Friday, March 29, 2019


Since the introduction of open source office applications a few years ago, people have been making the switch from Microsoft Office. There are a number of reasons why people would go the open source route and one is the cost. Open source office applications lie OppenOffice and LibreOffice are free to download and use unlike MS Office where you need to obtain a license to use the software. Since it is free to use, some businesses have made the switch over to these applications. However, turning over to open source can have its drawbacks, which is why businesses must have reliable managed IT services to secure themselves against vulnerabilities.

Recently, Austrian researcher Alex Infuhr found a loophole that’s present in both the said applications. Attackers could infiltrate the code of both OpenOffice and LibreOffice through a method called path transversal, which moves code from one directory to another. This leaves users of the said open source application vulnerable to attacks. What’s even more alarming is that the only interaction with the user hackers need to accomplish was a single hover over an invisible link, which is easily triggered by an unsuspecting user.

LibreOffice has been quick to address the issue and has already been patched. OppenOffice on the other hand, has still yet to release an update to prevent users from possible vulnerabilities. This gives more reason to businesses who use open source software to hire credible managed IT services Myrtle Beach from reputable providers.

The bottom line here is that no software is perfect. Computer code can be broken into and it’s just a matter of time before some random hacker makes a malicious attempt to reverse engineer code and inflict damage to users and businesses alike. That is why if you’re running a business, it is good practice to hire reputable IT services as a first line of defense.

Call SpartanTec, Inc. today to protect your business from hackers and attacks over the internet.

SpartanTec, Inc.
Myrtle Beach, SC  29577
843-418-4792
https://www.spartantec.com/

Tuesday, March 26, 2019

Messaging Apps Entryway For New Malware


Your IT staff will likely be in for another rough week as news of a new malware will make detection more troublesome. Antivirus company Avast found a new malware that is lurking around through messaging apps like Skype, Facebook Messenger, and the likes. This new discovery will likely be stressful for IT management in companies which handle their business through such messaging apps.
According to Avast, the malware called Rietspoof isn’t entirely new. It was first discovered late last year but didn’t gain enough attention as it was rarely seen in use. However, the multi-stage malware has been seen quite a number of times recently and the number of instances is gradually increasing.
As with any other malware, Rietspoof is used to infiltrate as many targets as possible. Once within the system, the malware can basically take control of the entire system if hackers behind the malware would like to do so. This highlights the needs for superb IT management Myrtle Beach among companies to prevent damage and data loss.
What Rietspoof does is it placing an LNK file, or a shortcut as most of us know it, into the Windows Startup folder. Now, what this does is gain access to the computer system if it is successful. The Startup folder in itself is a critical area for the Windows platform. That’s why most antivirus software tend to do constant monitoring in this particular area. However, Rietspoof has somehow managed to bypass security through the use of legitimate certificates.
The research team that had spotted Rietspoof said that the malware had gone through a series of changes, which led them to believe that it is constantly being developed. With this is mind, it is essential for companies to make sure that their information security measures are up to date with all the latest virus and malware definitions.

Need superior information security for your business? Call SpartanTec, Inc. Today.

SpartanTec, Inc.
Myrtle Beach, SC  29577
843-418-4792
https://www.spartantec.com/

https://imgur.com/wzvrCMn
http://weheartit.com/entry/328353366

Monday, March 18, 2019

Retailers Get Hit With Another POS Data Breach


Point of sale terminal developer North Country Business Products was recently the target of another data breach. The latest round of attacks hit the company hard. The latest data breach not only affected the company but its customers as well. The hackers were able to install a malware into NCBP’s POS terminals through their network, which ultimately puts the information security of its customers at risk. This highlights the great need for reliable
IT management among companies.

The POS terminals were shipped all around the country, according to NCBP. Around 139 business location were affected, receiving the compromised POS terminals. Any payments made through these terminals will be intercepted by the hackers. Overall, the business locations affected by the hacking incident only accounted for 2% of the 6500 locations where NCBP POS systems had been installed. Although it’s just a fraction of the total business locations, affected users are still at risk having their information security breached.

