The LMT Blog

LMT's Response to the PrintNightmare Vulnerability

Jul 8, 2021 3:38:06 PM / by April L. Sy posted in security, Cybersecurity, Business Continuity, Microsoft, PrintNightmare

0 Comments

PrintNightmare

Just before the 4th of July long weekend, hackers were on the attack. On July 1, 2021, Microsoft released news of an active exploit impacting all Windows systems. This critical vulnerability, known as “PrintNightmare” (CVE-2021-1675) could have given an attacker full control of a Windows system (including the ability to deploy ransomware) if a user interacted with malicious code (via malicious attachment, web advertisement, webpage, etc.) that targeted the Printing Subsystem in Windows.

Read More

Alert from KnowBe4: Phony FINRA Phishing

Jun 18, 2021 10:52:50 AM / by KnowBe4 posted in IT, Cyber-Security, Cybersecurity, Small Business, Business, Digital Communication

0 Comments

Once again cybercriminals are impersonating the Financial Industry Regulatory Authority (FINRA), which is the largest brokerage regulation company in the US. Organizations strive to be compliant with regulations, which is why receiving an email that appears to be from FINRA can be quite startling.

In this FINRA-themed phishing email, the sender’s email address uses the domain gateway[dash]finra[dot]org. The email claims that your organization has received a compliance request and it directs you to click on a link for more information. To add a sense of urgency, the message also states “Late submission may attract penalties”. The email even includes a case number, request ID, and a footer with legal jargon to make it feel legitimate. But if you click the link, you will be redirected to a malicious website. Don’t fall for it!

Use the tips below to stay safe from similar attacks:

Read More

Alert from KnowBe4: Personally Identifiable Information

May 11, 2021 11:00:00 AM / by KnowBe4 posted in IT, Cyber-Security, Cybersecurity, Small Business, Business, Digital Communication

0 Comments

What is sensitive information? 

Read More

LinkedIn Data of 500 Million Users Hacked, Up for Sale: KnowBe4 Report

Apr 21, 2021 11:45:00 AM / by KnowBe4 posted in IT, security, Cyber-Security, Cybersecurity, Cybercrime, Cyber Crime, Business

0 Comments

Microsoft-owned social network LinkedIn is reportedly the latest victim of a massive data breach where data of 500 million user profiles has been allegedly leaked by cybercriminals. The leaked data includes email addresses, phone numbers, workplace information, full names, account IDs, etc. The potential for social engineering attacks is huge.

According to CyberNews, the potential of the leak is huge. An individual selling the data on a hacker forum claims it was scraped from 500 million profiles. The leaked data includes users’ email addresses, phone numbers, workplace information, full names, account IDs, links to social media accounts, and gender details.

Confirming the news to Business Insider, a LinkedIn spokesperson said that the leaked data has been scraped from LinkedIn. “We’re still investigating this issue, the posted dataset appears to include publicly viewable information that was scraped from LinkedIn combined with data aggregated from other websites or companies.” “Scraping our members' data from LinkedIn violates our terms of service and we are constantly working to protect our members and their data,” the spokesperson added.

The company also informed that the data of private members is safe. This means the scraped data only includes information from LinkedIn public members.

Earlier this week, personal data of 533 millions of Facebook users were allegedly leaked including 6 million people in India. The leaked Facebook data has been posted for free on hacking forums and includes date of joining, place of work, names, gender, occupation and relationship status of users.  Full story at: https://www.thequint.com/tech-and-auto/data-of-500-million-linkedin-users-for-sale-on-a-site-report

Read More
Share on Social: