Adobe has released an out-of-band update to address a critical vulnerability in Adobe Acrobat and Adobe Reader products. This vulnerability affects both Windows and Mac platforms and could allow an attacker remote access to vulnerable systems. Users are encouraged to review their systems and apply the necessary patches. If you are a Cyber Tech Cafe MyIT client, please note that this update has already been applied in your environment. If you would like more information about our MyIT managed services options for your organizations, let us know. Additional information can be found at the US CERT and Adobe websites.
Criminals continue to evolve and find new ways to take advantage of unsuspecting targets. One method that seems to be gaining popularity is for these criminals to simply send an email to their target claiming that they're already compromised and then demand a ransom in exchange for not doing more (emailing compromising photos to contacts, etc.). From the criminals perspective, it's much easier (no need to actually 'hack' their target, no need to develop ransomware, etc.) and much safer (other than the email, there's no real trail back to the criminal). From the targets perspective though, as long as they can get past the panic and 'fight or flight' stage, it's much easier to avoid. Below is a screenshot of an email that we received in a honeypot account as…
All of us here at Cyber Tech Cafe would like to wish you a Happy New Year! We will be closed Tuesday, 1 January 2019 to celebrate with friends and family. We will reopen to normal business hours on Wednesday, 2 January 2019. All non emergency issues will be handled Wednesday morning. In case of an emergency we will have an on-call technician. We ask if it is an emergency that you put 'emergency' in the subject line of the email. Thank you for making 2018 a great year and to having an amazing 2019. From all of us here at Cyber Tech Cafe, we wish you and yours a Happy New Year. Nathan and Kristy Underwood
Microsoft has released an update for a zero day vulnerability in Internet Explorer that can grant an attacker full access to a victim computer simply by having the target visit a malicious website. The bug ( CVE-2018-8653) was reported by Google. Cyber Tech Cafe MyIT customers are already patched against the vulnerability. Additionally, signatures for the attack have already been released by ESET and Fortinet as an added layer of protection. Additional Resources Microsoft TechNet - https://blogs.technet.microsoft.com/msrc/2018/12/19/december-2018-security-update-release-2/ESET - https://www.welivesecurity.com/2018/12/20/microsoft-emergency-patch-internet-explorer-zero-day/ThreatPost - https://threatpost.com/microsoft-ie-zero-day-gets-emergency-patch/140185/ https://threatpost.com/microsoft-ie-zero-day-gets-emergency-patch/140185/ Brian Krebs - https://krebsonsecurity.com/2018/12/microsoft-issues-emergency-fix-for-ie-zero-day/
It is Christmas time already, and Cyber Tech Cafe would like to wish you a very Merry Christmas. We will be closed Monday, 24 December and Tuesday, 25 December to enjoy much needed time with our friends and family. We will reopen on Wednesday, 26 December with our normal business hours. We will be taking care of all non-emergency support requests at the open of Wednesday. If you need emergency support while we are closed we will have on call technician that can assist you. Please include the word 'emergency' in the subject line of any email request. From all of us at Cyber Tech Cafe, we wish you and yours a Merry Christmas. Nathan and Kristy Underwood
Cyber Tech Cafe would like to wish everyone a Happy Thanksgiving! We will be closed on Thursday, 22 November 2018 and Friday, 23 November 2018 to celebrate the Thanksgiving holiday with family and friends. Any non-emergency support requests will be responded to on a first come, first served basis on Monday, 26 November 2018. If you need emergency technical support Thursday thru Sunday, our emergency on-call technicians will be available. You can page the emergency on-call technician by including the word 'emergency' in the subject of your email request. Please note the holiday rate will apply. From all of us here at Cyber Tech Cafe, we wish you and yours a Happy Thanksgiving! Nathan and Kristy Underwood
It is hard to believe that Thanksgiving is already next week. With that being said it is only fitting that we post our holiday schedule. On the days we are closed we will have on-call personnel available in the event of emergencies, and we will also post reminders of the schedule as the holidays get closer. Cyber Tech Cafe would like to wish you a blessed holiday season and thank you for your business! Thanksgiving Closed Thursday, 22 November and Friday, 23 November. Returning to normal business hours on Monday, 26 November. Christmas Closed Monday, 24 December and Tuesday, 25 December. Returning to normal business hours on Wednesday, 26 December. New Year Closed Tuesday, 1 January. Returning to normal business hours on Wednesday, 2 January.
Sunday, 11 November 2018 is Veterans Day and Cyber Tech Cafe would like to extend our utmost gratitude to all of the men and women that have sacrificed so much for our great nation. We encourage everyone to extend their thanks to all of our Veterans and their families for all the sacrifices they have made to keep our country safe. Again, we thank each and every one of you for everything you have done, and Happy Veterans Day!
Updates Executive Summary - March was a relatively dull week in the computer world. Microsoft and Adobe churned out their monthly fixes as usual but nothing particularly noteworthy. As usual, we here at Cyber Tech Cafe urge all our customers to review the updates addressed below as well as any other updates you may have for your applications and apply them as needed. As always, current MyIT customers will have their updates installed automatically by us. More information on how to become a MyIT customer can be found at the end of this newsletter or as always we are just a call or email away. Enjoy! Microsoft - Microsoft patched approximately 75 vulnerabilities this month (though many of them share the same KB number and will present to the user as…