However, the effort of the company in terms of handling the situation is commendable. NCBP’s IT management Myrtle Beach did a really good job at easing the impacts of the issue. The breach was recorded happening at the 3rd of January this year. The company had discovered the breach later in the same month but said that the hackers were stopped on the 24th after authorities were looking for company officers.

The company had been fully compliant with the requests of law enforcement officers. NCBP also enlisted the help of third party investigators to speed up the process of uncovering the identity of the hackers. They also went ahead and published the list of affected POS terminals on their website.

At the moment, investigation is still being done to determine the identity of the hackers as well as the overall impact of the data breach. Their IT support has been quick to address the situation. The company has also contacted the affected businesses regarding the incident to prevent any further vulnerabilities.

Need overall tech protection for your company? Call SpartanTec, Inc. today to give your company the protection it deserves.

SpartanTec, Inc.
Myrtle Beach, SC  29577
843-418-4792
https://www.spartantec.com/

Wednesday, March 13, 2019

New Linux Flaw Can Give Hackers Full Access


Users of Linux should be watchful for the security flaw that is called Dirty Sock, which has been classified as CVE-2019-7304. It was Chris Moberly, a security researcher, who discovered this crucial security flaw. He immediately reported the details of his discovery to Ubuntu makers last month. The problem lies in the Snapd service’s REST API. If you are not sure what this is, you should call an IT consultant.
It is a universal Linux packaging unit that is responsible for creating applications that work well with Linux across different distributions, and with no changes to the executable needed. However, it also means that Ubunti is not the only build that is affected by the newly discovered flaw. Virtually all flavors of Linux is at great risk.
Moberly’s comment on the flaw:
"Snapd versions 2.28 through 2.37 incorrectly validated and parsed the remote socket address when performing access controls on its UNIX socket.  A local attacker could use this to access privileged socket APIs and obtain administrator privileges."
If there is any silver lining to the discovery made by Moberly, it is that the nature of the problem hinders the hacker from taking advantage of it remotely. They would need physical access to the unit or perhaps trick or force the user to do something that will initiate a program that will escalate privileges that will grant the hackers access. Even so, this flaw should not be ignored especially since it can be used to obtain complete access as well as control to a target unit. It is best to seek the help of an IT consultant Myrtle Beach for your home or business now.
Fortunately, the makers of Ubuntu, Canonical, moved quickly and have rolled out an update that deals with the flaw, with other leading Linux distributions following their lead as well. So, if it is been quite some time since you have updated last, now is the best time to do so. Always remember that it is better to be safe than sorry.

Call SpartanTec, Inc. if you are looking for a reliable and reputable IT consultant to help make sure that your computers are safe and secure.

SpartanTec, Inc.
Myrtle Beach, SC  29577
843-418-4792
https://www.spartantec.com/

Monday, March 11, 2019


Two new critical flaws have been discovered in Adobe Acrobat and Reader that require your urgent attention. These flaws could compromise your information security if your computer is left unprotected.

In fact, the flaws were rated as so severe that the company broke with its tradition of releasing security updates around the middle of the month in coordination with Microsoft's "Patch Tuesday".

They released an update sooner this time, in order to make sure that these issues were resolved, and ensure the fixes were in the hands of their users.

The first issue, listed as CVE-2018-16011, is an exploit that takes advantage of the software's 'Use-After-Free functionality that allows a hacker to craft a special, poisoned PDF embedded with code that could allow them to take full control of the system targeted by the attack.

The second, identified as CVE-2018-16018 bypasses the JavaScript API restrictions in place on Adobe Reader. This greatly increases the risk of overriding the computer security in a given OS.

The flaws can be found in all versions of Windows, macOS Acrobat DC, and Reader 2019.010.20064 and older. The company recommends updating to version 2019.010.20069 to address the flaws and be sure your system is protected.

