Shmishing

Smishing is a portmanteau of “SMS” (short message services, better known as texting) and “phishing.” When cybercriminals “phish,” they send fraudulent emails that seek to trick the recipient into opening a malware-laden attachment or clicking on a malicious link. Smishing simply uses text messages instead of email.  (usa.Kaspersky.com) Between 2021 and 2022 spam texts have…

Read More

Is there a difference between Information Security Management and Cybersecurity Management? Short answer, YES.  If your role is in information security, your main concern would be in protecting your company’s data from unauthorized access – of any kind.  Electronic and physical (think file cabinets, trash containers, shred-it boxes, desk drawers, etc.)  If your role is…

Read More

As I am sure most of you are aware Apache released information in December concerning a vulnerability in their Log4j module.  Apache’s Log4j (log for java) software library affects versions 2.0-beta9 to 2.14.1, known as “Log4Shell.” Resolution of the issue requires patching to the current version, 2.17.1 (Java 8), 2.12.4 (Java 7) or 2.3.2 (Java…

Read More

It is a wonderful and joyful time of the year, but unfortunately, it’s also a busy time for cybercriminals to take advantage of you.  The National Retail Federation (and IP Services!) would remind you of these simple precautions: Keep a clean machine – make sure whatever device you use for online shopping has the latest…

Read More
Ransomware picture

According to a recent article in the Institutional Asset Manager Newsletter, the financial sector was one of the most targeted by cybercriminals in 2020 during the Covid-19 pandemic at a time when rapid shifts in working practices left organizations vulnerable. In the first emergency phase of the pandemic in Q2 2020, ransomware attacks on financial organizations…

Read More