Tag Archives: cyber security

Romance Scams are a Thing

With Valentine’s Day around the corner, it’s best to be reminded to stay vigilant with e-mail scams. Because romance scams are a massive moneymaker for hackers.

According to the Federal Bureau of Investigations, or FBI, “In 2020, complaints filed with the FBI’s Internet Crime Complaint Center (IC3), showed that victims lost more than $281 million to romance scams. South Carolinians reported losses of more than $4.4 million that year. These schemes affect victims from all demographics, but elderly women are often targeted most.”

Outside of a dating website, rapid efforts to contact via email or messaging services is one of the warning signs of a hacker. These attacks often request money, or personal information in exchange for forms of affection or sympathy.

It’s suggested to report a romance scam to the IC3. if you suspect you have been a victim. You should notify the website or application from which the contact originated. If you come across any fraudulent or questionable transactions, you should also inform your banking institution.

For help with any computer issues, call us at 1-800-620-5285.  Karls Technology is a nationwide computer service company with offices in many major cities. This blog post was brought to you by our staff at the Pasadena Computer Repair Service. If you need computer repair in Pasadena, TX please call or text the local office at (281) 860-2550.

FBI Cautions About LockBit 2.0

Since its inception as a ransomware-as-a-service in September 2019, the LockBit ransomware organization has been particularly active (RaaS). After malware perpetrators were prohibited from participating on cybercrime sites, LockBit revealed the LockBit 2.0 RaaS on their data leak site two years later, in June 2021.

In a notice published on Friday, the Federal Bureau of Investigation (FBI) disclosed technical data and signs of breach linked with LockBit ransomware assaults. They stated that upon infiltrating a targeted system, LockBit 2.0 attackers increase access using publicly available tools like Mimikatz.

How To Remedy

On the FBI website, they state to lessen the danger of LockBit 2.0 ransomware penetration, the FBI advises users to utilize these preventive measures:

  • Require all accounts with password logins (e.g., service account, admin accounts, and domain admin accounts) to have strong, unique passwords. Passwords should not be reused across multiple accounts or stored on the system where an adversary may have access. Note: Devices with local administrative accounts should implement a password policy that requires strong, unique passwords for each individual administrative account.
  •  Require multi-factor authentication for all services to the extent possible, particularly for webmail, virtual private networks, and accounts that access critical systems.
  •  Keep all operating systems and software up to date. Prioritize patching knownexploited vulnerabilities. Timely patching is one of the most efficient and cost-effectivesteps an organization can take to minimize its exposure to cybersecurity threats.
  •  Remove unnecessary access to administrative shares, especially ADMIN$ and C$. IfADMIN$ and C$ are deemed operationally necessary, restrict privileges to only the necessary service or user accounts and perform continuous monitoring for anomalous activity.
  •  Use a host-based firewall to only allow connections to administrative shares via server message block (SMB) from a limited set of administrator machines.
  •  Enable protected files in the Windows Operating System to prevent unauthorized changes to critical files.Adversaries use system and network discovery techniques for network and system visibility and mapping. To limit an adversary from learning the organization’s enterprise environment, limit common system and network discovery techniques by taking the following actions:
  •  Segment networks to prevent the spread of ransomware. Network segmentation can help prevent the spread of ransomware by controlling traffic flows between—and access to—various subnetworks and by restricting adversary lateral movement.
  •  Identify, detect, and investigate abnormal activity and potential traversal of the indicated ransomware with a networking monitoring tool. To aid in detecting the ransomware, implement a tool that logs and reports all network traffic, including lateral movement activity on a network. Endpoint detection and response (EDR) tools are particularly useful for detecting lateral connections as they have insight into common and uncommon network connections for each host.
  •  Implement time-based access for accounts set at the admin level and higher. For example, the Just-in-Time (JIT) access method provisions privileged access when needed and can support enforcement of the principle of least privilege (as well as the Zero Trust model). This is a process where a network-wide policy is set in place to automatically disable admin accounts at the AD level when the account is not in direct need. When the account is needed, individual users submit their requests through an automated process that enables access to a system, but only for a set timeframe to support task completion.
  •  Disable command-line and scripting activities and permissions. Privilege escalation and lateral movement often depend on software utilities that run from the command line. If threat actors are not able to run these tools, they will have difficulty escalating privileges and/or moving laterally.
  •  Maintain offline backups of data, and regularly maintain backup and restoration. This practice will ensure the organization will not be severely interrupted, have irretrievable data.
  •  Ensure all backup data is encrypted, immutable (i.e., cannot be altered or deleted) and covers the entire organization’s data infrastructure.

If you’re needing help with computer problems, call us at 1-800-620-5285.  Karls Technology is a nationwide computer service company with offices in many major cities. This blog post was brought to you by our staff at the Boulder Computer Repair Service. If you need computer repair in Boulder, CO please call or text the local office at (720) 441-6460.

Microsoft Defender Preview

Microsoft has been working diligently to keep their operating systems up to date on the latest cyber attack defenses.

“Security, simplified. Microsoft Defender is your personal defense against digital threats. Secure your devices across operating systems including Windows, Apple, and Android.”

Source: Microsoft

With fresh aesthetics and a streamlined design, both Windows 10 and Windows 11 are supported with the minimal requirements.

You can check it out in the Microsoft Store here and download it.

If you have any questions regarding security, call us at 1-800-620-5285.  Karls Technology is a nationwide computer service company with offices in many major cities. This blog post was brought to you by our staff at Mansfield Computer Repair Service. If you need computer repair in Mansfield, TX, please call our local office at (817) 756-6008.

The Importance of Firewalls

While antivirus software is an important part of efficient protection against viruses and harmful information on the internet, it is not adequate in and of itself! Antivirus software use built-in heuristic algorithms to identify threats and quarantine them. However, no operating system can ever be entirely safe from a cyber assault.

Firewalls safeguard a network’s perimeter by monitoring and filtering all network traffic, both desirable and unwanted. They establish barriers to deter prospective attackers and harmful applications, protecting the network from illegal access, after undesirable traffic has been discovered.

Users may also customize their firewall’s security settings to meet their personal or business privacy demands. Excessively restrictive settings may prevent a person from accessing the internet completely.

A firewall shouldn’t be your only consideration for securing your home network. It’s important to make sure all of your internet-enabled devices have the latest operating system, web browsers, and security software. You also should secure your wireless router. This might include changing the name of your router from the default ID and password it came with from the manufacturer, reviewing your security options, and setting up a guest network for visitors to your home.

Source: Norton

Without a firewall, potential attackers can simply identify your computer as a susceptible target, enter your network covertly, and undermine the system’s security.

For help troubleshooting PC issues, call us at 1-800-620-5285.  Karls Technology is a nationwide computer service company with offices in many major cities. This blog post was brought to you from our staff at the Aurora Computer Repair Service. If you need computer repair in Aurora, CO, please call the local office at (720) 441-6460.