Current warning against applications in Microsoft Word format
Guido Herrig2022-09-29T22:03:20+02:00The CERT-Bund, the computer danger centre of the federal administration, is currently warning of an outbreak of the encryption Trojan GandCrab.
Beware of a new wave of attacks via phishing emails with the subject: “You have received a file via WeTransfer”.
Guido Herrig2022-09-29T21:06:40+02:00It remains exciting and the attacks are becoming more and more sophisticated. In the past, we received phishing emails from unknown senders in poor German or English. Nowadays, they are from known senders with halfway comprehensible content in the subject line.
How can attackers compromise the IT infrastructure from the outside?
Guido Herrig2022-09-29T21:06:58+02:00A typical attack on the IT infrastructure of companies is carried out in 3 steps. Search for vulnerabilities Attackers first look for vulnerabilities in the system. This can be unbiased emails to employees, e.g. an inconspicuous invoice email to the accounting department. Network printers with open ports, IoT devices with old firmware or even routers whose known vulnerabilities have not been closed. In addition, danger can come from websites that have already been infected with malicious code and whose operators do not have enough resources to constantly pay attention to the security of their own websites. Once the malicious code has [...]
Should you encrypt emails?
Guido Herrig2022-09-29T21:09:07+02:00Yes, because e-mails offer the same protection against "reading" as the good old postcard. If you want/need to send really confidential data, such as business data, by e-mail, you cannot avoid encryption. The following options are available to protect messages/documents. Password-protected files: You can of course put the data in a password-protected file and then attach it to the e-mail. The only thing is that it is not very convenient to use and confidential things written in the message can still be read. The password should at least be sent by another means (messenger, telephone, etc.) and not by e-mail. PGP [...]
How can I protect my computer if a targeted attack overcomes the firewall and virus scanner?
Guido Herrig2022-09-29T21:09:38+02:00Not at all! That doesn't sound good, but it corresponds to reality. There is software, e.g. from the NSO Group from Israel, which is specialised in penetrating foreign systems. If a targeted attack is made on a specific device, no antivirus programme can defend itself against it. Antivirus scanners work with signatures of known malware. In the case of a new, as yet unknown attack scenario, they cannot prevent the attack because there is no signature for it in their database This is where endpoint security comes in. If attackers succeed in getting onto their target's system, the infected malware must [...]
How does Bitdefender protect your privacy with Anti-Tracker?
Guido Herrig2022-09-29T22:03:48+02:00The latest version of Bitdefender now offers "Anti-Tracker", a browser extension that tells you what information websites collect about you.