Apple has released iOS/iPadOS 14.4 with security fixes for three vulnerabilities, said to be under active attack by hackers.

The technology giant said in its security update pages for iOS and iPadOS 14.4 that the three bugs affecting iPhones and iPads “may have been actively exploited.” Details of the vulnerabilities are scarce, and an Apple spokesperson declined to comment beyond what’s in the advisory.

Please update your Apple devices as soon as possible.  For details, please check out the full blog post...

One of the most persistent pieces of malware targeting Android devices has reared its head again, this time appearing in 17 apps on the Google Play Store.  If you have an Android phone or tablet, please check out this post...

On the Dark Web, you can purchase cybercrime “how-to kits” that gather lists of breached names, account numbers, passwords, and even telephone support lines for the victims to call. Make no mistake. Just because you’re on the Dark Web doesn’t mean you’re anonymous though.

Ransomware attacks, data breaches, and scams — along with a steady stream of extortion and phishing emails — have taken over the internet. We hear about cybercrime so often that it can quickly turn into white noise. That's a mistake.

Here are 10 security myths you need to stop believing about your data.

With the influx of remote workers, it’s a perfect opportunity to flood people’s inboxes with malicious emails and fake links. The Cofense Phishing Defense Center (PDC) recently uncovered a phishing campaign that targets employees to harvest their Microsoft credentials. Ironically, the phish was found in an environment protected by Microsoft’s own secure email gateway (SEG). The phishing email, which was reported to the PDC using the Cofense Reporter button, included a well thought out “AudioChat” notification link supposedly from Microsoft Teams.

Teams is one of the most popular platforms for remote employees. Predictably, the threat actors have taken this into consideration – especially during the COVID-19 pandemic with millions of people teleworking. We expect this trend to continue with similar communication platforms.

The first Thursday of each year is 'World Password Day'.  It's designed to educate everyone on the proper and secure use of account passwords.  See inside for helpful information.

Whenever a disaster of some sort happens, there are usually criminals out there that like to take advantage of the situation.  The same goes for the current Coronavirus (COVID-19) outbreaks.  Be on the lookout for fake phishing emails that claim to be sending you information about the virus.  If you get one, perform the usual checks to see whether it's real or not.  If there's any question, please contact the IT Help Desk.  Inside are a couple of recent articles that discuss the situation...

It’s that time of year again, holiday shopping has begun! Everyone is looking for those unique gifts, hot toys, and cool electronics.  Black Friday sales seldom fail to pique the interests of even the most casual shoppers.  Yet even after the chaos of Black Friday lies both Small Business Saturday and Cyber Monday.  While it’s clear that businesses are after your dollars during the holidays, you should be aware that cybercriminals are on the lookout, too.  Click on this article for shopping tips from the folks at the Center for Internet Security.

Every October is National Cybersecurity Awareness Month.  We will be releasing further information as the month unfolds.  Click on the link inside to get involved.

How anonymous are you while online?  Check out this page from CISA on what is generally collected by websites and tips on how to limit your exposure.

Defenseless devices are an invitation to hackers.

Today is the day to #LayerUp by making sure you have strong passwords protecting your information.

Did you know that people are 6X more likely to open a phishing email than a genuine marketing email? Don't take the bait! i