Cybersecurity firm BlackCloak provides recommendations on how to combat recent cyber incidents.
235 MILLION INSTAGRAM, YOUTUBE, AND TIKTOK PROFILES EXPOSED
Last week, public facing profiles for Instagram, YouTube, and TikTok were exposed through a misconfigured database.
This exposure is likely to result in increased phishing attacks and ransomware campaigns, so be vigilant.
ALEXA BUG COULD HAVE EXPOSED YOUR VOICE HISTORY TO HACKERS
A flaw in Amazon Alexa devices could have exposed prior voice requests available in your history to third-parties.
Amazon has patched the flaw, but please ensure vigilance and delete recordings quarterly to minimize risks to you and your family.
FBI AND HOMELAND SECURITY REPORT RISE IN VISHING ATTACKS
The FBI and Cybersecurity & Infrastructure Security Agency (CISA) warned of increased “Vishing” attacks given remote work in an Advisory.
Vishing is phishing over voice calls. In other words, workers receive calls from “IT” or someone faking being a part of the company (or other provider – Apple, Google, Cable/Internet Co.) and social engineer you for your passwords.
The attackers will try to get your (1) username, (2) password, and (3) any one-time use token during the call. Be especially vigilant for these phone calls – Caller IDs can be easily faked.
WHAT DO WE RECOMMEND YOU DO?
Instagram, YouTube, TikTok – go ahead and change your passwords and check your public/private profile settings
Amazon Alexa – delete your voice history using the Alexa App > Settings > Alexa Privacy > Manage Your Alexa Data > Manage Your Voice Recordings (click “here”) > Select All History > Delete
Vishing Protection – be especially vigilant for these phone calls – Caller IDs can be easily faked. Hang up and dial the phone number for your company IT team that you know or email their known address. Do not engage with the caller…Read more