This Malware Can Take Control Of Facebook Accounts

Do you have a Facebook account? Even if it has been a while since you last logged on there is a new threat you should be aware of. A new strain of malware called FlyTrap was used recently to take control of thousands of Facebook accounts. Yours could be next if it hasn't been compromised already.

FlyTrap is an Android-based malware strain that works by stealing cookies. It relies on a few basic social engineering tricks to lure unsuspecting victims to using their Facebook credentials to log into a malicious app. The app harvests the login data allowing the hackers to reuse it later.

This malware strain is so dangerous because of the fact that many people make regular use of their Facebook login credentials as a quick and convenient way to log into a variety of other sites. That is even if they haven't actually been on Facebook in a very long time.

Essentially that means that those users are reusing the same password across a great many sites on the web and once the hackers have your Facebook credentials they can, of course, log into any site you've used them on.

 

Call Now

 

According to cybersecurity researchers, the hackers controlling FlyTrap have been running campaigns since at least March of this year (2021). They're offering highly attractive incentives like Netflix coupons to lure unsuspecting victims to hand over their credentials.

If you see an offer that looks too good to be true ("Login here with Facebook to claim 3 free months of Netflix!" for example) then steer clear. It's entirely possible to find legitimate and completely safe offers like that on the web. All too often it's a trap with means to deny you control over your account. Don't fall for it.

Call SpartanTec, Inc. now if you need help in protecting your company against cybersecurity attacks.

SpartanTec, Inc.
Myrtle Beach, SC 29577
(843) 420-9760
https://www.spartantec.com/

Serving: Myrtle Beach, North Myrtle Beach, Columbia, Wilmington, Fayetteville, Florence

New Mac Device Malware Is Bypassing Apple Security

Apple is generally very good about providing its users with a safe and secure computing environment. For many years the company was able to rightly claim that Microsoft had a far worse problem with malware than Apple did. That is still true but the gap has now virtually disappeared. As Apple products surged in popularity hackers took note and began finding ways around Apple's impressive security measures.

Researchers at Trend Micro have recently discovered a malware strain they've dubbed XCSSET which is especially good at bypassing Apple's security measures.

Most applications are run in an Apple Sandbox so that their ability to gain access to system information or compromise a component in some way is sorely limited. Hackers have discovered at least a partial workaround that gives them access to some of a user's sensitive data where certain apps are concerned.

XCSSET works by creating a simple text file on a victim's computer.

This text file is keyed to certain apps, including:

• Telegram
• Google Chrome
• Contacts
• Opera
• Skype
• WeChat
• Evernote
• And others

The text file is created in the sandbox and simply logs everything that happens in it. All a hacker needs to do to gain access to a user's Telegram account is to copy and paste the log file onto their own computer and all of the relevant login information is right there.

 

Call Now

 

The same holds true for all of the software listed above. Note too that in the case of Google the log file will contain any passwords that Chrome saves inside the browser. If you use Chrome as your primary browser and log into your bank, make credit card payments, and the like, then all of those accounts would be at risk.

XCSSET is a genuine threat. Stay on your guard against it and make sure your employees are aware of the risks.

People also ask

Can Apple be infected with malware?

Yes, Macs can get viruses. Sadly, your MacBook, iMac, or Mac Mini can all get infected with malware. Macs are less vulnerable than Windows computers, but viruses and hackers can successfully attack them too.

 

https://clario.co/blog/can-macs-get-viruses/

Does Apple have a malware scanner?

While your Mac can definitely be infected with malware, Apple's built-in malware detection and file quarantine capabilities are meant to make it less likely that you'll download and run malicious software. Apple introduced malware detection to the Mac OS with Snow Leopard (Mac OS 10.6).

How to check your Mac for viruses | Macworld

 

How do you know if your Mac is infected with a virus?

Signs your Mac is infected with Malware

1. Your Mac is slower than usual. ...
2. You receive security alerts without scanning your Mac. ...
3. Your browser has a new homepage or extensions you haven't added. ...
4. You are bombarded with ads. ...
5. You can't access personal files and see a ransom/fine/warning note.

https://clario.co/blog/how-to-tell-if-mac-is-infected/

 

Call SpartanTec, Inc. now and let our team of IT experts protect your network and business against malware and other types of cybersecurity threats.

 

SpartanTec, Inc.
Myrtle Beach, SC 29577
(843) 420-9760
https://www.spartantec.com/

Serving: Myrtle Beach, North Myrtle Beach, Columbia, Wilmington, Fayetteville, Florence

Tips For an Effective Business Continuity Planning

There are different ways in which your company could be disrupted. Fire, natural disaster, cyberattack, and lately, the coronavirus pandemic. Disruption to businesses tend to strike that’s unexpected, which will leave companies with little time to plan. That’s why business continuity planning is important.

