Security for All, Not Some: Safeguarding the Unconnected
At a recent event, multiple companies asked if you really need to protect air-gapped technology, and, if so, how to do it. It’s easy to assume that if a system is air-gapped or not connected to the network, it’s inherently safe from cyber threats. However, this is a dangerous misconception. Even in isolation, no system […]
Defending Against the Unseen: How BLOKWORX Utilizes Deep Instinct for Cutting-edge Prevention
In today’s interconnected digital landscape, cybersecurity threats continue to evolve at an alarming rate. Malicious actors constantly seek new ways to exploit vulnerabilities and infect systems with malware. As a result, innovative technologies like Deep Instinct play a crucial role in combating this ever-growing menace. Recently, Deep Instinct uncovered a new JavaScript-based malware dropper, as […]
The Power of Prevention: How BLOKWORX Services Safeguard Against the Microsoft Teams Bug
A recent vulnerability in Microsoft Teams has emphasized the power of prevention-centric cybersecurity. This bug enables malware delivery from external accounts. This poses a significant threat to businesses that are not appropriately aware and prepared. BLOKWORX services provide a comprehensive prevention-centric security approach designed to effectively safeguard against these vulnerabilities. As discussed in reports from […]
The Crucial Role of Vulnerability Scans
In today’s digital landscape, both protected and unprotected environments face numerous cybersecurity challenges. Managed Service Providers (MSPs) play a vital role in safeguarding these environments, utilizing security services such as endpoint protection, email security, and firewalls. However, incorporating vulnerability scans (note: significantly different than penetration tests) is equally crucial. The indispensable role of vulnerability scans for […]
Protect Against the Dangers of .zip and .mov Domains
The introduction of new top-level domains (TLDs) by Google Registry, including .zip and .mov, has raised concerns within the infosec community regarding cybersecurity risks. Deep learning and machine learning can be vital in preventing and mitigating these risks. Additionally, users must understand these dangers and take the necessary steps to protect themselves. The .zip TLD […]
Deep Learning vs. Machine Learning
Deep learning and machine learning are both branches of artificial intelligence (AI). They involve building algorithms to analyze and make predictions or decisions based on data. However, there are some significant differences between the two methodologies. Deep Learning Deep learning involves building and training artificial neural networks that are capable of learning from large amounts […]
Sales Tools vs. Actual Security: Differentiating Between Scans
Imagine you’ve just purchased a certified used car. As part of due diligence, you take that car into another dealership for a full workup. That dealership tells you that you have $9,000 in repair work before the vehicle should be considered drivable. You return to the dealership that sold you the “lemon” understandably peeved […]
Ransomware Prevention: A Persistent Problem Top of Mind for The City of Dallas
Ransomware continues to be a pressing cybersecurity threat, causing significant disruptions and financial losses for individuals, businesses, and municipalities. The recent 2023 Dallas ransomware incident serves as a stark reminder of the devastating consequences of such attacks. This incident, not the first of its kind in Dallas, highlights the ever-present need for proactive cybersecurity strategies […]
Cybersecurity Tools: Is More Security Better Security?
Recently, we attended several industry events. Looking around the vendor halls, there were no less than 30 vendors providing cybersecurity tools. All of them presented value and hit different portions of the attack surface. We got to thinking, though, if we were an MSP, we would be completely overwhelmed with the number of options in […]
EvilExtractor: Awareness and Hygiene!
EvilExtractor malware extracts sensitive or confidential information from a victim’s computer system without their consent or knowledge. It falls under the category of information-stealing malware, which is a prevalent and dangerous type of cyber threat. EvilExtractor (also known as Evil Extractor) is marketed for sale for other cyber criminals to steal data and files for […]
Infamous Emotet is Back in Play
Emotet, a self-updating modular trojan horse malware, has again raised its ugly head. Emotet, also known as “The Banker,” was first discovered in 2014 as a banking Trojan. However, over the years, it has evolved into a multifunctional malware that is primarily distributed through spam emails, malicious attachments, and infected links. It is typically delivered […]
Third-Party Integrations – Productivity vs. Risk
Although a patch alleviates the threat, a vulnerability dubbed GhostToken reveals the danger of installing third-party integrations into sanctioned apps. GhostToken allowed attackers irrevocable access to an individual’s Google account using an authorized third-party application converted into a malicious trojan. Bad actors could hide in plain sight by removing the application from a Google user’s […]