Cybersecurity

This year has been a busy one for cybercriminals, with some massive data breaches making headlines and costing companies millions. From health care giants to project management platforms, no industry is immune to the risks. But what do these breaches mean for small to midsize businesses? The same vulnerabilities exist for you, and the consequences of not addressing them can be catastrophic.  Let’s recap five of the most significant breaches of 2024 so far and discuss how your business can stay protected. 1. National Public Data A couple of months ago, a hacking group claimed to have stolen 2.7 billion personal records from a background checking and public data-brokering site. The data includes sensitive information like Social Security numbers, addresses and more. Portions of the data have been released on the dark web, though experts are still evaluating its accuracy, as the combined populations of the countries listed amount to only about half a billion. However, it’s likely that many Social Security numbers have been compromised. Since this breach affects so many people, everyone now has an incentive to monitor their financial and online identities closely, and it’s imperative that they do so immediately. A practical step is freezing your credit to protect against identity theft and unfreezing it when needed for activities like applying for loans or credit cards. Find out if you were exposed here!  2. Ticketmaster  A significant data breach at Ticketmaster exposed the personal and financial information of over 560 million customers. Hackers accessed the company’s database during April and May, stealing sensitive details such as names, e-mails, phone numbers and payment information. This breach exposed serious flaws in Ticketmaster’s security, raising concerns among consumers. Many victims reported unauthorized transactions and identity theft following the incident. Additionally, this breach added to the legal troubles of Ticketmaster’s parent company, Live Nation, which was already facing a lawsuit from the US Department of Justice for anticompetitive practices. 3. Change Healthcare In February 2024, Change Healthcare was hit by a massive ransomware attack that exposed the personal information of over 145 million people. This breach, one of the largest in health care history, compromised sensitive data, including names, addresses, Social Security numbers and medical records. The incident had far-reaching effects on patients, health care providers and insurance companies, prompting many in the health care industry to reconsider their cybersecurity strategies to prevent similar attacks in the future. 4. AT&T In March, AT&T was the victim of a data breach that compromised the personal information of approximately 73 million current and former customers. This giant breach included sensitive data such as Social Security numbers, account details and passcodes. The breach was linked to data from as far back as 2019, which surfaced on the dark web in March 2024. This incident is part of a series of attacks on AT&T, following a 2023 breach that impacted 9 million users. In response, AT&T launched an investigation to contain the malware while maintaining services for current customers. The breach has also opened the company up to the possibility of multiple class action lawsuits. While you may not manage millions of customers like AT&T, your business can still fall victim to cyber-attacks. It’s crucial to protect your network by implementing robust security measures, training employees on password and phishing prevention, and maintaining an active cybersecurity strategy. 5. Dell In May, Dell experienced a security breach when a hacker known as Menelik used a brute-force attack to infiltrate one of their resellers’ client portals. This breach exposed 49 million records containing sensitive data, including customer names, e-mail addresses, payment information and account details. The incident sparked significant concerns about Dell’s cybersecurity practices, leading the company to issue a public apology and pledge to enhance its security protocols. In response to the breach, Dell has faced increased regulatory scrutiny and may encounter legal challenges as more details about the impact emerge. What Does This Mean For You Personally? We have several blogs on what to do if you’re affected by a data breach, but the most important action is to freeze your credit and check your bank account. Websites like www.haveIbeenpwnd.com can tell you if your e-mail has been exposed in a breach.  What Does This Mean For Your Business? While these breaches happened to major players, small to midsize businesses are far from off the radar. In fact, SMBs are increasingly targeted because they often lack the robust security measures that larger companies have. Cybercriminals know this, and the stakes couldn’t be higher: a single breach could cost your business thousands in downtime, lost data and damaged reputation. Protect Your Business With A FREE Security Risk Assessment If these stories have you thinking about your own vulnerabilities, that’s a good thing. The best defense is a proactive one. We’re offering a FREE Security Risk Assessment to evaluate your network for potential risks. Our experts will assess your system’s vulnerabilities, help you patch the holes and ensure your business is fortified against attacks. Don’t wait until you’re the next headline – get your FREE Security Risk Assessment today! Click here to schedule or call our office at 774-241-8600.

