February 2021 News & Updates

CTC NEWS, Industry News, Monthly Newsletters
Executive Summary A remote attacker was able to breach a water treatment facility in an attempt to poison the water supply. The facility was running Windows 7, using shared passwords, Teamviewer for remote access and had no firewall in place. Thankfully, the attack was thwarted. Additional information is available here and here.We are excited to announce that we will be looking into more / different / better ways to interact with you over the coming weeks and months. I don't have a lot of details available to share at the moment but announcements will be made on our website and mailing list as we're able to share more.Quite a few of you noticed some changes that we're making to the MyIT systems including the ability to push critical updates (like…
Read More

Ubiquiti Breach – Change your password, enable 2FA

Industry News, Tech news
Ubiquiti has been notifying it's customers today (Monday, 11 January 2021) that it had "...became aware of unauthorized access to its systems hosted by a third-party cloud provider...". The notification email was relatively vague (screenshot below) but he point of the email was very clear, change your password and enable 2FA if you haven't already. According to the notification, the data that any potential attackers were able to get was minimal (name, email address, and the one-way encrypted password to your account and address and phone number if you provided it) but, to a skilled attacker, certainly not low value. If you have any Ubiquiti gear deployed, we would recommend taking this opportunity to change the password and enable 2FA. Additional information TechCrunch ArticleKrebs on Secutity
Read More

The Equifax Breach: Just How Bad Is It?

Industry News
For those of you that have just emerged from under your rock to read this article, I appreciate it, but if you haven't heard, a cyber security breach on one of the 3 main credit bureaus, Equifax, effecting over 143 Million Americans was announced this past week and some are touting this as one of the worst breaches in history. While we wait for the smoke to settle on this one, I wanted to put together a small collection of some of the key points I have heard being discussed and why they make this one of the more serious breaches in history. Severity of leaked data - The data reported to have been stolen includes the full names, address, birth date, social security number, and in some cases the…
Read More