02Jul 2020 by nathan

Microsoft issues emergency security update

CTC NEWS, Industry News, Tech news
A private security researcher discovered two bugs affecting Windows 10 and Windows Server 2019 that can allow a remote attacker to take remote control of a computer if a user opens a specially crafted image. The bug was reported to Microsoft and updates to fix the bugs were issued earlier today. Additiinal information is available here .
Read More
08Jun 2020 by nathan

Another day, another phishing scam (or two)

CTC NEWS, Industry News, Tech news
As more and more people continue to work from home, we are seeing attackers leveraging social engineering tactics like phishing even more frequently, knowing that these teleworkers are typically not behind a corporate firewall that would likely block their malicious payloads. With that in mind, I received two emails today that highlight some of the ways that we can identify phishing and avoid becoming a statistic. Both emails appear to be from very different senders with very different approaches but, ultimately, with the same end game; get me to click on a malicious link. The sample below is a simple based email attempting to capitalize on the users fear that their email is about to go away and, if they don't act fast, they will lose data. Note that the…
Read More
27May 2020 by nathan
Phishing Emails. What to look for to protect yourself, your team and your organization.

Phishing Emails. What to look for to protect yourself, your team and your organization.

CTC NEWS, Industry News, Tech news
Phishing has long since been a go-to for the bad guys as an easy way to get malware on or access to victim computers. The trick for the bad guy / attacker is to make the email look like something legitimate and trigger some sort of fear response. The trick for the good guy / target is to be able to spot the scam, and that's the point of this quick post. The email below is one that I just received that's trying to get me to click on a link to confirm my email address. Let's take a look. In the email above, the goal of the attacker is to get the target to click the link to 'prove your email account ownership'. The email looks real enough. It…
Read More
18May 2020 by nathan

May 2020 News & Updates

CTC NEWS, Monthly Newsletters
Executive Summary COVID-19 Response - The health and safety of our team, our clients and our business partners is of paramount importance to us at Cyber Tech Cafe.  We are still offering on-site service, however, we have a number of clients who have opted for remote support only for a time to minimize the risk of spreading the virus.  We will continue to monitor and heed the recommendations of the CDC and other subject matter experts on this topic and will post any policy changes to our website and social media pages.  Our thoughts and prayers go out to those affected by this virus and to those working so diligently to fight it.We are still seeing Windows 7 and Windows Server 2008 Servers in use.  It's important to note that…
Read More
04May 2020 by nathan

Open for Business

CTC NEWS
We're excited to announce that the Cyber Tech Cafe office is back open for business and back to normal operating schedule and operating hours.
Read More
17Apr 2020 by nathan
Beware, fake ransomware attacks are making the rounds again.

Beware, fake ransomware attacks are making the rounds again.

CTC NEWS, Industry News, Tech news
Don't get me wrong, there are still tons of legitimate ransomware attacks circulating about but the fake ones seem to ebb and flow as well. Below is an email that we received this morning. The domain is one that's legitimately ours but a) it's unused and b) there's no database there. So, it's a complete farce but it's an excellent opportunity to highlight some key things to watch out for to protect yourself. If you get a similar email (these tend to be pretty boilerplate), know that it's likely false. Another popular pretext is that some random attacker has caught you in 'compromising positions' or watching 'illicit material'. The email is regarding an unused domain.Since the domain name is unused, there's no database there for the attackers to have download.The…
Read More
16Apr 2020 by nathan
Official reopen date is 4 May 2020 (Star Wars Day)!

Official reopen date is 4 May 2020 (Star Wars Day)!

CTC NEWS
It's been a long few weeks and we've still got a little more than a week to go but we're excited to announce that we will be reopening the shop and returning to normal operations on 4 May 2020, Star Wars Day, at 9:00am ET. Until then, we will continue remote operations and doing drop offs and pickups on an appointment basis.
Read More
15Apr 2020 by nathan

April 2020 News & Updates

CTC NEWS, Monthly Newsletters, Tech news, Uncategorized
Executive Summary COVID-19 Response - The health and safety of our team, our clients and our business partners is of paramount importance to us at Cyber Tech Cafe.  We are still offering on-site service, however, we have a number of clients who have opted for remote support only for a time to minimize the risk of spreading the virus.  We will continue to monitor and heed the recommendations of the CDC and other subject matter experts on this topic and will post any policy changes to our website and social media pages.  Our thoughts and prayers go out to those affected by this virus and to those working so diligently to fight it.We are still seeing Windows 7 and Windows Server 2008 Servers in use.  It's important to note that…
Read More
08Apr 2020 by nathan

Apparent phishing campaign spreading Kryptik trojan

CTC NEWS, Industry News, Monthly Newsletters, Tech news
We are seeing a surge in phishing attacks attempting to spread the Kryptik trojan. Currently, both Fortinet and ESET are successfully identifying and blocking the trojan but the phishing campaign seems to be widespread (we're seeing it in clients nationwide) and indiscriminate (we're seeing it in finance, manufacturing, medical and others). Attackers appear to be trying to leverage the fact that many people are working from home on less protected networks than they normally are. Additional information on Kryptik can be found below.
Read More