go to sections menu

The Technology blog and podcast

This is for the technology blog and podcast Commentary, articles, and podcasts

header picture for Ingegno theme

You are here: May 2017

Go to Homepage [0], contents or to navigation menu



How Can We Defend Against Ransomware?

My article on Vocal How Can We Defend Against Ransomware? has been published. On this article, I talk about two different articles and the big uptick in ransomware cases, and there is no sign of slowing down. Criminals find this lucritive, because you need your files, and most people don’t back up, or if they do, it isn’t on a regular basis. The human element must have a part in this, it has to start with it. Please discuss your thoughts.

Comments Off on How Can We Defend Against Ransomware?

Got phished? I got a call, but knew better

Hey folks,

Here is another one of the true stories about phishing. I got a call from a toll-free number at 4 this afternoon. They claimed they were from apple and the person’s name was Jennifer. They said there was suspicious activity on my account. My options were to press 1 to speak to someone, or 2 to hang up.

First, the apple rep I talked to says that they will not call you if there is something wrong, you have to call in first, and only then do they call out.

Next, the apple rep said people may get calls from Texas or California area codes, not from a toll-free number. Also, they would identify themselves as apple.

I didn’t get phished as I knew my account had two-factor turned on, and I even envited the representative to look at my account if they wanted to verify that no suspicious activity took place.

Comments Off on Got phished? I got a call, but knew better

Patch Tuesday is here

Hi all,

Brian Krebs has posted like he usually does, and Sans is also covering the microsoft bug that was patched out of cycle to fix some things with their removal tool. I’m sure that Trend Micro will also come out with a post, unless I missed it. Emergency Fix for Windows Anti-Malware Flaw Leads May’s Patch Tuesday is the article for now.

I’m about to publish a great ransomware piece on a side note, and it should be available tomorrow. Hopefully we’re all patched soon, and we can continue to stay as safe as possible. This article I wrote which I’ll cover once posted could be part of why we need to continue to patch where we can because if it gets through some newly developed way besides E-mail, you could be protected. For now, it is delivered by E-mail, but who knows what the future holds. Thats why i mention this article on passing here, as if we were patched, and it was delivered through a bug of some sort on a piece of software, then we could be doomed. Maybe I’m thinking ahead here, but thoughts are welcome.

Comments Off on Patch Tuesday is here

Google and authentication

Hello everyone,

I saw a few articles this morning on an issue in regards to Google and authentication. One was from Trend Micro, the other from my favorite writers at Trend Micro. The long of the short of it is that Google was made aware of an issue where you were sent an E-mail to your google account. If you clicked on the E-mail link, it would ask you for permission to access your account to view the document in docs through the protocol o-auth. If granted, the person in question had complete access to your entire account. Trend Micro indicates that if you just go to the profile page, and remove the access, no further access is granted. Google has pushed a fix so nobody else can be infected by this, but if you have, just remove the access within your account. Clever.

Thanks for reading, and stay safe. As a side note, any link to google docs etc. if signed in, should already connect you through their interface, not through o-auth.

Comments Off on Google and authentication

« Newer Posts

go to sections menu


navigation menu

go to sections menu