A security alert has been released for DRUPAL web sites. Drupal is one of the top 3 CMS (content management systems) for websites. These vulnerabilities have not been found in Joomla and WordPress (the other top 2 CMS’s). One of the issue vulnerabilities are found in the update process and allow hackers to upload “poisoned” content to the server or even take over the server.
Even if you’re not currently taking adequate steps to protect yourself (and your company!) when you’re using the Internet, deep down you know you should be. Or maybe you already think you have enough precautions in place – but can you ever be too careful? In these times of Internet fraud, phishing scams and high profile hacks, there has never been a better time to take another look at your online safety.
It seems Google is taking the issue of online security increasingly serious as they have recently unveiled their latest attempt to stem the tide of phishing. Trialing a password-free login option, they also aim to curb the dangers caused by ineffective and over simplified passwords – something that every small and medium sized business needs to be paying attention to.
There are numerous strains of malware out there, but one particularly unpleasant one is ransomware. While this malicious software has been around for some time, recently a newer, nastier upgrade was discovered. Posing a threat to businesses of all sizes, the program, called Chimera, has upped the ante when it comes to scaring its victims out of their hard-earned cash.
Earlier this month, social media platform Twitter alerted a number of its users to the fact that their accounts may have been hacked into by something, or someone, known as a “state-sponsored actor.” While a warning of this kind is certainly not unprecedented – for some time now, both Facebook and Google have also been contacting any of their users who they think may have been targeted – it suggests that attacks of this type are becoming more widespread.
With the vast majority of end users turning to Google as their search engine or default browser of choice, it comes as no surprise to learn that the company takes security seriously. But in a perpetually changing landscape where anti-virus and anti-malware tools are constantly chasing their tails in order to stay up to date with the latest threats, there cannot be many small to medium-sized business owners who can afford to ignore the issues surrounding cyber security.
We have addressed previously the fact is that the human is the weakest link in any security chain. There are unfortunately many ways that the human link can be disrupted. In this article we will address one of those, one that may in fact be the weakest link in the weakest link – Passwords.
For the last 4 years, Shred It, the document destruction company has been sponsoring an international survey to gauge business executives’ attitudes towards security. The latest one, from 2014, shows that in America executives are actually de-prioritizing security within their organizations.
You and probably everyone in your business has been the subject of a phishing attack at some point. If you receive email, you have received a phishing email. What exactly is a phishing attack? Broadly defined, Phishing means an exploratory attack on a broad audience.
Original Article: http://thevarguy.com/business-technology-solution-sales/061015/top-security-areas-sps-need-focus
As a professional in the IT field for 20 years, I believe this is a great article because it demonstrates in a few paragraphs all the things we are constantly reminding our clients.