Bad Rabbit Ransomware

Bad Rabbit Ransomware

Written by Scott Hall on . Posted in Computer Security

What Is Bad Rabbit Ransomware?

On Tuesday, Oct. 24, a new strand of ransomware named Bad Rabbit appeared in Russia and the Ukraine and spread throughout the day. It first was found after attacking Russian media outlets and large organizations in the Ukraine. The initial installer masquerades as a Flash update.  Interestingly, this malware contains a list

of hardcoded Windows credentials, most likely to brute force entry into devices on the network.

 

How Can I Stop Ransomware Like Bad Rabbit?

 

General recommendations for everybody, regardless of their security vendor, include:

  • Apply all patches to operating systems
  • Protect endpoints with an up-to-date anti-virus solution
  • Ensure firewall and end point firmware is current
  • Implement a network sandbox to discover and mitigate new threats
  • Deploy a next-generation firewall with a gateway security subscription to stop known threats

 

Are there KRACKs in your Wireless Network Security?

Written by Scott Hall on . Posted in Computer Security, IT News

 

Are there KRACKs in your Wireless Network Security?

On October 16, 2017, Belgian security researcher made public their findings that demonstrated fundamental design flaws in WPA2 that could lead to man-in-the-middle (MITM) attacks on wireless networks.

Named KRACKs, or key reinstallation attacks, this technique can theoretically be used by attackers to steal sensitive information from unsuspecting wireless users leveraging these flaws in the WiFi standard.

More details on these vulnerabilities are available on the researchers’ website at www.krackattacks.com.

What can I do to protect my wireless network?

We do recommend that you take immediate action to minimize the risk presented by these vulnerabilities.  We advise the following:

  • Patch all of your WiFi clients, whether Windows, Linux, Android, iOS or Mac OS based, with the latest KRACK updates from your client vendors. The attack is launched by compromising the wireless device, not the wireless router, so that is the most important area to focus on when you go about patching.
  • Check with your vendor to determine if you need to patch your wireless access points and/or routers. Ideally, your WiFi solution would be centrally managed allowing you to provide updates and patches in a timely fashion without crippling IT resources.
  • Add an additional layer of security by using VPN technology to encrypt all network traffic between your wireless devices and your firewall.
  • Transmit sensitive data only on TLS/SSL-encrypted web pages. Look for the green lock symbol in the address bar along with https in the URL.
  • Be on the lookout for unusual activity inside or outside your facility. In order to launch an attack using these vulnerabilities, an attacker must be physically located within Wi-Fi range of both the access point and the wireless client that is attempting to connect to the network. That means the attacker must be in or near your building, which makes it a bit more difficult to leverage than other Internet-only attacks.
  • One other note: there is no need to change Wi-Fi passwords as the KRACKs do not require the Wi-Fi password to be successful.

 

Get In Touch With SOS Technology Group Today

SOS can help you extend breach prevention to your wireless network while surveying if your current solution places you at risk.


SOS Technology Group
is a full-service IT consulting company focused on delivering IT Services and Solutions to businesses across the USA. We offer specialized, highly customized technology solutions for small and medium-sized businesses. Our experienced team will be able to assist you in creating a practical, sustainable IT infrastructure for your business, from helping develop your overall IT Strategy down to implementing a fully functional network in your environment.   We offer a range of IT Consulting and IT Outsourcing services including Network Management, Dedicated Servers and Managed Services, customized to meet your unique business needs, so you can stop worrying about technology and focus on your business.   Give us a call at 410-559-7020 or contact us here to get started. You can also follow us on Facebook, Twitter, LinkedIn, Pinterest, and YouTube.

 

BASIC STEPS TO ENHANCE YOUR COMPUTER SECURITY

Written by Scott Hall on . Posted in Computer Security, Technology

It’s easy in today’s world to forget about computer security.

Do you constantly have problems with viruses?  Does it seem like you can’t see an end to all the pop-ups, unwanted prompts and laggy programs?  You’re probably not keeping your computer very safe.  It’s easy in today’s world to forget about computer security, because you use it in the comfort of your own home or office.  It gives the illusion of safety.  In reality, there are a lot of nasty viruses out there that exist solely to make your life more difficult.  So, read on to see some simple tips that will help tremendously in the fight against viruses.

  • Don’t use Internet Explorer as your main browser.

 

No.  I promise it’s not easier to understand.  It’s hard for a lot of people to accept that, considering how long IE has been around, and how it comes pre-downloaded on most computers.  But IE isn’t nearly as secure as a lot of newer browsers, like Chrome or Firefox.  And, Chrome allows you to customize your browser to your liking using extensions.  There are even extensions that can enhance readability on your browser by using interesting techniques that make your brain work faster.  Just give it a shot!

 

  • Do extensive research before downloading anything at all.

 

You’ve got about three options when you first get your computer in regards to what you’re allowed to download without research: Chrome, Microsoft Office, and an antivirus program (and even then, you should look for something certified).  If your computer is for office use only, these are generally all you’ll need, anyway, unless your company says otherwise.  With any other download, make sure you do a quick Google search asking about its reliability.  Sometimes, if something is insecure, the first result will warn you away from it.

 

  • Install a firewall.

 

If you’re unfamiliar, a firewall is just a security system that runs whatever you come across through a filter before your computer really starts to use it.  Websites, downloads and other daily interactions are run through your factory-installed firewall all the time.  Every Windows computer, for example, has a ready-to-go firewall built-in–they’d never leave you completely unprotected.  But this isn’t always enough, and isn’t built to last.  A sturdy firewall will worker harder and faster than the one Windows gives you.

 

  • Need help with your computer security?  SOS Technology Group is here to assist.

 

SOS Technology Group is a full-service IT consulting company focused on delivering IT Services and Solutions to businesses across the USA. We offer specialized, highly customized technology solutions for small and medium-sized businesses. Our experienced team will be able to assist you in creating a practical, sustainable IT infrastructure for your business, from helping develop your overall IT Strategy down to implementing a fully functional network in your environment.   We offer a range of IT Consulting and IT Outsourcing services including Network Management, Dedicated Servers and Managed Services, customized to meet your unique business needs, so you can stop worrying about technology and focus on your business.   Give us a call at 410-559-7020 or contact us here to get started. You can also follow us on Facebook, Twitter, LinkedIn, Pinterest, and YouTube.

Are Updates to Your Computer’s Security Really That Important?

Written by SOS Tech Group on . Posted in Blog, Computer Security

computer updates

If you’re used to dismissing those update notifications on your computer, you could be putting yourself at risk for malware and viruses.

With the ever-growing advancement in technology seemingly making our lives easier, unfortunately it can still lead us to being susceptible to threats from ever evolving hackers and scammers. This is ever true in the case of computer security, where people tend to ignore computer security updates.  If you are accustomed to dismissing those update notifications, you need to reconsider that practice. Applying software updates is one of the most important things you can do with your computer. In fact, if you don’t do it, you’re very likely going to get some kind of malware in your system and even get hijacked.

Is it Possible For Malware to Travel Through Your Router?

Written by SOS Tech Group on . Posted in Blog, Computer Security, Technology

router

More often than not, your entire business functions on just a few routers.  Concern over malware and viruses is completely valid.

If you have a business, you know that malware and viruses can be completely devastating to your digital world.  More often than not, your entire business functions on just a few routers.  Concern over malware and viruses is completely natural and valid.  And it’s understandable that you have serious questions about whether or not your router can house malware, spreading it throughout your business.  Worried you may be at risk?  Read on to learn more about how malware can affect your router.

Tech Headaches? We can help! Contact us now »