Business continuity planning, also called resiliency planning, involves the process of making systems that would protect your company from possible threats. The main goal of any business continuity planning is to allow your company to continue its operation during a business disruption. Every incident is unique and could lead into unexpected ways. And although we all hope for the worst would never take place, planning for things that are unexpected is a good idea. Your BCP will outline the processes that you need to follow, and are prepared to follow in case disruption happens. This plan will cover the procedures of your business, your human resources, assets, and partners. It’s also crucial to have disaster recovery plan in place.

 

  Call Now   

 

Protect your Company by Protecting Your People

Your employees are the most important and valuable assets of your company. Their understanding, expertise, and hard work is how you serve your clients and how you keep your brand promise. So, if there is a risk to your well being, you need to set in place an effective business continuity plan to protect these individuals, while also allowing your company to function correctly during the disruption.

The BCP’s initial foundation should be a business impact analysis. It articulates, measures, and evaluates how an unforeseeable or foreseeable event would impact various aspects of your company as well as their ability to function at a level that’s acceptable. A BIA is also your first step to determining what areas of your company needs the most attention, because they are at the greatest possible risk, and which business functions can be reinforced or protected through intelligent utilization of IT outsourcing.

The coronavirus pandemic continue to affect economies, people, and businesses around the globe. Because of the uncertainty during these times, it’s crucial for you and your company to have a business continue plan in place and reliable IT support in case something wrong happens.

Steps For an Effective Business Continuity Planning

• Evaluate the processes of your company. Find out what are the most vulnerable aspects of your business. Think about the effects if they become unavailable for an hour, day, week, or even months. This will help with your business impact analysis.
• Determine the skill sets and how many people are required to maintain all business critical functions.
• Create dependencies in between business functions.
• Identify the acceptable business downtime, reduce service level thresholds, and alternate the security controls for every critical function.
• Determine who every critical function would be maintained.

IT outsourcing could play a crucial role in your business continuity plan. Find a company like SpartanTec, Inc. that offers services that will help you create disaster recovery plans and assist you with critical IT functions. Your company can respond to unexpected situations faster if you plan before disaster happens.

Call SpartanTec, Inc. now if you need the help of an IT team to help you come up with an effective business continue plan.

SpartanTec, Inc.
Myrtle Beach, SC 29577
(843) 420-9760
https://www.spartantec.com/

Malware Named Xloader Targeting Macs And Stealing Information

XLoader is a newly discovered strain of malware designed to infect systems running macOS. This new strain was built from a malware strain called FormBook which was designed to steal passwords from Windows-based machines. The new strain is currently being offered on at least one forum on the Dark Web. It is being billed as a botnet loader service which can "recover" passwords from a variety of web browsers and email clients.

These include but are not limited to:

• Foxmail
• Thunderbird
• Outlook
• Internet Explorer
• Microsoft Edge
• Opera
• Firefox
• And Google Chrome

The Windows-based variant of the malware is being offered on the Dark Web for rent for $59 a month. The macOS version is being offered for $49 a month.

Call Now

Formbook has played a role in more than a thousand malware campaigns over the last three years and ranks as the 4th most prevalent strain of malware on the web. Although Formbook campaigns have impacted users around the world more than half of the affected users have been in the United States.

If the popularity of Formbook is any indication then Mac users are in for a tough time in the weeks and months ahead. Odds are excellent that we'll be seeing and hearing about a wide range of XLoader attacks.

The internet security company CheckPoint discovered the new strain. Yaniv Balmas, of CheckPoint, observed that this new variant is far more sophisticated and advanced than its predecessor.

Balmas warns that although there has historically been a large gap between the prevalence malware in the Windows and Mac ecosystems that gap is closing quickly. The threats to Mac users are growing almost by the day. If you have Macs in service in your office be on the alert and keep a sharp eye out for this threat.

Call SpartanTec, Inc. now if you need help in protecting your company against malware and other cybersecurity threats.

SpartanTec, Inc.
Myrtle Beach, SC 29577
(843) 420-9760
https://www.spartantec.com/

Serving: Myrtle Beach, North Myrtle Beach, Columbia, Wilmington, Fayetteville, Florence

New Malware Called MosaicLoader Is Being Delivered Via Ads

Security company BitDefender has recently discovered a new strain of malware you should be aware of. They have dubbed the new threat MosaicLoader.

According to the company it is currently being distributed via ads displayed in search results when an internet user searches for links to cracked versions of popular software.

It is designed to steal passwords, deliver other forms of malware, and install cryptocurrency miners. This means that if it winds up on your system it can cause all manner of problems for you.

Most malware we see today is delivered via phishing attacks or by exploiting unpatched software. MosaicLoader's method of delivery makes it markedly different and thus noteworthy.

Bogdan Botezatu of BitDefender had this to say about the recent discovery:

"Most likely, attackers are purchasing adverts with downstream ad networks - small ad networks that funnel ad traffic to larger and larger providers. They usually do this over the weekend when manual ad vetting is impacted by the limited staff on call."