National Public Data confirmed in September 2024 that a hacker has compromised the personal records of millions of individuals. The information exposed includes the names, e-mail addresses, mailing addresses, phone numbers and even Social Security numbers of up to 2.9 billion people. Here’s what you need to know. What happened? National Public Data, a consumer data broker that specializes in providing criminal records, background checks and other forms of data to private investigators, consumer public record sites, human resources, staffing agencies, the government and more, was hacked. The incident is believed to have started in December 2023 when a third-party bad actor attempted to gain access. In April, a cybercriminal named “USDoD” posted the stolen data online in a popular criminal community. On August 6, the stolen dataset resurfaced, this time posted for free to several breach forums for anyone to access and download. The sensitive, personally identifiable information released included names, addresses, phone numbers, e-mail addresses and Social Security numbers for millions of people, some of whom are deceased. The data also contained previous addresses and, in some instances, alternate names. The official data breach notice that was filed in Maine indicated that 1.3 million records may have been breached; however, some lawsuits are suggesting as many as 2.9 billion records have been exposed. As the investigation continues, many cyber experts are finding that some of the data released was inaccurate, and aside from the Social Security numbers, most of it is already public and easy to find online. So why is this breach dangerous if the information can be found with a quick Google search? There are several reasons to be concerned. Having all this critical information in one place makes it easy for criminals to use the information needed to apply for credit cards and loans or open new bank accounts. The information included, such as childhood street names or the last four digits of your Social Security number, are often answers to security questions and can help hackers bypass authentication and access your private accounts. Some cyber experts are suggesting watching for a surge in phishing and smishing (phishing over SMS) attacks as well. Can you be affected even if you’ve never heard of National Public Data or purchased data from them? Yes! Just because you haven’t interacted with them doesn’t mean other organizations, businesses, landlords, etc., haven’t leveraged their resources to dig up information on you. What should you do to protect yourself? Step 1: Check to see if your data has been exposed. You can use tools like https://npd.pentester.com/ to find out if your information has been compromised. If so, it’s important to take immediate action. Step 2: Request a copy of your credit report and then freeze your credit. One of the best ways to protect your identity is to freeze your credit and set up alerts. This prevents criminals from opening up new lines of credit in your name. To do this, contact all three major credit bureaus – Equifax, TransUnion and Experian – and request a freeze. The process is free and should take you less than 10 minutes per site to complete. If there are others in your house over the age of 18, it’s a good idea to freeze their credit too. Anyone with a Social Security number is vulnerable following a breach of this size. Once you have a copy of your free credit report, review it for anything that you didn’t authorize. Don’t forget to set up alerts and review your credit regularly. Step 3: Watch out for phishing scams. As mentioned, many cybercriminals will try to leverage this information to scam you through phone calls, text messages, e-mails and even social media sites. Be cautious! A data breach is devastating for everyone involved – the business hacked and the customers or employees whose data is leaked. As a business owner, it is your responsibility to make sure you are taking the highest precautions to protect your business and its data. If you want to do a full assessment and find out if any of your information has been leaked or if your network is vulnerable to a breach, we’ll do a FREE Security Risk Assessment. This deep dive into your network will provide you with a blueprint for security steps to take. To book yours, call our office at 774-241-8600 or click here.

Phishing attacks are the most common cybercrime attack for one reason…they work. Every day, over 3.4 billion spam e-mails reach unsuspecting users’ inboxes. Phishing e-mails have held the top spot as the most frequent form of attack for years because they’re easy to implement, easy to scale and continue to fool people. AI tools like ChatGPT are now making it even easier for cybercriminals to create e-mails that look and sound like they’re coming from humans instead of bots and scammers. If you’re not careful, the effects of phishing scams can be detrimental. Since it’s Cybersecurity Awareness Month and phishing e-mails are one of the top causes of attacks, we created this simple guide to help you and your team successfully identify phishing e-mails and understand why it’s so important to do so. What can happen? Here are 4 significant dangers associated with phishing attacks: 1. Data Breaches Phishing attacks can expose your organization’s sensitive information to cybercriminals. Once your data is exposed, hackers can sell it on the dark web or hold it for ransom, demanding thousands, millions or even more for its return – and they likely won’t return it anyway. This can result in financial and legal repercussions, damage to your reputation and loss of customer trust. 2. Financial Loss Cybercriminals often use phishing e-mails to steal money directly from businesses. Whether it’s through fraudulent invoices or unauthorized transactions, falling victim to phishing can have a direct impact on your bottom line. 3. Malware Infections Phishing e-mails can contain malicious attachments or links that, when clicked, can infect your systems with malware. This can disrupt your operations, lead to data loss and require costly remediation efforts. 4. Compromised Accounts When employees fall for phishing scams, their accounts can be compromised. Attackers can then use these accounts to launch further attacks or gain unauthorized access to sensitive company data. And the list goes on. However, there are actions you can take to prevent becoming the next victim of a phishing attack. Here is the S.E.C.U.R.E. Method you and your employees can use to help identify phishing e-mails. S – Start With The Subject Line: Is it odd? (e.g., “FWD: FWD: FWD: review immediately”) E – Examine The E-mail Address: Do you recognize the person? Is the e-mail address unusual? (e.g., spelled differently) or unknown (not the one they usually send from)? C – Consider The Greeting: Is the salutation unusual or generic? (e.g., “Hello Ma’am!”) U – Unpack The Message: Is there extreme urgency to get you to click a link or download an attachment or act on a too-good-to-be-true offer? R – Review For Errors: Are there grammatical mistakes or odd misspellings? E – Evaluate Links And Attachments: Hover over links before you click them to check the address, and do not open attachments from anyone you don’t know or weren’t expecting to receive mail from. It’s also important to have a cybersecurity expert monitor your network and eliminate e-mail spam before your employees can make a mistake. Make sure you’re taking proper precautions to protect your network. These phishing attacks work and happen all the time. We don’t want YOU to be the next victim. If you need help training your team on cybersecurity best practices or implementing a robust cybersecurity system, or just want a second set of eyes to examine what you currently have in place and assess if there are any vulnerabilities, we are ready to help. Call us at 774-241-8600 or click here to book a call with our team.

