Connected Platforms

Connected Platforms Brisbane-based IT partner delivering proactive support, tailored solutions, and transparent pricing.

We manage your tech, so you can focus on your business.
šŸ“ž (07) 3062 6931 | šŸ’¬ Book your confidential, no-obligation chat today

Thereā€™s a lot of noise around AI malware at the moment.It starts to sound like something out of a movie šŸ¤–But whatā€™s happ...
05/06/2026

Thereā€™s a lot of noise around AI malware at the moment.

It starts to sound like something out of a movie šŸ¤–

But whatā€™s happening is more subtle.

And in some ways, more important to understand.

Attackers havenā€™t suddenly become geniuses overnight, but they have become faster.

Tools powered by AI are helping them write scripts more quickly, tweak attacks more easily, and produce messages that look far more convincing than they used to.

Things that once took time, effort, and a bit of skill can now be done much more speedily, sometimes by people with far less experience.

That has a knock-on effect.

A phishing email no longer needs to be perfect. It needs to be believable enough, and sent at scale šŸŽ£

If it reaches more inboxes and looks more like normal business communication, the chances of someone engaging with it go up.

Behind the scenes, the same applies to the technical side.

Attackers can test something, adjust it, and try again in a much shorter cycle.

Instead of reusing the same approach until it gets blocked, they can keep changing it just enough to slip through.

Thatā€™s why youā€™re hearing more about AI-generated threats.

Itā€™s not usually a single, fully automated attack running on its own. The people behind the attacks can move faster and try more variations with less effort.

For a business, the impact shows up in timing ā³

Once someone gets a foothold, the window to spot it and respond can be much shorter than it used to be.

What might once have taken hours can now unfold much more quickly, which puts more pressure on detection and response šŸ¤Æ

The interesting part is that the fundamentals havenā€™t really changed.

Most incidents still start with identity. A password is stolen, guessed, or handed over.

From there, attackers move through systems, often unnoticed at first.

Thatā€™s why things like multi-factor authentication still matter so much. It adds an extra step that makes a stolen password far less useful.

Visibility also becomes more important.

Tools like Microsoft Defender are designed to spot unusual behaviour across devices and accounts, so youā€™re not relying on someone noticing something feels off.

Whatā€™s different now is the pace. If attackers can move faster, the defence needs to keep up.

That means reducing the time between ā€œsomething looks oddā€ and ā€œweā€™ve checked and contained itā€.

It also means accepting that not every threat will look obviously malicious. Some will look like normal emails, normal logins, or normal activity, just slightly out of place.

Awareness and good habits still play a big role.

Because even with all the technology in place, many attacks still begin with a small moment. A click, a login, a decision made in a hurry.
ļæ½
šŸ’­ If an attack only needs a few minutes to get started, how quickly would your business notice? And what would happen next?

04/06/2026

Canā€™t read whatā€™s on screen? Zoom in instantly with this Windows trickā€¦

02/06/2026

When someone leaves your business, their access should leave with them.

But often, accounts are missed.

An old login here, a forgotten app thereā€¦ suddenly someone who no longer works for you could still get into your systems.

If youā€™re not completely sure that every account has been removed, itā€™s time to checkā€¦

Thereā€™s a security story doing the rounds right now thatā€™s needs your attentionā€¦ especially if your phone holds anything...
01/06/2026

Thereā€™s a security story doing the rounds right now thatā€™s needs your attentionā€¦ especially if your phone holds anything important šŸ“±

Researchers have demonstrated a way to pull sensitive data from certain Android phones in under a minute.

And itā€™s not as far-fetched as it might sound.

They focused on devices using chips from MediaTek, which are found in a surprisingly large number of Android phones.

The technique they used doesnā€™t involve tricking someone into clicking a link or installing anything. Instead, it works at a deeper level of the device.

They connected to the phone via USB while it was powered down and accessed a part of the system thatā€™s supposed to keep sensitive data safe.

This area, often described as a ā€œsecure zoneā€, is where things like encryption keys and PIN protection are handled.

From there, they were able to extract those keys, unlock the phoneā€™s storage outside of Android, and work out the PIN.

Once thatā€™s done, the contents of the device become accessible. Messages, photos, files, and even things like crypto wallet data šŸ˜±

Now, rest assured, this isnā€™t something that can be done remotely. Someone would need physical access to the phone and the right tools.

But that doesnā€™t make it a niche risk.

Phones get lost, stolen, or left unattended all the time, and thatā€™s where this kind of weakness becomes relevant.

What this really highlights is how much trust we place in our phones without thinking about whatā€™s underneath.

They feel secure because theyā€™re personal and protected by a PIN or fingerprint, but theyā€™re still complex systems made up of hardware and software layers.

If thereā€™s a flaw in one of those layers, it can undermine everything else ā˜ ļø

The good news is that this vulnerability has been disclosed responsibly and patches have been issued, so keeping devices up to date really does matter here.

Itā€™s also a reminder to think carefully about what ends up stored on a phone, especially anything sensitive or business-critical.

Itā€™s easy to assume that because a device is in your pocket, itā€™s also under your control.