 

Call Now

 

Most up to date antivirus software would spot and prevent the installation of MosaicLoader. Unfortunately many people who are looking for cracked versions of popular software turn their antivirus software off. Hackers around the world are well aware of this and are seeking to take advantage.

Bogdan Botezatu continues:

"From what we can tell, this new MosaicLoader attempts to infect as many devices as possible, likely to build up market share and then sell access to infected computers to other threat actors. We advise users to never turn off their security solution when it blocks the installation of software downloaded from the internet, as attackers have become adept at bundling legitimate apps with malware."

It's good advice. Make sure all of your employees are aware and on their guard. That's not a perfect cybersecurity solution but it is a very good start.

 

Call SpartanTec, Inc. now and let our team of IT experts protect your network against malware and other online threats.

 

SpartanTec, Inc.
Myrtle Beach, SC 29577
(843) 420-9760
https://www.spartantec.com/

Serving: Myrtle Beach, North Myrtle Beach, Columbia, Wilmington, Fayetteville, Florence

DNS Issue Caused Major Website Outage

The Akamai Corporation reported a major outage on Thursday (7/22/2021) that caused major disruptions on the internet in the United States for a period of several hours. A tweet from the company confirmed that the outage was caused by a software update. The update triggered a bug in the DNS system which caused the outage.

The good news is that the outage was not the result of a hack as had initially been feared.

The outage impacted a number of high-profile companies in the US, including:

• AT&T
• Costco
• Capital One
• And Delta Airlines

The websites owned by these companies simply displayed "DNS error" messages during the course of the outage. This prevented customers who rely on those sites from being able to access needed data.

 

Call Now

 

The bug was tracked back to its source and the issue corrected. All of the companies that had been impacted now report that their sites are working properly.

This latest incident only serves to underscore how fragile the internet is. There have been a number of high-profile attacks so far this year that have targeted critical infrastructure like the main gas pipeline that serves the Southeastern United States.

Given that information it is understandable that many who witnessed the outage in real time were concerned that it may have been caused by hackers seeking to bring down large portions of the web. Fortunately that proved not to be the case in this instance. We may not be so lucky next time.

This incident also underscores the importance of having robust backup plans prior to applying updates to critical infrastructure. Had that been done in this case the outage may well have been avoided.

Akamai has apologized for the scare and any inconvenience the outage may have caused and we can all now breathe a collective sigh of relief. At least for now.

Call SpartanTec, Inc. now and let our IT support team help you with all your IT needs and protect your company against cyber attacks.

SpartanTec, Inc.
Myrtle Beach, SC 29577
(843) 420-9760
https://www.spartantec.com/

Serving: Myrtle Beach, North Myrtle Beach, Columbia, Wilmington, Fayetteville, Florence

Latest Data Breach Hits Guess Clothing Company

American fashion retailer Guess recently became the latest in a seemingly unending parade of big-name companies to suffer a data breach.

The company's breach notification letter was mailed to all customers whose data was compromised. The letter states that an unidentified party gained access to Guess' systems between February 2nd and February 23rd of this year (2021).

The company discovered evidence of the breach on May 26th and determined that the personal information of some Guess customers had been accessed. By the 3rd of June, the company, a third party security vendor, and law enforcement officials had finished a review of the data that was accessed. They then began contacting all individuals impacted by the breach as of June 9th.

The company is offering a year of free credit monitoring to all impacted individuals as is often the case in data breaches.

 

Call Now

 

The letter being sent to impacted individuals reads in part as follows:

"On May 26, 2021, the investigation determined that personal information related to certain individuals may have been accessed or acquired by an unauthorized actor. The investigation determined that Social Security numbers, driver's license numbers, passport numbers and/or financial account numbers may have been accessed or acquired."

The data security breach notification letters give no indication as to the scope and scale of the breach. The information filed with Main's Attorney General indicates that just over 1300 people had their data compromised during the attack.

Guess' breach notification gave no indication of who may have been behind the attack. However security researchers have found circumstantial evidence on the Dark Web that points to the DarkSide ransomware group.

If that name sounds familiar to you it's because they're the group behind the recent Colonial Pipeline attack that brought fuel deliveries to a standstill in the southeastern United States for the better part of two weeks. Not long after the Colonial attack the FBI seized significant portions of the group's infrastructure and they ceased all operations in late May. Now they seem to be back with a vengeance.

 

Call SpartanTec, Inc. now if you need expert help boosting your company's cybersecurity and protecting your business from data breaches.

 

SpartanTec, Inc.
Myrtle Beach, SC 29577
(843) 420-9760
https://www.spartantec.com/

Serving: Myrtle Beach, North Myrtle Beach, Columbia, Wilmington, Fayetteville, Florence