When 8.5 million Windows devices, including those at airlines, banks and hospitals, suddenly displayed the “Blue Screen of Death,” people began to panic. “We are under a cyber-attack!” most speculated. Fortunately, that was not the case, but the real reason behind the outage is alarming and something every business owner should be concerned about. So, What Happened? On July 19, 2024, millions of Windows devices crashed, triggering an endless reboot cycle and an unresolvable blue screen. This issue caused massive global disruptions. Airlines had to ground flights, leaving thousands of passengers stranded in airports and unable to book new routes home. Electronic health record software was knocked offline, forcing providers to cancel or delay nonemergency procedures, surgeries and medical visits. Several major banks also went offline, leaving customers unable to access their accounts. These were just some of the significant issues caused by what is now labeled the largest IT outage in history. Almost brings back those Y2K fears, doesn’t it? If It Wasn’t A Cyber-Attack, What Caused It? Many worried that the outage was due to a cybersecurity attack, but the source of the problem was a botched software update from CrowdStrike, a leading cybersecurity company. The team behind their endpoint detection and response (EDR) platform, Falcon, configured what should have been a routine sensor update. This update, specifically for Microsoft Windows, unknowingly had a flaw, and due to its tight integration with Windows OS, it resulted in widespread system crashes when it was pushed through. How could a multibillion-dollar organization release an update with such a serious flaw? Representatives for the company later explained that it was due to a gap in their testing software. The issue stemmed from a flaw in the content validator tool, which failed to detect the problem in the update, leading engineers to believe everything was ready for release. As a result, the update forced Windows systems to enter an endless reboot cycle, displaying the infamous Blue Screen of Death. As the situation unfolded, CrowdStrike immediately acted to fix the issue, but the damage was already done. Reports from insurers now estimate the outage will cost US Fortune 500 companies upward of $5.4 billion. Why Should This Concern You? This event reinforces how integrated technology is in our lives and underscores the significant impact a single software flaw can have on global IT infrastructure. When it comes to your company’s technology management, there is no substitute for having three things: Don’t wait until you’re hit with a crisis to take action. Ensure your business is prepared by partnering with an experienced IT team. We offer a FREE, no-obligation Network Assessment where our team of experts will evaluate your current systems, identify potential vulnerabilities and develop a comprehensive plan to safeguard your business against future outages. Your company’s security and continuity depend on it. Call us at 774-421-8600 or click here to book your FREE Network Assessment today!

