the DOJ later backed up. The DOJ attributed it to a group of actors called Sofacy (also known as APT28 and Fancy Bear), the Kremlin-linked threat group believed to be responsible for hacking the Democratic National Committee computer network two years ago.

On the night of May 23, the FBI announced that they have seized a domain which is part of VPNFilter’s C2 infrastructure used to escalate the malware’s effects. This forces attackers to utilize more labor-intensive ways of reinfecting devices following a reboot. With the seizure, the government has taken a crucial step in mitigating VPNFilter’s impact.

Stopping the Malware

Researchers agree that VPNfilter is hard to prevent. While vulnerability has been established, patching routers isn’t easy, something average users might not be able to do on their own. But as with any malware, the impact of VPNFilter can be mitigated, which is done by terminating the C2 infrastructure used.

To minimize exposure, the FBI recommends all SOHO routers be rebooted, which, according to a statement from the DOJ, will help the government remediate the infection worldwide. The justice department, along with the FBI and other agencies vowed to intensify efforts in disrupting the threat and expose the perpetrators.

For their part, Talos offers the following recommendations:

  • Users of SOHO routers and/or NAS devices must reset them to factory defaults and reboot them in order to remove the potentially destructive, non-persistent stage 2 and stage 3 malware.
  • Internet service providers that provide SOHO routers to their users should reboot the routers on their customers’ behalf.
  • If you have any of the devices known or suspected to be affected by this threat, it is extremely important that you work with the manufacturer to ensure that your device is up to date with the latest patch versions. If not, you should apply the updated patches immediately.
  • ISPs will work aggressively with their customers to ensure their devices are patched to the most recent firmware/software versions.

Combat the VPNFilter malware by rebooting affected devices. For more tips, contact our team.

Published with permission from TechAdvisory.org. Source.

The post New malware infects SOHO routers worldwide appeared first on Complete Technology Resources, Inc..

Read More

Do WP security updates cause problems?

It's important for every business to install security patches in WordPress (WP), given the growing number of cyberthreats targeting businesses. Apart from defending your website from threats, patches guarantee that your business stays intact and your data remains in safe hands.

The post Do WP security updates cause problems? appeared first on Complete Technology Resources, Inc..

Do WP security updates cause problems?

It's important for every business to install security patches in WordPress (WP), given the growing number of cyberthreats targeting businesses. Apart from defending your website from threats, patches guarantee that your business stays intact and your data remains in safe hands. But sometimes a security update can cause issues. Why does this happen, and can it be prevented?

Be cautious with updates

In 2017, WP issued 21 updates and 33% of these focused on security. Despite their many benefits, these updates caused some sites to crash and caused downtime related plugin incompatibilities. To take advantage of updates without experiencing any drawbacks, our technicians shared the following tips:

Check plugin compatibility

A typical WP site has anywhere from 10 to 50 plugins installed that enable additional functionality. Some are supported by developers who constantly update these plugins while others are not.

For a fully functional website, always choose plugins that are backed by certified development teams, and be wary of error-prone free plugins. We know how difficult it is to designate a portion of your business expenses on improving your site, but in the long run, you’ll realize that relying on free plugins will generate more website crashes than website leads.

Choose how you update

Every time WP releases a new version, you get a notification in the dashboard. There, you are given an option to select a manual or automatic one-click update. Consider the effect of either option before you update.

With manual updates, you can fix incompatible site features, customize plugin update settings, and view your updated website in a controlled environment. Keep in mind that this process is technical and complicated, but gives you more flexibility with the way your update is managed.

With automatic updates, you have three options: automate the process with custom programming, click the “Update Now” button, or download an automatic update plugin. Option number three may seem ideal, but sweeping automatic updates will make it difficult for you to single out which add-on caused your site to crash.

Unless you're certain of the best option for updating your WP site, you need a managed services provider to help you navigate this complicated process. We’ll keep your site secure and lend a hand in case it breaks down. Give us a call today to get started!

Published with permission from TechAdvisory.org. Source.

The post Do WP security updates cause problems? appeared first on Complete Technology Resources, Inc..

Read More

Protect your Facebook and Twitter from hackers

In the wake of Facebook’s worldwide privacy scandal, it’s time to revisit some social media best practices. Your information is incredibly valuable, and you can’t rely on social media platforms to keep it safe from hackers. Heed these tips to make sure your Facebook and Twitter accounts are well secured.

The post Protect your Facebook and Twitter from hackers appeared first on Complete Technology Resources, Inc..

Protect your Facebook and Twitter from hackers

In the wake of Facebook’s worldwide privacy scandal, it’s time to revisit some social media best practices. Your information is incredibly valuable, and you can’t rely on social media platforms to keep it safe from hackers. Heed these tips to make sure your Facebook and Twitter accounts are well secured.

Lockscreens exist for a reason

Make sure all your computing devices lock the moment you stop using them. This way, you are safe from the simplest hack of all: someone opening a browser on your computer that has your social media login saved. As long as your password isn't your birthday or anniversary, you'll be forcing hackers to work for access to your account.