The company has listed both of these as critical flaws with a rating of two, which is about as serious as it gets.

In related news, we have learned that Adobe's regularly scheduled security patch will address a total of 87 security flaws across a range of the company's products, with 39 of the issues patched being rated as critical.

Kudos to Adobe for breaking with their tradition and addressing both of these flaws ahead of their regularly scheduled update.  It's a sad testament to the times we live in that such actions are becoming increasingly necessary. However, it's always good to see instances of prominent tech companies rising to the occasion and looking out for the best interests, particularly in the computer security Myrtle Beach of their user base.

Be sure to grab these updates and apply them as soon as feasible if you use either of the products mentioned above.

Not sure about your computer security? Call SpartanTec, Inc. today to keep your computer safe at all times.

SpartanTec, Inc.
Myrtle Beach, SC  29577
843-418-4792
https://www.spartantec.com/

Windows 7 Support Ends In 2020, So Plan To Upgrade


If you are among the shocking number of people who are still using Windows 7, then there’s some bad news for you. Microsoft is offering only one year of full support for Window 7 users. They will no longer offer important security updates by January 14, 2020. With this in mind, it is necessary that Windows 7 users take precautions to improve their information security.

The support will end only for individual users, which could deal a blow to their computer security. Businesses that use Window 7 will continue to receive support beyond the said date.

But, they need to register to the Windows 7 Extended Security Update program once the date listed above has passed. They also need to pay a fee, which increases annually.

Discounts will be offered to enterprise users that have volume licensing agreements. However, support will still be discontinued completely by January 2023. Microsoft will likewise provide ESU’s for free to clients who buy the Microsoft Windows Virtual Desktop service, letting users virtualize Windows 7 and Windows 10. This will improve computer security Myrtle Beach of who choose to upgrade.

Additionally, Microsoft will also cease offering support for Office 365 ProPlus plugin for Windows 7. The company will also end offering support to several other products.

The news is no longer surprising since the tech giant has made public its support timeline long before this announcement. However, there are still a number of companies that are using legacy applications, which depend a lot on Windows 7 and most of them have not yet established any migration plans. If your company is among these firms, you still have time to make the necessary plans. But keep in mind that you have a limited time to do so. Disregarding this will cost you in the end and will have a huge impact on your bottom line.

Microsoft has drawn a hard line at this point, and it’s highly unlikely for the company to give in to the pleas of consumers for a longer extension. So, you better start planning to switch or upgrade now.

Call SpartanTec, Inc. for more information on how you can switch or upgrade to a different operating system.

SpartanTec, Inc.
Myrtle Beach, SC  29577
843-418-4792
https://www.spartantec.com/

Saturday, March 9, 2019

Hackers Hit Dunkin Donuts Accounts For The Second Time


After getting hacked three months back, Dunkin’s information security took another hit. Hackers, once again, gained access to an undetermined number of DD Perks user accounts.
What’s more bothersome is that the hackers breached their system through the exact same way they did a few months back. They used a hacking technique that is referred to as Credential Stuffing.
Even though it isn’t a complex kind of attack, it is extremely effective. Generally, hackers will use combinations of user names as well as passwords from their previous data breaches. They will try to use them and see if they work on other websites.
It is very effective, since until this day, an appalling percentage of individual use the exact same password for different websites. That is even if they have user names that have a slight different from one another. The problem is that once a hacker gets access to a DD Perks account, all the details of the user’s profile will be exposed. These include the first name, last name, email address, and well as the code for their DD Perks account.
Although that is not enough to steal anybody’s identity, these details surely has value when they go to the Dark Web, and is most likely being sold there while you are reading this post. Of course, it likewise lets the hackers, or anybody who purchases the account information, to begin using the victim’s DD Perks points, enjoying freebies, and denying all the good things to the rightful owner of the account.
According to a Dunkin’ Donuts representative, "Dunkin' continues to work aggressively in combatting credential stuffing attacks, which have become increasingly prevalent across the retail industry given the massive volume of stolen credentials now widely available online." The spokesperson also said that what happened wasn’t a breach of their system. Obviously, that is a tiny consolation to all account holders whose information has been compromised. Whether you have a big or small business, information security is a much. If you are unsure what to do, talk to an IT consultant for expert assistance.

