SMB

401 articles

Data exfiltration via observing light emitting diode (LED) activity.

LED data exfiltration

Researchers have come up with a way to exfiltrate confidential data by observing LED activity.

How to protect RAM secrets

What can get stolen from RAM, and what’s hiberfil.sys got to do with it?

Vacation schedule scam

Cybercriminals prey on corporate credentials by sending fake HR emails.

Hijacking a YouTube channel without a password

Hacking YouTube channels with stolen cookies

How scammers can hack your YouTube channel without knowing a password and second factor.

Security risks associated with the new .zip and .mov domains

Beware the .zip and .mov domains!

Website names in the ZIP and MOV domains are indistinguishable from file names. How will this affect IT systems, and what will threat actors do?

The most popular ways to launder cryptocurrency

How cybercriminals launder dirty crypto

Crypto mixers, nested exchanges, cash-out and other crypto-laundering methods used by ransomware operators.

Purging your company’s LinkedIn page of fake employees

Fake accounts on LinkedIn: time for a purge

Why you should purge your company’s LinkedIn page from fake employee profiles, and how to do it.

How to deploy an information security solution in a midsize business

Implementing information security solutions in SMBs

The pros and cons of different approaches to deploying and maintaining information security systems.

What conversation hijacking is and how you can protect your employees from it.

Conversation hijacking and how to deal with it

Cybercriminals can access the e-mails of folks you’re in correspondence with and then try to hijack your conversations.

CVE-2023-28252 zero-day vulnerability in CLFS

Kaspersky experts discover a CLFS vulnerability being exploited by cybercriminals.

How to get across the importance of information security without a budget for proper training.

Info-security training — with glue and scissors

DIY security trainings for your colleagues that are both fun (for you) and educational (for them).

Supply-chain attack on 3CX clients

Cybercriminals are attacking 3CX VoIP telephony software users via trojanized applications.

SharePoint as a phishing tool

Cybercriminals are using hijacked SharePoint servers to send dangerous notifications.

Copyright infringement backlink scam

How scammers force website owners to add potentially dangerous links by threatening harsh consequences for copyright infringement.

How too-eager-to-please new employees get scammed

Scammers are using social engineering to shake down newly onboarded employees.

Why you shouldn’t use desktop messengers

Five reasons not to use desktop messengers

We explain why it’s best not to use desktop versions of messengers such as WhatsApp, Telegram, Signal and the like.

VPN for small businesses

In recent years, small businesses have increasingly become the target of man-in-the-middle cyberattacks. Protect yourself by using a VPN.

How cybercriminals can get hold of your passwords

How your password сan get into the wrong hands

And more importantly — how to stop your passwords from being used by cybercriminals.

Prilex malware has learned how to block NFC based transactions to prevent contactless payments.

Prilex blocks NFC transactions

The new version of Prilex malware, used to attack POS terminals, now can block NFC transactions.

How dangerous are Signal vulnerabilities?

Newly-discovered Signal vulnerabilities — how dangerous are they?

Researchers have found vulnerabilities in the desktop client of the Signal messenger. Let’s see how dangerous they really are.

How dangerous are Threema vulnerabilities?

Threema vulnerabilities, and which instant messenger has the best protection?

What to do if your secret messenger isn’t secret enough.

Privacy & Kids

TARGETED SECURITY SOLUTIONS

SMB