Neighborhood Nerd

05/08/2020

Never follow a link in your email to log in to your email account. and it have, don't feel bad. 150+ top executives have done it already!

Targeted Phishing Attacks Successfully Hacked Top Executives At 150+ Companies

TheHackerNews, 30 Apr 2020: In the last few months, multiple groups of attackers successfully compromised corporate email accounts of at least 156 high-ranking officers at various firms. Dubbed 'PerSwaysion,' the newly spotted cyberattack campaign leveraged Microsoft file-sharing services—including Sway, SharePoint, and OneNote—to launch highly targeted phishing attacks. According to a report Group-IB Threat Intelligence team published today and shared with The Hacker News, PerSwaysion operations attacked executives of more than 150 companies around the world, primarily with businesses in finance, law, and real estate sectors. So far successful and still ongoing, most PerSwaysion operations were orchestrated by scammers from Nigeria and South Africa who used a Vue.js JavaScript framework-based phishing kit, evidently, developed by and rented from Vietnamese speaking hackers. "By late September 2019, PerSwaysion campaign has adopted much mature technology stacks, using Google appspot for phishing web application servers and Cloudflare for data backend servers." Like most phishing attacks aiming to steal Microsoft Office 365 credentials, fraudulent emails sent as part of PerSwaysion operation also lured victims with a non-malicious PDF attachment containing 'read now' link to a file hosted with Microsoft Sway. "The attackers pick legitimate cloud-based content sharing services, such as Microsoft Sway, Microsoft SharePoint, and OneNote to avoid traffic detection," the researchers said. Next, the specially crafted presentation page on Microsoft Sway service further contains another 'read now' link that redirects users to the actual phishing site—waiting for the victims to enter their email account credentials or other confidential information. Once stolen, attackers immediately move on to the next step and download victims' email data from the server using IMAP APIs and then impersonate their identities to further target people who have recent email communications with the current victim and hold important roles in the same or other companies. "Finally, they generate new phishing PDF files with the current victim's full name, email address, legal company name. These PDF files are sent to a selection of new people who tend to be outside of the victim's organization and hold significant positions. The PerSwaysion operators typically delete impersonating emails from the outbox to avoid suspicion." "Evidence indicates that scammers are likely to use LinkedIn profiles to assess potential victim positions. Such a tactic reduces the possibility of early warning from the current victim's co-workers and increases the success rate of new phishing cycle."

12/20/2014

How to reduce your exposure to malware and advertisement tracking. In windows 7 or 8, go to the control panel and create a new limited user account. Give this account a name and password you will remember. Next place a shortcut on your desktop to your favorite browser (Chrome, FireFox, IE). Before launching the browser, hold down the shift key and right click the shortcut. Choose run as a different user. Enter the user name and password of the limited user you created. Now surf at a lower risk of malware infection. Now to limit the tracking stuff. Create multiple users. One for Facebook, Bank accounts, and soon. DO NOT LOG ON THE COMPUTER WITH ANY OF THESE USERS ACCOUNTS. Only right click run as…

Why does this work! The browser settings and temporary file areas are in a different user profile, these profile cannot interact with each other or the live profile by default. The live profile is the user account you log on to the computer with, this setup limits the ability to install and activate the malware you might download while surfing. Also the downloaded files and programs will not appear in your live profile download folder. If you use multiple accounts, the advertising tracking software cannot look at the different profile and thus cannot track all of your internet usage, only the limited surfing profile at that time. To clean things up, go to the control panel and delete the user account. Choose yes, when asked to delete the users profile files. (do not delete your active accounts). Safe surfing

04/08/2014

Zero days left for Windows XP and Office 2003 support, it’s gone!

End of Life for Windows XP operating system and Office 2003 suite takes effect on April 8 (TODAY), meaning no more security updates, bug fixes, or enhancements will be available from Microsoft.

Why should a XP owners care, because security risks in Windows, 7 and 8 may also reside in XP also. When a fix (patch) is developed by Microsoft for Windows, 7, and 8 to address the issue. Microsoft will not develop the patch for XP, leaving the XP computer valuable to a now “known” security risk that viruses and malware can exploit. “So what” XP owner say! Well, it’s your bank account, your email account, and your ??? account at risk of being compromised without knowledge. Surf with XP at your risk!

We can refurbish your XP computer to Windows 7! Neighborhood Nerd is an authorized Windows 7 refurbish provider.

03/07/2014

Does your employees fix any electrical, plumbing, or AC issues for your business? Then why let them setup and maintain your computer system? Let Neighborhood Nerd handle all of your business’s IT needs. Now your employees can spend their time working and not fixing.

03/07/2014

Do you know what your employees are doing on the Internet? Is there Malware mining the network for HR data, credit card numbers, or trade secrets? Neighborhood Nerd can help protect your business from Internet threats and rogue employee surfing. We are your IT department!

06/21/2011