Blog

By Eric Corcoran, Posted in Technology Week in Review

Monday 5/6 Hackers steal card data from 201 online campus stores from Canada and the US A group of hackers has planted malicious JavaScript code that steals payment card details inside the e-commerce system used by colleges and universities in Canada and the US. The malicious code was found on 201 online stores that were catering to 176 colleges and universities in the US and 21 in Canada. https://zd.net/2GZBMl8 Shellbot malware evolves to spread and shuts down other cryptominers The malware has new ca... read more.

• May 10, 2019

By Brian Wagner, Posted in Infrastructure, Virtualization

I remember when Windows NT 4.0 Terminal Server edition was released, and the integrated capability of having more than one user access a server at a time was born. Sure, Citrix had created this already with WinFrame on Windows NT 3.51, but Windows NT 4.0 Terminal Server edition brought the functionality to the native operating system. We take this for granted now, with every administrator of a Windows server environment heavily relying on RDP for their day-to-day jobs. But it was an exciting time. But the... read more.

• May 08, 2019

By Brian Wagner, Posted in Infrastructure, Virtualization

To follow up on my previous blog about the Cloud First world we live in, I thought it would be helpful to highlight an area where the cloud offers a great AND low cost solution for Citrix disaster recovery. The costs of having workloads in the cloud are typically the largest obstacle for our customers to start the journey to the cloud. Citrix teamed up with Microsoft to deliver an option that reduces cost for production workloads and almost eliminates cost for disaster recovery. How does it work? The cost... read more.

• May 08, 2019

By Eric Corcoran, Posted in Technology Week in Review

Monday 4/29 Researchers develop new technique to identify malware in embedded systems At issue are so-called micro-architectural attacks. This form of malware makes use of a system’s architectural design, effectively hijacking the hardware in a way that gives outside users control of the system and access to its data.Spectre and Meltdown are high-profile examples of micro-architectural malware. http://bit.ly/2GQg3Nr Chrome on Android: Phishing attackers can now trick you with fake address bar Nor... read more.

• May 03, 2019

By Nancy Rand, Posted in Security

The NIST Privacy Framework discussion draft has been published. This document incorporates the outlines and stakeholder input received to date. https://www.nist.gov/sites/default/files/documents/2019/04/30/nist-privacy-framework-discussion-draft.pdf  The Drafting the NIST Privacy Framework: Workshop #2 will be held on May 13-14, 2019, at the Georgia Tech Scheller College of Business in Atlanta, Georgia. Feedback is also welcome via email at privacyframework@nist.gov (which will not be posted online).... read more.

• May 02, 2019

By Eric Corcoran, Posted in Technology Week in Review

Monday 4/22 Popup enlarges at the last second so users click on ads instead of ‘Close’ button When the user moves his mouse to close the popup, CSS code from that page will expand the popup and move the ad in the cursor's path, so any click on the close button will actually land on the ad instead. https://zd.net/2GrhmkN How to prevent rootkit-enabled malware Scranos from harming your organization Scranos cloaks itself as cracked software or apps that pose as legitimate programs, such as ebo... read more.

• April 26, 2019

By Eric Corcoran, Posted in Technology Week in Review

Monday 4/15 CyberArk Named Top Security Solution for Government Agencies CyberArk is recognized as the premier cybersecurity solution for government agencies and organizations to protect against the exploitation of privileged accounts, credentials and secrets across every environment – including on the endpoint and across on-premises, hybrid cloud and DevOps environments. http://bit.ly/2UXTu1j ‘Exodus’ spyware posed as a legit iOS app Once installed, Exodus could access photos, videos... read more.

• April 19, 2019

By Eric Corcoran, Posted in Technology Week in Review

Monday 4/8 This prolific phishing gang is back with new tactics to target executives A prolific cyber-criminal phishing operation which built a list of 50,000 executives, CFOs and other top financial personnel has expanded its operations with a new database of additional targets. The Business Email Compromise (BEC) group dubbed London Blue distributes phishing emails in an effort to trick organisations into transferring large sums of money into their accounts, often while posing as executives and oth... read more.

• April 12, 2019

By Eric Corcoran, Posted in Technology Week in Review

Monday 4/1 Malware may have stolen 2 million US restaurant diners’ credit card details That malware could have stolen card numbers, expiration dates and cardholder names from people who used them at Buca di Beppo, Earl of Sandwich, Planet Hollywood, Chicken Guy, Mixology and Tequila Taqueria between May 23, 2018, and March 18, 2019. https://cnet.co/2TNsjS3 Toyota announces second security breach in the last five weeks Toyota said the servers that hackers accessed stored sales information on up to... read more.

• April 05, 2019

By Eric Corcoran, Posted in Technology Week in Review

Monday 3/25 FEMA ‘major privacy incident’ reveals data from 2.5 million disaster survivors The data mishap, discovered recently and the subject of a report by the Department of Homeland Security’s Office of Inspector General, occurred when the agency shared sensitive, personally identifiable information of disaster survivors who used FEMA’S Transitional Sheltering Assistance program, according to officials at FEMA. Those affected included the victims of California wildfires in 2017... read more.

• March 29, 2019