The National Cancer Institute in Maryland recently analyzed data from three major US health studies that gathered information on people’s daily multivitamin use. They discovered that people who took daily multivitamins had a 4% higher mortality rate than those who didn’t. This surprising result echoes a scene from the movie Grumpy Old Men, where a character explains that, despite never exercising and having unhealthy habits, he has outlived many who followed strict health regimens. This highlights a crucial point: shortcuts to achieving meaningful, difficult goals often backfire. In various aspects of life, including diet, we see that seemingly easy solutions can lead to significant problems. For example, “fat-free” or “sugar-free” labels might encourage overconsumption, negating their benefits. The Atkins diet, promising easy weight loss by avoiding carbs, led to various health issues due to an imbalanced intake. Similarly, weight-loss drugs like Ozempic have resulted in serious health complications, reminding us of the dangers of quick fixes, like Fen-Phen in the 1990s. In the IT world, shortcuts are equally perilous. Many businesses attempt to meet compliance requirements or protect themselves from data breaches by taking the easiest, cheapest routes. It’s a common mistake to rely on free antivirus or firewall software found through a quick search, underestimating the risks. Small businesses often believe they are too insignificant to be targeted, but cybercriminals target precisely these businesses, knowing they are less likely to have robust protections in place. Another frequent error is entrusting IT management to an acquaintance or someone with basic tech knowledge but lacking professional expertise. When businesses upgrade to professional IT services, numerous inefficiencies and vulnerabilities are typically discovered. The issue is not the intent but the lack of necessary skills and resources, which significantly increases risk. Not all shortcuts are detrimental, though. Entrusting IT matters to an experienced managed services provider can be the optimal “easy button.” By partnering with professionals who understand your industry and its specific requirements, you can achieve compliance, security and operational efficiency without the associated stress. Choosing the right IT provider is crucial. History shows us that experts can be convincing even when wrong, as demonstrated by past medical practices like lobotomies or financial scams like Madoff’s Ponzi scheme. Therefore, it’s vital to thoroughly vet potential IT partners, ask pertinent questions and seek testimonials from other clients. When deciding which IT provider to let handle your network, take it seriously and don’t blindly follow anyone’s advice. It’s not your responsibility to know every technical thing that needs to happen with your network, but it is your job to ask questions, request testimonials from other clients and hire someone trustworthy. Your company’s security, reputation and, possibly, future depend on you not letting the wrong person come in and muck up your business. That’s one of the reasons I created a FREE guide that you can get here that lists out 16 questions you need to ask anyone before you let them touch your network. It’s a great resource for every business owner to have. If you’re ready to hand off your IT to a reliable team of experts, our team of experts is ready to manage your network so you can focus on growing your business while we focus on what we do best: protecting it. (You can even check our website for real client reviews!) To get started and find out what you need, give us a call at 774-241-8600 or click here to book your FREE Cyber Security Risk Assessment now.

If the software your organization used to close deals and pay employees unexpectedly went down and you had no idea when it would be fixed, what would you do? Could you continue doing business? How much money would you lose? Unfortunately, in June, this happened to over 15,000 US- and Canada-based car dealerships when two cyber-attacks occurred on the popular industry software provider, CDK Global. This software attack shut down the sales, financing and payroll systems for thousands of dealers, forcing them to either stop business or revert to the old-fashioned pen-and-paper method. This incident should be a wake-up call for all small business owners, highlighting the importance of robust cybersecurity measures. What Happened? The initial attack occurred on the evening of Tuesday, June 18. Once it was detected, CDK Global immediately took the correct action, bringing the entire system offline to investigate the issue. The system was up and running again the following day until a second incident occurred, which resulted in the company bringing the system back offline. It’s thought the system was brought back online prematurely, before all compromised areas were discovered, resulting in a second attack. Cybersecurity experts are saying it could be weeks before the system is back to being fully operational. While some businesses were able to revert to manual processes, this incident highlights the vulnerabilities that come with relying on digital systems. In our ever-advancing digital world, where most transactions are a couple of clicks away, significant issues arise when systems go offline. Critical parts of the business process, such as completing transactions, managing payroll and interacting with financial institutions, can come to a standstill. This means that until the systems are back online, many business operations cannot be fully completed, leading to delays and potential financial losses. Business owners know that there is no sale until the check clears the bank! So, What’s Next? CDK Global didn’t disclose the exact cause of the attack. Whether that was intentional or they are still unsure remains to be seen. Their security team will need to meticulously comb over every area of the business to determine exactly what was compromised. It’s often difficult for large companies to get the details about cyber-attacks 100% correct after the first review because they may not be able to determine the extent of an attack’s network penetration if there are multiple points of vulnerability. In the meantime, businesses need to take a hard look at their systems for selling and operational continuity. Will they be prepared to continue doing business if and when this happens again? This incident should serve as a wake-up call for all business leaders. If you don’t have a business recovery and continuity plan in place, you’re putting yourself at risk. And if you do, you need to ask yourself if it is high-quality, tested often and able to handle a large-scale attack where multiple operational systems are disabled. If the answer is no, it’s time to do something about it. We’ll do a FREE Security Risk Assessment that will achieve two important things: To get started, call our office at 774-241-8600 or click here to book your FREE Security Risk Assessment now.

