In Other News: The First Half of 2019 Sees Precipitous Rise in Data Breaches

A recent report by Risk Based Security confirmed what many people already knew: data breaches are increasing in frequency and scope. 

In the first half of 2019, there were 3,816 data breaches, a 54% increase from the same period in 2018. In total, more than 4 billion records were stolen. While the majority of these records, 3.2 billion were stolen as part of eight high-profile breaches, more than one billion records were taken in lesser known data heists from smaller organizations. 

The healthcare sector led all industries with 224 data breaches while retail and finance accounted for 199 and 183 breaches respectively. Meanwhile government and education have collectively endured nearly 300 data breaches.

According to the report, email addresses and passwords were the most sought after data, occurring in more than 70% of data heists. In contrast, only 11% of data breaches contained financial information like credit card numbers.

Email addresses and passwords can be used to promulgate additional cybercrimes, and companies need to train their employees to protect this information as phishing scams and other attacks threaten the integrity of these credentials and business’ entire cyber infrastructure. For starters, implementing comprehensive awareness training can help strengthen the security of your company’s email addresses and passwords.

https://www.scmagazine.com/home/security-news/data-breach/first-half-2019-sees-4000-data-breaches-exposing-4b-records/

Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com

ACSC Warns Australian Small Businesses About BlueKeep Vulnerability

According to a warning by the Australian Cyber Security Centre, thousands of Australian SMBs are at risk of being compromised by the BlueKeep vulnerability that can wreak havoc on outdated Windows operating systems. 

The warning comes on the heels of a disclosure by a security researcher who revealed a publicly available Remote Desktop Protocol that can scan for unpatched systems. 

The ACSC estimates that 50,000 Australian devices are vulnerable to this malady, which is easily defensible using a patch provided in a software update. 

Unfortunately, for companies that don’t take advantage of the update, their systems can be easily infiltrated by bad actors who steal and destroy company data.

Software updates are critical for ensuring that your business is protected in an ever-evolving threat landscape. Moreover, cybersecurity specialists (Like us!) can provide a comprehensive view of your cybersecurity readiness posture, ensuring that all vulnerabilities are accounted for.
https://www.cyber.gov.au/news/update-acsc-confirms-potential-exploitation-bluekeep-vulnerability


Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com

What are the top priority for hackers?

Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com

In Other News: Canadian Government Launches Cybersecurity Certification Program for SMBs

A recent survey by StaySafeOnline.org found that 71% of data breaches occur at small businesses, a prolific problem that the Canadian government is trying to solve. Consequently, they’re instituting an incentive program for SMBs prioritizing cybersecurity initiatives. 

The new initiative, CyberSecure Canada, allows organizations to prove that they meet specific security criteria, then awards the organization with a certificate and logo that they can include on their website and promotional material. 

To become CyberSecure certified, SMBs must demonstrate compliance with 13 security controls that collectively create a safer internet experience for businesses and their customers. The program strives to encourage Canadian SMBs to spend time and resources on cybersecurity initiatives. Not only will this help shore up their own long-term viability, but it also supports customer data security, a top priority in the digital age.

Interestingly, the survey found that many companies aren’t equipped to defend against these threats. The research found that 64% of small businesses don’t have a security team, and only 1/3 provided cybersecurity training to their employees.

Notably, SMBs don’t have to tackle this priority alone. Partnering with qualified cybersecurity professionals can help augment your cybersecurity posture and transforming weaknesses into strengths.

https://www.itworldcanada.com/article/federal-government-launches-cybersecurity-certification-program-for-smbs/420823

Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com

New Scam call targeting your Apple ID - DOnt fall for it

New apple scam: Read this pass it on and remember

Get a call stating from apple warning you Apple ID it compromised....they offer to connect to apple support...hang up and do not give any info...

It is a scam...

Just like Microsoft will not directly notify you of a breach.. neither will Apple..

I was at the DR this morning and received the call, unfortunately, no way to record it.. I had a client that fell for the Microsoft version and they took him for more than a 1000 dollars.

Please share this message, it may save someone you know..

Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com

GermanWiper Ransomware Targets SMBs

GermanWiper Ransomware Targets SMBs 

German SMBs are the target of a new ransomware that’s wreaking havoc on company data. 
The ransomware is delivered by a phishing campaign purporting to be from a potential job applicant, and the email contains an attachment that poses as a PDF resume from the sender. 

When users click on the attachment, it unleashes a ransomware attack that demands payment in Bitcoin to decrypt the files. 

Unfortunately, even if businesses pay the ransom, their files are unrecoverable. This particular ransomware, dubbed GermanWiper, erases the encrypted data, making it permanently inaccessible to users. 

GermanWiper is a reminder of the precarious nature of ransomware attacks that are increasingly targeting businesses and government organizations to extract large payments. If companies are unprepared for a ransomware attack, there is no guarantee that they will ever recover their information by paying a ransom, and other restorative processes can be even more costly than the ransomware demands.

Therefore, defensive initiatives are business's best bet for avoiding a ransomware attack, and, with security specialists (Like us!) ready to help out, now is the right time to ensure that your company is ready to defend against today’s always-shifting threat landscape.
https://www.bleepingcomputer.com/news/security/germanwiper-ransomware-erases-data-still-asks-for-ransom/

Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com

What We’re Listening to:

Know Tech Talks

Security Now

Defensive Security Podcast Small Business, Big Marketing – Australia’s #1 Marketing Show!IT Provider Network – The Podcast for Growing IT Service
TubbTalk – The Podcast for IT Consultants
Risky Business
CHANNELe2e

Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com