Call SpartanTec, Inc. if you want to know how to keep your company’s confidential information safe and secure.

SpartanTec, Inc.
Myrtle Beach, SC  29577
843-418-4792

Tuesday, March 5, 2019

10 Tips to Block Off Malware From Your Computer


A virus or malware infection is something that a lot of computer users have experienced at some point. It is particularly frustrating to figure out a way to remove these intrusive applications with the least damage to personal files and programs. Most of us turn to anti virus software to resolve these issues. That’s the most common approach that most people would take. But it is also important to understand the root cause of the problem and start from there.
We quickly put the blame on computer viruses and that’s no coincidence. However, it’s not the viruses that are at fault at all times. There are instances that malware is to blame.     Here are 10 tips that will help you remove these malicious programs off your computer and how to prevent them from coming back:

Install an anti-virus / anti-malware software

It’s a no brainer. This is one application that all computer should have regardless if they are personal or used for work. To avoid any nasty consequences of a malware attack, be sure to have anti-malware software installed. The added protection will decrease your chances of malware infection almost entirely.

Don’t let virus/malware definitions go outdated

Every day, there are new viruses and malware that are uploaded over the internet. Once your anti-virus software company finds this new malware, they add it to their list of known infections. They then send over these updated malware definitions to their subscribers to protect their customer’s computer from new malware. However, in some instances, anti-malware applications are not set to automatically update, which leaves the computer and personal information vulnerable to attacks. Always make sure that your software is always up to date.

Do regular scans

If you want tight information security on your computer, do regular scans. If your anti-virus software is up to date, the next thing you should do is regularly scan your computer, especially if you’re on the internet most of the time.

Keep your operating system up to date

Some operating systems have more support than others. Be sure that you are running your computer on the most recent OS. There are a lot of developers that focus on computer security, which means you are less likely to be infected on a more recent operating system than on an older one.

Add another level of network security

Today’s devices make use of wireless connectivity. However, there is a lot that could go wrong with the wireless printer that you wouldn’t want to happen. For all of your devices that connect to the internet, add a secure password. Your Wi-Fi also needs secure passwords, keeping your SSIDs safe from prying eyes.

Never click on anything dubious

If you receive an e-mail that contains an attachment of some sort, don’t be too quick to click on it. Make sure that the e-mail comes from reputable sources. Double check the sender before you open anything. Some phishing schemes make use of this method. Spending 5 minutes more on double checking will do a great deal for your security.

Be wary of what of sharing information on the internet

A lot of hackers hijack your information primarily because it’s just lying out there in the open. Be careful of what information you share over the internet. What you put out there could be used to steal your identity.

Never use open Wi-Fi

While the idea of getting free Wi-Fi sounds pretty tempting, never go on anything that doesn’t have any encryption. This could potentially be dangerous. Your data or anything that you open up while on that open Wi-Fi can be stolen.

Don’t leave your files without proper backup

If you’ve got a lot of important files on your computer, the first thing that you should do is to create a backup. Regardless of whether your primary files get infected or not, your backup will always be there. Cloud storage is most common nowadays and it’s done in real time. It’s also a cheaper alternative.

Don’t use one password on all accounts

A lot of us are guilty about this. Password1234 just won’t cut it anymore. Don’t use passwords that would typically be used and can be guessed quite easily. Use strong passwords with a combination of special characters. This will be harder to decipher and access your information.

Want to have total information security but don’t know how to? Call SpartanTec, Inc. today to get protected.

SpartanTec, Inc.
Myrtle Beach, SC  29577
843-418-4792
https://www.spartantec.com/