1Easy IT. Limited

20/08/2024

We strive to provide the best possible service, and your feedback is crucial to helping us improve and grow.

If you have been satisfied with our service, we would be grateful if you could take a moment to leave us a review on 1EasyIT Ltd Google reviews. Your positive feedback can help others make informed decisions about our services.

https://g.page/r/CfPLk-EhHb2PEBM/review

Additionally, if you know of any other businesses or individuals who could benefit from our services, we would be honoured if you could refer us to them. Your referrals are the highest compliment we can receive.

Thank you for your time and continued support. Please don't hesitate to reach out if there is anything we can do to assist you further.

12/08/2024

https://www.bleepingcomputer.com/news/security/malware-force-installs-chrome-extensions-on-300-000-browsers-patches-dlls/

An ongoing and widespread malware campaign force-installed malicious Google Chrome and Microsoft Edge browser extensions in over 300,000 browsers, modifying the browser's executables to hijack homepages and steal browsing history.

08/08/2024

You can also follow on Instagram to see more.

06/08/2024

The contemporary landscape of technology is undergoing rapid evolution, facilitating swift transformations and advancements that contribute to an accelerated pace of change. This phenomenon extends beyond the realm of technology trends and emerging technologies; significant shifts are occurring, prompting IT professionals to recognize that their roles will undergo substantial changes in the upcoming contactless era.

06/08/2024

Is your computer running slow or facing technical issues? Let us help! Our expert technicians offer fast, reliable repairs and maintenance for all types of computers; from virus removal to hardware upgrades, we've got you covered. Contact us today for a free consultation and get your computer back to peak performance!

31/07/2024

THE FUTURE IS NOW: Exploring Quantum Computing.
Dive into the realm of quantum computing where bits meet qubits, unlocking new potentials in speed and security.

31/07/2024

19/07/2024

Office 365 shell WCSS Attack
Updated 19th July 2024
What is Office 365 Shell WCSS?
This attack is becoming more and more prevalent over recent weeks. The typical way this attack can occur is by visiting certain websites with malicious code embedded in them. Examples of sites to avoid are free sports/movie streaming websites where this malicious code is hidden.
Office 365 Shell WCSS is the browser code that runs whenever a user navigates to (most) Office365 applications in the browser. The shell, also known as the suite header, is shared code that loads as part of almost all Office365 workloads, including SharePoint, OneDrive, Outlook, Yammer, and many more.

Definition of an Office 365 shell WCSS attack
An Office 365 shell WCSS attack is one that targets Microsoft Office 365 to gain access to a user's account by bypassing standard authentication challenges. The exploit allows the attacker to gain access to all users account without knowing the username or password and will even bypass accounts that are configured for MFA. The exploit is made possible by the harvesting of a legitimate Microsoft 365 session Token which can occur when the account owner clicks a link provided by the attacker (typically a Phishing email). The token may also be acquired by the attacker if malware is successfully installed on the device. Once the attacker has the token, they can log into the account and perform any action permitted by the account.
To help prevent a WCSS shell attack:
1. Train users to NEVER click on a link or document unless they were expecting it from a trusted party
2. Configure Microsoft 365 to expire user session tokens frequently by establishing a low idle session timeout value.



3. Turn off the optional prompt for users to "keep me signed in" to Microsoft 365 (custom branding configuration required).
4. Set sign in frequency controls using conditional access (if available to the tenant)
5. Ensure that admin accounts are never left logged in an unattended
6. Audit guest accounts regularly and remove old and unused accounts
7. Keep Web browsers (Chrome, Edge, Firefox, etc.) up to date.
8. Ensure that local Office 365 applications are updated regularly.
To help mitigate the consequences of a successful WCSS shall attack:
1. Limit user permissions to the lowest required roles
2. Monitor and restrict access to sensitive data and resources to only those accounts that require access as part of their job function
3. Regularly review and update security policies, including email filtering and data retention policies.
4. Monitor user account activity for email forwarding, excessive document downloads or deletions and excessive file sharing.
5. Using SaaS Alerts Respond, establish rules that will expire tokens and disable sign in when suspicious account behaviour is detected. Especially when suspicious behaviour is recognized by account usage from outside approved geolocations.
📘 Facebook | 🐦 Twitter | 📸 Instagram | 🔗 LinkedIn