Most of the time thatā€™s true. But as this shows, control can shift quickly under the right conditions.

šŸ¤” If your phone fell into the wrong hands for a short time, what would it give access to? And is that a level of exposure youā€™re comfortable with?

31/05/2026

Are the passwords protecting your business as strong as you think they are?

Thereā€™s a growing shortcut that looks clever on the surface, and feels efficient, but could weaken your security without you realising.

If youā€™re using AI in your business, this is something you need to understandā€¦

If your business website runs on WordPress, hereā€™s a quick check for you šŸ”ŽThereā€™s a popular plugin called Quiz and Surve...
30/05/2026

If your business website runs on WordPress, hereā€™s a quick check for you šŸ”Ž

Thereā€™s a popular plugin called Quiz and Survey Master (QSM).

Itā€™s used by more than 40,000 websites to create quizzes, surveys and forms without needing any coding.

Unfortunately, versions 10.3.1 and older were recently found to have a serious security flaw.

The issue is whatā€™s known as an SQL injection vulnerability.

SQL is the language used to talk to a websiteā€™s database, the part that stores things like user accounts, submissions, and other important data.

An SQL injection flaw means someone can sneak malicious commands into that database.

In this case, any logged-in user, even someone with a basic subscriber account, could potentially inject commands into the system.

That could allow actions like:

šŸš« Accessing sensitive dataļæ½
šŸš« Extracting information from the databaseļæ½
šŸš« Manipulating content

The vulnerability is tracked as CVE-2025-67987, and it was fixed in version 10.3.2.

The latest version available is 10.3.5, which is the safest bet.

Based on WordPress.org data, just over half of websites using QSM are on version 10.3. That means a large number are likely still vulnerable.

Thatā€™s potentially tens of thousands of sites.

Right now, thereā€™s no confirmed evidence of this flaw being actively exploited. But once a vulnerability is public, attackers often start scanning the internet looking for unpatched sites.

šŸ‘‰ If your site uses this plugin, the solution is straightforward: Update it immediately šŸ‘ˆ

More broadly, this is a reminder of something I say often to business owners: WordPress itself isnā€™t usually the weak link. Itā€™s the plugins.

Every plugin you install adds functionality, but also adds potential risk.

If youā€™re not actively using a plugin or theme, it shouldnā€™t just be deactivated. It should be deleted from the server completely.

Websites arenā€™t a set and forget asset. Theyā€™re part of your digital infrastructure.

If theyā€™re vulnerable, they can become an entry point into your wider systems. Especially if admin accounts reuse passwords across services.

ā“ When was the last time someone checked which plugins your website is running and whether theyā€™re fully up to date?

If youā€™ve ever tried to get an AI tool to understand a whole project instead of just one document, youā€™ll appreciate thi...
29/05/2026

If youā€™ve ever tried to get an AI tool to understand a whole project instead of just one document, youā€™ll appreciate thisā€¦

Microsoft has introduced something called Copilot Agents in OneDrive.

And this is where AI starts to feel a bit more useful for real-world business work šŸ¤–

Hereā€™s the problem itā€™s trying to solve.

Normally, if you ask Copilot to summarise or analyse something, youā€™re doing it one file at a time. One Word document. One spreadsheet. One PowerPoint.

But projects donā€™t live in one file.

They live across proposals, meeting notes, budgets, timelines, research documents, and email summaries.

With OneDrive Agents, you can now select up to 20 related files and bundle them together into whatā€™s saved as a .agent file.

Instead of asking: ā€œSummarise this fileā€¦ā€

You can ask: ā€œWhat deadlines are coming up across this whole project?ā€

ā€œWhere are the risks?ā€ļæ½

ā€œWhat did we agree in the last three meetings?ā€

And it has the context of all the selected files, not just one.

The agent behaves like other AI tools. It can summarise, answer questions, surface key points. But itā€™s operating with a broader understanding.

Even better, these agents are saved as files inside OneDrive.

That means you can share the .agent file with colleagues. They donā€™t need to recreate the setup themselves. Youā€™re all working from the same AI ā€œviewā€ of the project.

As projects evolve, you can add or remove documents from the agent or refine the instructions it uses.

It stays aligned with the latest information instead of becoming outdated.

Right now, this feature is available to people with a Microsoft 365 Copilot license accessing OneDrive via the web.

Itā€™s clearly still evolving. Microsoft is asking for feedback, which suggests itā€™s watching closely to see how businesses use it.

From a business ownerā€™s perspective, the real value is reducing the time spent hunting across folders, trying to piece together context.

If AI can help you understand a whole project in one place instead of ten separate files, thatā€™s meaningful productivity.

šŸ¤” The question is, would you trust an AI agent to interpret multiple important documents at once, or would you still prefer to read everything yourself?

If you receive a message saying a large Apple Pay payment has been blocked and you need to call a number urgentlyā€¦ STOP ...
25/05/2026

If you receive a message saying a large Apple Pay payment has been blocked and you need to call a number urgentlyā€¦

STOP šŸš©

Thereā€™s a new scam circulating that targets Apple users, and itā€™s very convincing.