Strong passwords are never out of fashion

Unlocking your phone may be limited to a six-digit passcode, but you'll need something much more complicated for your account password. The first thing you'll need to do is create a password that isn't used for any other account. Because data breaches have become such a regular occurrence, hackers probably have a long list of your favorite passwords from other websites and platforms.

In this case, it is best to use a password manager like an app or online service that allows you to generate and retrieve complex passwords.

Another thing you can do is enable something called two-factor authentication, which requires you to type in a secondary code sent to your phone. Even if hackers have your password, they won't be able to log in without your phone.

Make use of social media features

Facebook offers functions that help you keep tabs on who's accessing your account and from
where. To use this feature, click the down arrow in the upper right corner of your Newsfeed and select Settings. Then click Security and Login to get more information. If you sense an imposter, click the right-hand icon to give you the option of logging out remotely or reporting the person.

From there, turn on Get alerts about unrecognized logins to be notified via Facebook, Messenger, or email if someone is logged into your account from an unrecognized browser. Unfortunately, Twitter doesn’t have the same option (that makes the two-factor authentication extremely necessary).

While it may be difficult for a hacker to barge into your Facebook or Twitter account through a third-party service that you have given access to your profile, it's still advisable that you check what you have approved.

  • Facebook: Go to Settings > Apps and Websites to view and manage outside service with access to your account
  • Twitter: Go to Settings and Privacy > Apps to check and edit the list

Last, be sure to check the permissions mobile apps like Facebook and Twitter have on your smartphone or tablet.

  • Android: Go to Settings > Apps > tap the icon in the upper right and then tap App permissions
  • iOS: Go to Settings > Privacy to manage which service can access which parts of your phone

Less personal info, fewer problems

These steps are just the beginning of what you should be doing. The next thing you should consider is limiting the personal data you input into your social media accounts. If you have to put a ton of information, then be sure you read this blog from the top.

With a little practical knowledge, you can prevent Facebook and Twitter hackers from doing what they do. Cybersecurity is a sprawling issue and social media privacy is such a small sliver of what you need to stay on top of. For 24/7 support, call our team of experts today.

Published with permission from TechAdvisory.org. Source.

The post Protect your Facebook and Twitter from hackers appeared first on Complete Technology Resources, Inc..

Read More

Be Smart and Back Up Your Valuable Data

Storing copies of your business data in the cloud will help you avoid the risks associated with broken hard drives, lost or stolen devices, and human error. That’s because entrusting your data to an expert cloud provider means you’ll have trained professionals handling the backup of your business assets online.

The post Be Smart and Back Up Your Valuable Data appeared first on Complete Technology Resources, Inc..

Be Smart and Back Up Your Valuable Data

Storing copies of your business data in the cloud will help you avoid the risks associated with broken hard drives, lost or stolen devices, and human error. That’s because entrusting your data to an expert cloud provider means you’ll have trained professionals handling the backup of your business assets online.

How should you go about choosing a cloud backup provider? Let’s take a look:

Learn more about their storage capacity

Before partnering with a cloud backup provider, ask them where they store their data. Many providers use cloud servers over which they have little control, which could be hazardous as it makes it harder to monitor activity and respond to anomalies. To avoid this fate, choose a backup service that operates their own cloud-based servers.

Next, you will have to determine whether your business assets can be backed up, since some cloud storage providers do not have the capacity to save bigger files like videos or other multimedia files. By asking these questions, you can find a cloud backup service that fits your business needs, and more importantly, can take care of all your files.

Get details on their security

It will be important for the cloud backup provider to explain in no uncertain terms how they will store your files. They should be encrypted and stored on multiple servers because redundant storage ensures your data has multiple copies saved online and can be retrieved at will. Even if an uncontrollable disaster befalls your company or the backup provider’s system, you’ll still be safe.

Compare your budget and backup costs

Before considering any cloud backup provider, you need to know how much the service is worth to you. How much money would you lose if your server crashed and all the data it stored was irretrievable? Compare that amount with the cost of a provider's service, which could be charged by storage tiers, per gigabyte, or on a flat-fee unlimited plan.

When asking about the price of cloud backups, make sure to clarify any service limitations or restrictions. For example, how quickly can your storage capacity be upgraded? Is it possible to run out of storage? These are not things you want to discover in the middle of hurricane season.

Clarify data recovery timelines

Although storage availability is important, how quickly backups can be created and restored is also an essential factor. Ask providers how often backups will be created (e.g., hourly, daily, weekly), and how long it will take to restore them (e.g., hours, days, etc.). If those timelines are too long, it may be time to look for a better provider.

The most important thing is to know your needs before meeting with a potential provider. Let them know your business needs, budget, and recovery timelines. Our solutions and pricing are flexible and customized to your needs so you're not stuck in a cookie-cutter plan.

Give us a call to find out more about cloud backup service and other dynamic ways to protect your data.

Published with permission from TechAdvisory.org. Source.

The post Be Smart and Back Up Your Valuable Data appeared first on Complete Technology Resources, Inc..

Read More