Insights
What is Doxing and Why Should You Care

Doxing is not an innocent action. It can cause significant damage to someone and may lead to death. Doxing is a crime of revenge and needs to be taken very seriously. 

Doxing is way more serious than it sounds


ChatGPT Opens New Opportunities for Cybercriminals: 5 Ways for Organizations to Get Ready

ChatGPT is an AI powered chatbot useful for creating realistic chats to be used for many purposes. However, if hacked, it can produce very realistic phishing questions and for other nefarious purposes. 

AI enabled chatbot creates great risks


Malware Comes Standard With This Android TV Box on Amazon

A bargain priced TV box from Android looked like a good deal. But investigations showed it contained multiple instances of malware. Installing the box released the malware which contacted malware servers to download more malware. 

Android TV box comes with malware installed


Zoho ManageEngine PoC Exploit to be Released Soon - Patch Before It's Too Late!

An exploit of ManageEngine is about to be released publicly. Your best defense is to install the patch released by Zoho and close the security hole.    

Patch before the exploit is released publicly


Microsoft Patches 4 SSRF Flaws in Separate Azure Cloud Services

Microsoft released many patches this week including some for very significant vulnerabilities. We recommend installing the patches as soon as possible. 

 

Microsoft releases patches for major flaws


Phishing – Still Incredibly Successful

Phishing is a technique used by cyber criminals to steal information or download an infection. It has been around for years, and much effort has gone into protecting against it. But it still succeeds far too often.

 

Phishing still too successful


98 Patches: Microsoft Greets New Year With Zero-Day Security Fixes

A New Year and a new set of patches. Microsoft released patches for a large number of security vulnerabilities. Be sure and install them quickly. 

 

A New Year and many new patches


Critical Cisco SMB Router Flaw Allows Authentication Bypass, PoC Available

The flaws found in the Cisco SMB router are critical and because the devices affected have reached end-of-life, Cisco will not patch them. If you use any of the affected devices, this may be a good time to consider updating your equipment. 

 

Serious Cisco SMB Router flaw will not be patched


Identity Thieves Bypassed Experian Security to View Credit Reports

Experian is one of the big 3 credit rating companies. The information they gather is necessarily sensitive. Now it has been compromised. 

 

Experian security breached


Attackers Are Already Exploiting ChatGPT to Write Malicious Code

ChatGPT is an AI powered chatbot. Security people said it would be exploited for nefarious purposes back in November 2022 when ChatGPT was introduced. Sadly, they were right.   

 

ChatGPT already being exploited