(954) 237-7797
Let's Talk
Blog
December 20, 2022 by Vertical Axion
What do you do when your most personal information has been compromised? This is likely the question that customers of Sequoia One asked themselves earlier this month as they were informed that the company had been hacked. Sequoia One specializes in the management of human resources, benefits, and payroll. For the past 21 years, they’ve […]
Read more »
Tagged
December 19, 2022 by Vertical Axion
As a business owner, it’s important to stay informed about potential vulnerabilities that could impact your organization. Recently, Cisco reported a critical vulnerability, tracked as CVE-2022-20968, affecting its IP Phone 7800 and 8800 Series. This new vulnerability is caused by inadequate input validation of packets using the Cisco Discovery Protocol. In other words, a threat […]
December 16, 2022 by Vertical Axion
A new version of Microsoft Edge is available for Windows, macOS, and Linux. While the update is relatively small, it contains two feature upgrades and significant security fixes, including one for the Chromium engine’s “Type confusing in V8” vulnerability. Vulnerability Fix Unsurprisingly, one of the most significant improvements in this version addresses CVE-2022-4262. The flaw […]
December 10, 2022 by Vertical Axion
Apple released several new security features on December 7th, 2022, designed to keep users’ sensitive data and communications secure. Advanced Data Protection for iCloud is one of the most notable features for Apple users. In order to protect sensitive data stored in iCloud, such as voice memos, photos, notes, and more, Apple’s new Advanced Data […]
December 6, 2022 by Vertical Axion
A somewhat concerning flaw has been fixed by SiriusXM that would allow unauthorized individuals to unlock doors remotely and start engines by only having the vehicle identification number (VIN). Sam Curry, a researcher at Yuga Labs, published a Twitter thread explaining the details of the discovered security flaw. The security bug affected vehicles using SiriusXM’s […]
December 5, 2022 by Vertical Axion
Dropbox has announced its plans to purchase several key assets from Boxcryptor so that it is able to provide end-to-end encryption for its business users. In addition, the partial merger between the two companies will enable Dropbox to better meet its client’s needs, including an enhanced level of security for cloud storage. Boxcryptor, a provider […]
December 3, 2022 by Vertical Axion
According to LastPass CEO Karim Toubba, the password manager has been hacked once again. A data breach occurred in the development environment only a few months ago, prompting LastPass to announce they had experienced a security breach on August 25, 2022. LastPass disclosed to its customers that a developer account was compromised. At the time, […]
December 2, 2022 by Vertical Axion
The new security-focused data lake solution from Amazon Web Services (AWS), unveiled at re:Invent 2022, aims to give consumers more value from their security data. The Amazon Security Lake service aims to consolidate an organization’s security data from various on-premises and cloud-based sources into a single location to pinpoint security threats precisely. With the help […]
November 30, 2022 by Vertical Axion
The FBI warns about scammers pretending to be refund payment gateways from financial institutions to steal sensitive information from unsuspecting victims. The federal law enforcement agency stated that scammers deceive victims into granting them access to their computers via email or phone calls by posing as representatives of technical or computer repair companies. According to […]
November 29, 2022 by Vertical Axion
Earlier this year, Twitter confirmed that an API vulnerability had caused a massive data leak containing non-public information for over 5.4 million Twitter users. Twitter denied claims that hackers had leaked the private information priorly. However, Pompompurin, the owner of the hacking forum Breached, stated they were responsible for exploiting the API bug and platforming […]
November 28, 2022 by Vertical Axion
Threat actors may now launch their own sophisticated assaults thanks to the emergence of Phishing as a Service (PhaaS) platforms like “Caffeine.” Through an open registration procedure, anyone who wishes to launch their phishing campaign can sign up on these platforms. Security experts at Mandiant discovered the first sighting of these threats while investigating a […]
November 26, 2022 by Vertical Axion
Data allegedly stolen from Cincinnati State Technical and Community College has been leaked after Vice Society attacked the campus. Many of the stolen documents were posted on the hackers’ websites. These documents date from several years ago until November 24, 2022, suggesting that threat actors still have access to the compromised systems, but this has […]
