20Jul 2022 by nathan

Widespread brute force / dictionary attacks overnight

Industry News, Tech news
We received notifications from literally every Internet facing firewall that we have deployed as well as a number of honeypot devices for failed login attempts from an IP Address 45.134.144.200. This IP Address is in the same network (45.134.144.0/24) that we've seen similar traffic from in the past and we have no indication of any legitimate traffic to or from that network in the past 12 months. If you manage one or more networks with Internet connectivity, it may be worth looking into this network range to see if there has been any traffic (or successful logins). For our MyIT clients, we had already blocked a few specific IP Addresses based on similar traffic in the past but are now updating all of our managed firewalls to block the entire…
Read More
22Jul 2020 by nathan
Adobe issues emergency update to multiple products

Adobe issues emergency update to multiple products

Industry News, Tech news
Adobe has released emergency updates to address critical vulnerabilities in multiple products including Photoshop, Bridge and Prelude. The vulnerabilities could be used by an attacker to gain access to unpatched systems. Additional Info https://threatpost.com/critical-adobe-photoshop-flaws-patched-in-emergency-update/157581/
Read More
30Aug 2019 by nathan

New Critical Vulnerability in Google Chrome Browser (Patch Now)

Industry News
A new zero day vulnerability has been discovered in the Google Chrome browser that could allow arbitrary code execution on vulnerable systems. Details are scarce at this time (details below) but the short story is that users running Google Chrome versions prior to 76.0.3809.132 should patch now. Cyber Tech Cafe MyIT clients should already have the updates but are encouraged to restart Google Chrome (or reboot) to ensure that the updates are applied. Additional information on our MyIT program is available here. The issue is being tracked under CVE-2019-5869Additional details are available here
Read More
21Mar 2019 by nathan

March 2019 Updates

CTC NEWS, Industry News, Monthly Newsletters
Executive Summary The Cyber Tech Cafe Managed Services (MyIT) continue to be an overwhelming success.  It's exciting to see organizations taking a proactive approach when it comes to their IT Infrastructure and it's incredibly rewarding to hear those organizations comment about how "things just seem to work".  A new version of our website / blogging software brings a new format to these posts, all the same content you know and love with a fresh coat of paint to hopefully make consumption more enjoyable and pleasing. As always, we welcome comments, feedback, concerns, etc. News DC770 - Cyber Tech Cafe is a proud supporter and co-sponsor of the DC770 DEF CON group that meets monthly at 7:00pm ET at Jefferson's restaurant in Cartersville on the first Tuesday of each month. More information is available…
Read More
27Jul 2018 by nathan

A $100 box that can help you see (and control) what you’re sharing on the Internet

Industry News
We're connecting voice activated tablets, nanny-cams, security cameras, home assistants and even home security systems to our home Internet connection and inviting anyone with access to those devices into our homes with them. In an ideal world, the number of folks coming in would be very small and our trusted devices would be, well, trustworthy. Unfortunately, that's not always the case. Making matters worse, we're creating very soft targets for even low skilled attackers. At home, our defenses are down, the gear is typically ad-hoc and there's no logging or oversight on what's going on on the network. New devices can be added at will (yours or, when the neighbors kid guesses your wifi password, theirs) and devices on your network have the freedom to do pretty much anything that…
Read More
09Jan 2018 by nathan

January 2018 News and Updates

Monthly Newsletters
Updates News Spectre and Meltdown vulnerabilities - There's a LOT of buzz about the two of these.  I won't be going into any detail in this newsletter about either but we've been pushing information out to social media as we get it and will likely be posting an article here later. Mailing List - The response to (finally) getting the mailing list back online has been overwhelmingly positive (and appreciated).  We have a sign-up form on the right-column of our website if you'd like to sign up. MyIT - The newest version of the Network Ninja (NNv2.1) is finally operational and has been deployed to a number of MyIT clients already with stellar results.  We finished with the beta group last week and will be reaching out to all of…
Read More
12Sep 2017 by nathan

The Equifax Breach: Just How Bad Is It?

Industry News
For those of you that have just emerged from under your rock to read this article, I appreciate it, but if you haven't heard, a cyber security breach on one of the 3 main credit bureaus, Equifax, effecting over 143 Million Americans was announced this past week and some are touting this as one of the worst breaches in history. While we wait for the smoke to settle on this one, I wanted to put together a small collection of some of the key points I have heard being discussed and why they make this one of the more serious breaches in history. Severity of leaked data - The data reported to have been stolen includes the full names, address, birth date, social security number, and in some cases the…
Read More