A recent report from Check Point Research revealed a shocking statistic – the Microsoft-owned business platform LinkedIn is impersonated in nearly half of all phishing attacks globally. One of the ways scammers leverage LinkedIn to deploy their phishing attack is when they zero in on anyone seeking a new job or career change. While e-mails like “You have 1 new invitation” or “Your profile has been viewed by 63 people” can be authentic, it’s critical to verify the e-mail address it’s sent from to ensure that it’s genuinely from LinkedIn. These impersonators will send e-mails that look identical to the real ones, with links to fake LinkedIn pages that will rip off your information as soon as you enter it. Another way cybercriminals leverage LinkedIn is by creating fake profiles and messaging people about job opportunities. Once you’re on the hook, they’ll either ask for a small payment upfrontto process your application (that you’ll never see again) or send you a link to a form you must fill out that’s actually a phishing link in disguise. LinkedIn is aware of the problem and is working on developing advanced security features to protect its users. Here are three of the current security features it has already deployed:

The recent global outage of Microsoft services, caused by a faulty software update from CrowdStrike, served as a stark reminder of how vulnerable even the largest tech giants can be to unexpected disruptions. Airlines, businesses, and countless individuals relying on Microsoft’s vast ecosystem felt the ripple effects, highlighting the interconnected nature of our digital world. The Importance of Incident Response Plans While the outage is mostly resolved, the incident underscored the critical need for comprehensive incident response plans. These plans, often overlooked or underestimated, provide a roadmap for organizations to navigate crises efficiently and minimize downtime. A well-structured incident response plan includes: Small and Medium Businesses (SMBs) at Risk If a tech giant like Microsoft can be disrupted, the potential consequences for small and medium businesses (SMBs) are even more significant. SMBs often lack the resources and infrastructure to recover quickly from outages, making them more vulnerable to financial losses and reputational damage. Developing a comprehensive incident response plan is not a luxury for SMBs; it’s a necessity. By investing in preparedness, SMBs can: Moving Forward The Microsoft outage serves as a valuable lesson for all organizations. By developing and regularly updating incident response plans, businesses of all sizes can mitigate the impact of future disruptions and ensure their continued success in an increasingly interconnected digital landscape. Key Takeaways: Let’s not wait for the next outage to take action. Let’s make incident response planning a top priority today.

As a business leader, you’re always looking for ways to increase revenue, cut expenses and grow your bottom line. Implementing AI tools, shopping services and running a more efficient operation are great ways to do that. One place you do NOT want to cut corners is using free antivirus or firewall software. In today’s blog, we’ll share why these seemingly helpful software solutions are a detriment to your business and why a 10-minute call with our team might just be the best investment you’ll make this year. Free software often lacks necessary features and is limited in what it can detect. Free antivirus software and firewall solutions can protect your business against some known viruses but not all of them, and they likely won’t have the ability to protect you against other comprehensive threats, like malicious files, unknown or unidentified threats and more. Cybercriminals are constantly rolling out new and “improved” viruses to trick even the most robust security solutions, which makes it difficult to believe that free, infrequently updated antivirus solutions could offer the level of protection needed to keep you secure. There’s no such thing as a free lunch. While free cybersecurity solutions sound like a good way to save a few bucks, you have to stop and realize these programs will make their money somewhere. The most common ways they make money are through ads, sponsored recommendations and collecting and selling user data. They collect and sell your personal information, like age and gender, and installed apps, to third-party advertisers. Some free solutions are already infected with malware. Ironically, these free cybersecurity tools can come with malware already installed to infect your computer upon downloading them. It’s also difficult to determine the difference between real free software solutions and fake ones created by hackers looking to trick unsuspecting business owners who hope to save a buck into downloading an infected version that immediately opens up your network to them. Free antivirus software is mostly reactive, detecting infections after they’ve happened. The point of having cybersecurity solutions is to try to prevent a data breach from occurring in the first place. Most free solutions are reactive and won’t keep unwanted intruders out; they simply alert you when one has already breached your network. If you’re going with a free solution, make sure you have a robust recovery plan in place. You’ll likely need it. Cybersecurity solutions are not as expensive as most business owners think and are more cost-effective than dealing with a data breach. If you have been using free antivirus or firewall software in your organization, it’s time to level up. Our cybersecurity experts will provide you with a FREE Security Risk Assessment that will detail if and where you’re vulnerable and what to do about it. Schedule yours by clicking here or calling us at 774-241-8600.