November 25, 2022 by Vertical Axion
According to cybersecurity experts at Cisco Talos, Microsoft Office has a high-severity vulnerability that could allow prospective cyber attackers to execute malicious code on the target device remotely. Microsoft announced the issue in a brief blog post, stating that its researcher Marcin ‘Icewall’ Noga had identified a class attribute double-free vulnerability impacting Microsoft Excel. The […]
November 24, 2022 by Vertical Axion
In a massive malicious SEO campaign, cybercriminals are promoting low-quality Q&A sites by redirecting visitors to fake discussion forums. As a result, almost 15,000 sites have been compromised. In September 2022, researchers at Sucuri discovered the attacks. Each compromised site was found to contain approximately 20,000 files that were utilized in the search engine campaign. […]
November 23, 2022 by Vertical Axion
Security experts at Akamai have discovered a campaign that uses an elaborate phishing kit. This campaign targets Americans using lures centered around holidays like Labor Day and Halloween. The kit combines several methods and employs several evasion detection techniques to prevent non-victims from visiting its phishing pages. One of the most intriguing aspects of the […]
November 22, 2022 by Vertical Axion
Lenovo reports that it has patched two critical security flaws that affected several of its ThinkBook, IdeaPad, and Yoga laptops. Lenovo is also recommending that consumers update their systems immediately. The flaws make it possible for cybercriminals to deactivate the UEFI Secure Boot tool, allowing them to load and run malicious scripts during the system […]
November 21, 2022 by Vertical Axion
The feature is comparable to Apple’s ‘App Tracking Transparency. However, unlike Apple, DuckDuckGo’s method does not rely on app developers’ compliance with user choice. All known trackers are blocked. According to DuckDuckGo, Android users have an average of 35 applications installed on their smartphones, resulting in between 1,000 and 2,000 monitoring attempts every day for […]
November 18, 2022 by Vertical Axion
David Schütz, a cybersecurity researcher, inadvertently discovered a means to circumvent the lock screen on his fully updated Google Pixel 6 and Pixel 5 devices, allowing anybody with physical access to the smartphone to unlock it. Bypassing the lock screen on Android smartphones is a straightforward five-step method that should only take a few minutes. […]
November 16, 2022 by Vertical Axion
When you’re a business owner, you always look for ways to streamline processes and improve efficiency. A single sign-on (SSO) system is a great way to simplify authentication. It allows users to access multiple applications with just one login credential, saving them time and money as well as reducing the number of lost or forgotten […]
November 15, 2022 by Vertical Axion
It’s getting easier than ever to conduct effective phishing campaigns thanks to the rise in popularity of SaaS platforms. A recently published report released by Palo Alto Networks’ Unit 42 revealed that the use of Software as a Service to conduct phishing attacks has surged by an incredible 1,100 percent between June 2021 and June […]
November 12, 2022 by Vertical Axion
As our world becomes increasingly digitized, businesses are finding themselves at a greater risk of cyberattacks. One way companies can protect their data is by encrypting it. Encryption transforms readable data into an unreadable format, making it difficult for unauthorized individuals to access and interpret it. A recent survey conducted by Thales discovered that the […]
November 11, 2022 by Vertical Axion
A cyber-security threat actor known as SocGholish has compromised a JavaScript code used by an unnamed media content provider. The malware is being used to spread the FakeUpdates malware to major media outlets across the United States. More than 250 regional and national newspaper sites are affected by the malicious JavaScript. Some impacted media organizations […]
November 10, 2022 by Vertical Axion
According to Microsoft’s latest announcement, businesses should assess security measures to defend against evolving cyber-security threats. Microsoft released its Digital Defense Report (MDDR) for 2022. Microsoft released alarming statistics about the cyber threats that the company has faced in the last year, including phishing, identity theft, and ransomware attacks. Microsoft Security Update Alerts Tom Burt […]
November 8, 2022 by Vertical Axion
Virtual private networks (VPNs) are used to give users remote access to resources on corporate networks. However, several factors have revealed incompatibilities between VPNs and Zero-Trust security systems. Businesses are worried that VPNs are becoming a severe threat to their operations. According to a report by Zscaler, nearly half of information technology professionals have seen […]
