Independent – Page 97 – PossibleThreat Articles

Credit to Author: Sharky| Date: Thu, 12 Sep 2019 03:00:00 -0700

Card-reader door locks are installed at this pilot fish’s company, and she’s tasked with setting up the software, configuring the locks and assigning employee access and times.

A VP gives her a handwritten sheet of paper with the employee door access and times, reports fish. Then he promptly takes a one-week vacation.

“The day the system goes live, the employees are standing in front of me yelling because their cards won’t let them in the door they want to use. They now have to use the main door instead.

“The VP comes along hearing all the complaints, then starts yelling at me that this is not the way it should be set up.

“I pull out his handwritten instructions. He looks at it and says, ‘That’s not my handwriting!’”

To read this article in full, please click here

ComputerWorld Independent

Windows 10 1909: What's in it for enterprises?

September 11, 2019 0 Comments IT Strategy, Security, Windows

Credit to Author: Gregg Keizer| Date: Wed, 11 Sep 2019 14:51:00 -0700

This fall's update for Windows 10 may not include a raft of new features, but it does offer something even more important to enterprise IT: extended support that should make future upgrades easier to manage.

Independent Krebs

NY Payroll Company Vanishes With $35 Million

September 11, 2019 0 Comments A Little Sunshine, Cachet Financial Services, Dan L'Abbe, Granite Solutions Groupe, Michael T. Mann, mypayrollHR, National Payment Corporation, Pioneer Savings Bank, ValueWise Corp., Wendy Slavkin

Credit to Author: BrianKrebs| Date: Wed, 11 Sep 2019 15:02:26 +0000

MyPayrollHR, a now defunct cloud-based payroll processing firm based in upstate New York, abruptly ceased operations this past week after stiffing employees at thousands of companies. The ongoing debacle, which allegedly involves malfeasance on the part of the payroll company’s CEO, resulted in countless people having money drained from their bank accounts and has left nearly $35 million worth of payroll and tax payments in legal limbo.

ComputerWorld Independent

Lemonade is changing the way we insure our homes

September 11, 2019 0 Comments Security

Credit to Author: DealPost Team| Date: Wed, 11 Sep 2019 07:05:00 -0700

Your home can be broken into or destroyed by a natural disaster when you least expect it. When that happens, how will you get back on your feet? Ideally, you would’ve been paying homeowner’s or renter’s insurance to cover your losses. Unfortunately, it can take weeks or even months to receive your money after filing a claim.

Lemonade is here to save the day in less than a day. With rates starting as low as $5/mo for renter’s insurance and $25/mo for homeowner’s insurance, you can rest assured that your property claims can be approved and reimbursed within seconds.

To read this article in full, please click here

ComputerWorld Independent

How to set up Microsoft Teams for security and compliance

September 11, 2019 0 Comments Security, Windows

These are the security and compliance decisions you need to make when deploying Microsoft Teams.

Independent Krebs

Patch Tuesday, September 2019 Edition

September 10, 2019 0 Comments .lnk, adobe flash player, Microsoft Patch Tuesday September 2019, Qualys, Stuxnet, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 10 Sep 2019 20:09:11 +0000

Microsoft today issued security updates to plug some 80 security holes in various flavors of its Windows operating systems and related software. The software giant assigned a “critical” rating to almost a quarter of those vulnerabilities, meaning they could be used by malware or miscreants to hijack vulnerable systems with little or no interaction on the part of the user.

ComputerWorld Independent

How to take full advantage of Android 10's privacy-reclaiming powers

September 10, 2019 0 Comments Android, Mobile, Operating Systems, Security, Software

Credit to Author: JR Raphael| Date: Tue, 10 Sep 2019 08:23:00 -0700

Well, gang, it’s here. In case you’ve been hibernating over the past week (or maybe just, ahem, on an unfortunately timed week off), Google brought Android 10 into this wacky ol’ world of ours this past Tuesday.

There’s really only so much to say about the Android 10 basics at this point — because, quite frankly, it’s the same software we’ve seen evolving in plain view over the past several months.

Yes, Android 10 has new gestures for getting around your phone. Yes, it has a new system-wide switch for making the entire operating system dark. And yes, it has a nifty new Focus Mode for limiting distractions on an app-by-app basis.

To read this article in full, please click here

Independent Krebs

Secret Service Investigates Breach at U.S. Govt IT Contractor

September 9, 2019 0 Comments Dana Deasy, Data Breaches, Hold Security, Julius Patterson, Miracle Systems LLC, National Institutes of Health, Perceptics, Sandesh Sharda, trickbot, U.S. Citizenship and Immigration Services, U.S. Department of Homeland Security, U.S. Department of Transportation, U.S. Secret Service

Credit to Author: BrianKrebs| Date: Mon, 09 Sep 2019 16:47:56 +0000

The U.S. Secret Service is investigating a breach at a Virginia-based government technology contractor that saw access to several of its systems put up for sale in the cybercrime underground, KrebsOnSecurity has learned. The contractor claims the access being auctioned off was to old test systems that do not have direct connections to its government partner networks. In mid-August, a member of a popular Russian-language cybercrime forum offered to sell access to the internal network of a U.S. government IT contractor that does business with more than 20 federal agencies, including several branches of the military. The seller bragged that he had access to email correspondence and credentials needed to view databases of the client agencies, and set the opening price at six bitcoins (~USD $60,000).

ComputerWorld Independent

Heads up: A free, working exploit for BlueKeep just hit

September 6, 2019 0 Comments PCs, Security, Windows

Credit to Author: Woody Leonhard| Date: Fri, 06 Sep 2019 11:33:00 -0700

There’s been a lot of discussion about BlueKeep, its ramifications and various strategies for blocking it. In a nutshell, it’s a security hole in the Windows Remote Desktop Protocol that allows a malicious program to enter your machine – if you have Remote Dekstop turned on, it’s accessible directly from the internet, and you haven’t installed the May patches.

Two weeks ago, Susan Bradley posted a CSO article that details ways admins can avoid using RDP. I’ve seen reams of advice about blocking ports, disabling services, setting authentication levels, deploying voodoo dolls, reading chicken entrails…, but the simplest way for almost everybody to avoid the problem is to install the May (or later) Windows patches.

To read this article in full, please click here