The email or text usually claims that a high-value purchase has been attempted using your Apple Pay details.

It might mention suspicious activity, a blocked transaction, or even a fake case number. The branding looks polished. The formatting feels official.

Really? The phone number in the message connects you directly to scammers.

The tactic is simple.

Create anxiety about losing a significant amount of money, then offer a quick solution šŸ˜±

When people believe their account is under threat, theyā€™re more likely to act without double-checking.

Once on the phone, the criminals typically try to gather your Apple ID login details, verification codes sent to your device, or card information.

With that, they can attempt to take control of your account āš ļø

Here are a few important facts:

Apple does not send fraud alerts asking you to call a number included in an email or text message.

It also doesnā€™t use aggressive language suggesting your account will be locked if you donā€™t respond immediately.

That kind of urgency is a common phishing technique šŸŽ£

If you ever receive something like this, check the senderā€™s email address carefully.

It may look genuine at first glance, but small spelling errors or unusual domain names often give it away.

Generic greetings like ā€œHello {Name}ā€ instead of your actual name are another warning sign.

Itā€™s also worth remembering that if a payment really were suspicious, your bank would normally step in automatically.

Banks tend to block unusual transactions and contact you directly through official channels.

You would approve a legitimate payment, not scramble to stop it via a random phone number in a text.

If youā€™re unsure, donā€™t use any contact details from the message šŸš«

Instead, go directly to Appleā€™s official website yourself and use the support options there.

Or check your purchase history on your device: Settings > Tap your name > Media & Purchases > View Account > Purchase History

That will show you whether any genuine transactions have taken place.

Scammers are becoming more sophisticated. Theyā€™re using better branding, cleaner layouts, and fewer obvious mistakes.

That makes it even more important to slow down and verify before responding.

ā“ If someone in your business received a message like this, would they know to ignore the phone number and check through official channels instead?

Do you use an Android phone for work?This is worth a couple of minutes of your attention šŸ“± Security researchers h...
23/05/2026

Do you use an Android phone for work?

This is worth a couple of minutes of your attention šŸ“±

Security researchers have uncovered a new piece of Android malware that can track almost everything you do on your phone.

And I donā€™t mean just basic tracking.

Weā€™re talking about:

šŸ‘‰ PIN entriesļæ½
šŸ‘‰ Login credentialsļæ½
šŸ‘‰ Messagesļæ½
šŸ‘‰ Banking app activity

The clever (and worrying) part is how it spreads šŸ¦ 

The app is called TrustBastion.

It pretends to be a security tool. Victims see pop-ups or adverts claiming their phone is infected with malware or scam messages.

The ā€œsolutionā€? Install this app to clean things up.

That fear tactic works more often than youā€™d think šŸ˜±

At first glance, the app looks harmless. But itā€™s whatā€™s known as a dropper.

That means the app itself doesnā€™t contain the malicious code straight away. Instead, it downloads it after installation.

Once installed, it shows a fake ā€œupdateā€ screen that looks very similar to official Android or Google Play messages.

If you agree, a manipulated APK file (thatā€™s the installation package format Android uses) is downloaded in the background.

But the download doesnā€™t come from some obviously shady server. It comes from Hugging Face, a well-known developer and AI platform with a strong reputation.

Because the infrastructure looks legitimate, many security tools donā€™t immediately flag it as suspicious. The attackers are effectively hiding behind a trusted name.

After installation, the malware requests extensive permissions and pretends to be a system component called ā€œPhone Securityā€.

It then asks for Accessibility permissions.

Accessibility features are designed to help users with disabilities. But when misused, they give apps the ability to read whatā€™s on your screen, log what you type, and overlay content on top of other apps.

That means this malware can:

āš ļø Capture PIN codes and unlock patternsļæ½
āš ļø Overlay fake login screens on top of real banking appsļæ½
āš ļø Intercept payment details and messages

The stolen data is sent back to the attackersā€™ servers, and the malware can even receive updates or new instructions.

To make detection harder, the criminals are using something called server-side polymorphism.

That means they generate slightly modified versions of the malware every 15 minutes.

Within a month, researchers found more than 6,000 variants.

Why?

Because traditional antivirus tools often look for known ā€œsignaturesā€. If the file keeps changing slightly, itā€™s much harder to block.

So, what should you take from this?

First: Only install apps from the Google Play Store.
ļæ½
Second: Be extremely cautious of apps that claim to clean or secure your phone while asking for deep system permissions.
ļæ½
Third: Only enable Accessibility access if you fully understand why the app needs it.

And donā€™t assume that because something is hosted on a reputable platform, itā€™s automatically safe.

If your business allows staff to access email, banking or cloud systems from thei

Address

527 Gregory Terrace, Fortitude Valley
Fortitude Valley
4006

Opening Hours

Monday 7:30am - 5pm
Tuesday 7:30am - 5pm
Wednesday 7:30am - 5pm
Thursday 7:30am - 5pm
Friday 7:30am - 5pm

Telephone

+61730626931

Website

Alerts

Be the first to know and let us send you an email when Connected Platforms posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category