MTBW’s Robert Baharoff Obtains Fortinet Network Security Engineer (NSE1) Certification

MTBW Continuing Education Campaign Fortinet is a global and respected leader in security solutions. MTBW dedicates time and resources for our employees to not only maintain certification status but perennially increase their knowledge to provide the leading edge of solutions to our clients. If you need any assistance with your security posture and/or your Business Continuity/Disaster Recovery BCDR please reach out to the security experts at MTBW Services, Inc.

Four New Mac Malware Strains Exposed

Mac platforms are at risk after Malwarebytes discovered four new Mac malware strains. The attack surface for malware continues to expand. This is a reminder to all of us to be diligent in our defensive measures and to ensure our recovery mechanisms are in place. Do you have a Business Continuity/Disaster Recovery (BCDR) plan? Contact us to learn how to protect your business and how to mitigate these attacks. We are your security experts! View full article on TechTarget »

Facebook Breach and How it Affects Your Company’s Security

The recent Facebook security breach has been covered extensively not only on technical sites but also in the mainstream news. It is estimated over 50 million Facebook accounts have been compromised. The information they accessed included the email address and password associated with Facebook accounts. What is critical is to understand how this can affect your company’s security. Though many consider Facebook an individual’s and not a company’s domain, the spillover can have direct effects on your company’s security. News agencies are reporting the Facebook hack can be directly traced to the increase in the number of compromised Microsoft email…

Read More »

DNC Contacts FBI After Its Voter Database Comes Under Attack

The FBI received a report from the US Democratic National Committee (DNC) that unknown actors sought access to a voter database through a phishing campaign. Security firm Lookout was reported to have warned the DNC Tuesday that it had found a fake login page for VoteBuilder, a tool the party uses so its campaigns can better target voters. The apparent attackers’ apparent aim was to obtain credentials they could use to access the party’s voter information. The DNC’s Chief Security Officer Bob Lord briefed party officials on the attack yesterday, then made a public statement denouncing the current US Administration for not…

Read More »

Employees Sue Company For W-2 Phishing Scam. Federal Court Decides Triple Damages

According to a recent federal court decision, an employee who is tricked into sharing personal information in response to a phishing email can be seen as committing an intentional disclosure under the North Carolina Identity Theft Protection Act (NCITPA). As a result, the employer could face treble damages for the employee’s mistake, adding a new element to potential exposure for businesses. Employees who fall for CEO Fraud commit an “intentional disclosure”. Poyner Spruill’s J.M Durnovich was right to highlight this development, which was also picked up by the nationwide Law360 site. The failure to train employees may quickly become more…

Read More »

SamSam Ransomware Infected Thousands of LabCorp Systems Via Brute Force RDP

“LabCorp, one of the largest clinical labs in the U.S.”, said the SamSam ransomware attack that forced their systems offline was contained quickly and didn’t result in a data breach. However, in the brief time between detection and mitigation, the ransomware was able to encrypt thousands of systems and several hundred production servers. The wider public first learned about the LabCorp incident on Monday when the company disclosed it via an 8-K filing with the SEC. Since then, as recovery efforts continue, the company said they’re at about 90-percent operational capacity. According to sources familiar with the investigation, the SamSam…

Read More »

New Sleeper Strain of SamSam Ransomware Bypasses AV And Stays Hidden On Your Network

The ransomware strain that crippled several cities and school districts in the U.S. earlier this year is back with more tricks up its sleeve to avoid detection. If you haven’t heard of SamSam, you haven’t been paying attention. Just one example of the kind of destruction they can cause is the recent attack on the Colorado Department of Transportation which caused downtime for 2,000+ systems. This new SamSam strain adds a human element to its already devious mix of evasive techniques to keep antivirus, endpoint, and even more advanced security software from detecting it. SamSam avoids being discovered using sophisticated…

Read More »

MENU