February 2024 News and Updates

CTC NEWS, Industry News, Tech news
We're Moving Cyber Tech Cafe will be moving our office to 319 North Tennessee Street, Cartersville GA on 15 March 2024. Our mailing address will remain the same. Urgent Update from Fortinet - Fortinet disclosed on 8 February 2024 a significant vulnerability in basically their entire firewall product line. The vulnerability can allow an attacker with access to the VPN interface on the affected device the ability to run code on the device. According to reports, the vulnerability is being actively exploited in the wild. If you are a MyIT Client, you should have received an email on Tuesday with details on the vulnerability and, in most cases, your firewall has already been updated. If you are not a MyIT Client, we would recommend installing the update immediately if at…
Read More

January 2024 News and Updates

CTC NEWS, Industry News, Monthly Newsletters
Election Year Antics - In the US, this year is an election year and it's safe to assume that criminals will leverage election related topics in their pretexting for attacks (phishing, vishing, smishing, all of the ishings), so be sure to consider that when planning your security awareness training. Updates Microsoft has hit the ground running with the January 2024 Patch Tuesday, releasing updates to patch 49 flaws including 12 remote code execution and two, one is a Windows Kerberos Security Feature Bypass and the other a Hyper-V RCE, are rated critical. Microsoft releases regular updates the second Tuesday of each month, often referred to as ‘Patch Tuesday’. These updates are categorized as Low, Moderate, Important or Critical. Details on the categories are available here. The updates can include any…
Read More

August 2023 News & Updates

CTC NEWS, Industry News, Monthly Newsletters, Tech news
We will be closed on Monday, 4 September 2023 to enjoy the Labor Day holiday with friends, family and loved ones and will reopen during normal business hours on Tuesday, 5 September 2023.  Emergency support will be available for our commercial and MyIT clients.  If you need emergency support on Monday, simply include the word 'emergency' in the subject of your email to help@ctc.co or by noting it in your voicemail at 770.386.8900. Updates to Policies and Procedures - We've made some slight changes to our Policies and Procedures and posted them here. Upcoming End of Life for Windows Server 2012 - In October 2023, Microsoft will be ending support for it's Windows Server 2012 operating system, meaning anyone currently using Windows Server 2012 will need to make plans to…
Read More

July 2023 News & Updates

CTC NEWS, Industry News, Monthly Newsletters, Tech news
Updates to Policies and Procedures - We've made some slight changes to our Policies and Procedures and posted them here. Upcoming End of Life for Windows Server 2012 - In October 2023, Microsoft will be ending support for it's Windows Server 2012 operating system, meaning anyone currently using Windows Server 2012 will need to make plans to replace it before October. Changes to the MyIT Program - We are in the process of making some changes to the MyIT Program that we're pretty excited about. The biggest and most visible change for most MyIT Customers will likely be related to communications. There will be some changes to the monthly report as well as some reminders about systems that may need extra attention. More on this to come but we're excited…
Read More

June 2023 News & Updates

CTC NEWS, Industry News, Monthly Newsletters, Tech news
Updates to Policies and Procedures - We've made some slight changes to our Policies and Procedures and posted them here. Upcoming End of Life for Windows Server 2012 - In October 2023, Microsoft will be ending support for it's Windows Server 2012 operating system, meaning anyone currently using Windows Server 2012 will need to make plans to replace it before October. Changes to the MyIT Program - We are in the process of making some changes to the MyIT Program that we're pretty excited about. The biggest and most visible change for most MyIT Customers will likely be related to communications. There will be some changes to the monthly report as well as some reminders about systems that may need extra attention. More on this to come but we're excited…
Read More

May 2023 News & Updates

CTC NEWS, Industry News, Monthly Newsletters, Tech news
We're currently interviewing for a Tier 1 Support Tech to join our team. If you'd like more information on joining our team, use our online application available here. Updates to Policies and Procedures - We've made some slight changes to our Policies and Procedures and posted them here. Upcoming End of Life for Windows Server 2012 - In October 2023, Microsoft will be ending support for it's Windows Server 2012 operating system, meaning anyone currently using Windows Server 2012 will need to make plans to replace it before October. Changes to the MyIT Program - We are in the process of making some changes to the MyIT Program that we're pretty excited about. The biggest and most visible change for most MyIT Customers will likely be related to communications. There…
Read More

January 2023 News & Updates

CTC NEWS, Industry News, Monthly Newsletters, Tech news
We're currently interviewing for a Tier 1 and Tier 2 Support Tech to join our team. If you'd like more information on joining our team, use our online application available here. Updates to Policies and Procedures - We've made some slight changes to our Policies and Procedures and posted them here. Upcoming End of Life for Windows Server 2012 - In October 2023, Microsoft will be ending support for it's Windows Server 2012 operating system, meaning anyone currently using Windows Server 2012 will need to make plans to replace it before October. Changes to the MyIT Program - We are in the process of making some changes to the MyIT Program that we're pretty excited about. The biggest and most visible change for most MyIT Customers will likely be related…
Read More

November 2022 News & Updates

CTC NEWS, Industry News, Monthly Newsletters, Tech news
Six Zero Day vulnerabilities patched by Microsoft this month, all of which are being actively exploited by threat actors. All MyIT Customers should be updated and protected against all of these vulnerabilities but it is critical to reboot if prompted by the update management tool. Updates to Policies and Procedures - We will be posting our updated policies and procedures to our current Policies and Procedures page in January. Upcoming End of Life for Windows Server 2012 - In October 2023, Microsoft will be ending support for it's Windows Server 2012 operating system, meaning anyone currently using Windows Server 2012 will need to make plans to replace it before October. 2022 Holiday Schedule Thanksgiving - Closing Thursday, 24 November and re-opening for regular business on Monday, 28 November. Christmas &…
Read More

October 2022 News & Updates

CTC NEWS, Industry News, Monthly Newsletters, Tech news
Accepting Applications - We are looking to add a new member to the team and are accepting applications for a Tier 2 Support Position. If you know someone that's got a passion for good customer service, a solid technical pedigree and is looking to work with some of the greatest customers on the planet, definitely send them to our online application here.Multiple zero day vulnerabilities have been addressed by Microsoft this month including (at least) two in Microsoft Exchange that have been actively exploited. Microsoft released updates to fix 84 security vulnerabilities this month including 20 remote code execution vulnerabilities and 13 (including some of the RCE) that it has rated as Critical. Worth noting is that this does not include the 12 patched on 3 October and fixes for…
Read More

Continued widespread dictionary / brute force attacks

CTC NEWS, Industry News
Over the past two weeks, we have seen a significant spike in the number of brute force attacks against SSL VPN endpoints and VPN web portals. Initially, the traffic was coming from several hundred IP Addresses but we were pretty quickly able to distill it down to about 47 netblocks from two geographic areas (Russian Federation and China). All of the login attempts were failing and in the initial set of login attempts the usernames were varied and included admin, administrator, vpnuser, sslvpn, backup, user, sales and others. This most recent set of attempts though were for admin and administrator and, after distilling the data down we saw a new pattern emerge. A very small number of the attempts are now coming from domestic IP Addresses and, specifically, some of…
Read More