23Jun 2015 by nathan

SSL Certificate Errors on Cyber Tech Cafe Helpdesk

Uncategorized
We are replacing one of the proxy servers on our network that handles traffic to and from https://helpdesk.cybertechcafe.net .  During the process, we have a temporary proxy in place using a self-signed SSL certificate.  The net result is that visitors to https://helpdesk.cybertechcafe.net will receive an SSL error, stating that the certificate is not valid.  We apologize for any inconvenience and expect to have the new proxy server in place soon.
Read More
19Jun 2015 by nathan

Mark Your Calendar, the first Hacker Playdate is this Saturday (20 June 2015)

Uncategorized
First Hacker Playdate This Saturday Cyber Tech Cafe and Piratica are co-hosting the first Hacker Playdate on Saturday, 20 June 2015 from 10:00am EDT until 6:00pm EDT.  There will be (audience participation) discussions, demonstrations and events throughout the day as well as three main demonstrations at 12:00pm EDT, 2:00pm EDT and 4:00pm EDT.  There is no-cost to attend and audience participation for all of the events is welcome and encouraged.  Drop by for the demonstrations or stay the whole day. Where, When and How Much? When - Saturday, 20 June 2015 from 10:00am EDT until 6:00pm EDT.  Drop by for the main demonstrations or stay all day! Where - Cyber Tech Cafe, 148 West Main Street, right across from Findley's Butcher Shop on Main Street beside Primo's Mexican Restaurant. How Much…
Read More
11Jun 2015 by nathan

Antivirus firm Kaspersky breached sometime last year. Full extent of damage not yet known.

Uncategorized
Kaspersky is an antivirus company out of Russia that develops and maintains the Kaspersky antivirus product as well as a number of popular post-infection clean-up tools.  Kaspersky has been in the news a good bit for their research into viruses, malware and various attack / exploit kits.  As a high-value target, their network was breached at least once several years ago and it appears that they were hit again sometime last year. According to this article on Wired, the Antivirus company Kaspersky suffered a significant data breach 'sometime last year' and, as far as they know thus far, the attackers only stole data but they also indicate that they aren't 100% sure *what* all was taken.   Some important things to take from this: If you're using Kaspersky antivirus and plan to…
Read More
09Jun 2015 by nathan

June 2015 News and Updates

Monthly Newsletters, Uncategorized
What's New Hacker Play Date - Cyber Tech Cafe will be co-hosting a Hacker Play Date on Saturday, 20 June 2015 at 10:00am EDT.  We have it scheduled until 6:00pm EDT and have 'official' demonstrations scheduled for 12:00pm EDT, 2:00pm EDT and 4:00pm EDT.  Our goal is  an informal gathering for any tech enthusiasts from the layman to the systems / security engineer to discuss the possibility of some kind of regular gathering on a monthly or quarterly basis (think 2600 meeting or similar).  Ideally, for each event we would have a presenter to kick things off and then discussions, practical excercises, entertainment (Red Team / Blue Team excercises, installfests, etc.) for the remainder of the event.  Lite refreshments would be provided by the host(s).  There would be no charge for the event…
Read More
13May 2015 by nathan

May 2015 News and Updates

Monthly Newsletters, Uncategorized
What's New Episode Two, The Mobile Threat - The latest episode was released on 19 March and follows our attackers Myles and Ian as they use an executives mobile phone to gain access to (at least) one corporate network, completely under the radar.  Episode Two can be found here. Hacker Play Date - Cyber Tech Cafe will be co-hosting a Hacker Play Date on Saturday, 20 June 2015 at 10:00am EDT.  We have it scheduled until 6:00pm EDT but, depending on interest and turn out, may make adjustments.  Our goal is  an informal gathering for any tech enthusiasts from the layman to the systems / security engineer to discuss the possibility of some kind of regular gathering on a monthly or quarterly basis (think 2600 meeting or similar).  Ideally, for each event we would have…
Read More
21Apr 2015 by nathan

April 2015 News and Updates

Monthly Newsletters, Uncategorized
What's New Episode Two, The Mobile Threat - The latest episode was released on 19 March and follows our attackers Myles and Ian as they use an executives mobile phone to gain access to (at least) one corporate network, completely under the radar.  Episode Two can be found here. Resurgence of Crypto style malware (REPOST) - It looks like the Cryptowall style malware is making another round.  There are some details on one variant here but the biggest thing to keep in mind is that, if you get hit with this, you need to consider whatever data is encrypted gone.  There may be a chance that you may get it back if you send a large sum of money via untraceable currency (Moneypak, bitcoin, etc.) to an anonymous person likely in a non-extradition country but a much…
Read More
19Mar 2015 by nathan

Episode Two – The Mobile Threat

Uncategorized
Summary and Translation of Episode One, Setting the Hook.In Episode One, we saw Ian and Myles send a mass email with a malicious link disguised as a Facebook friend request, phishing for victims. We’re not sure how many others fell for the fake email, but we know that Nancy at Acme Widgetco clicked the link and, seconds later, Myles and Ian were watching her via her webcam and exploring the files on her local hard drive.  Episode One is available here. “Jake, I have an important meeting with potential investors in 12 minutes and I need to be able to connect my phone to the network to access my presentation”. Mr. Peters had apparently just discovered Chromecast and was planning to use his newfound streaming prowess to impress the potential…
Read More
13Mar 2015 by nathan

Security update from Adobe for Flash Player affecting all supported platforms

Uncategorized
Important update for Adobe Flash Player Adobe systems released an update on 12 March for their Adobe Flash product to resolve an issue that could allow a remote attacker to take full control of the affected system.  This update applies to all supported platforms (Windows, Apple / Mac, Linux, etc.) and has been given a Priority Rating of 1, meaning that it's likely being actively exploited already (though I haven't seen exploits listed in exploits-db.org or osvdb.org yet). Details on the vulnerability and it's CVE ID's are available here.  All users are encouraged to update their Adobe Flash installs to the latest version as soon as possible.  Cyber Tech Cafe MyIT clients already have the updated versions available and need only reboot to complete the update.
Read More
10Mar 2015 by nathan

March 2015 News and Updates

Uncategorized
What's New Resurgence of Crypto style malware - It looks like the Cryptowall style malware is making another round.  There are some details on one variant here but the biggest thing to keep in mind is that, if you get hit with this, you need to consider whatever data is encrypted gone.  There may be a chance that you may get it back if you send a large sum of money via untraceable currency (Moneypak, bitcoin, etc.) to an anonymous person likely in a non-extradition country but a much better (and cheaper) plan is to maintain good backups that you test regularly and make certain to install updates regularly and keep up-to-date antivirus.   Facebook Campaign - We continue to get good feedback on the Facebook page and appreciate you folks spreading the…
Read More