From “Homeland Security Warns Windows PC Users to Uninstall Quicktime”
Fox News (04/18/16) Published by ASIS
The U.S. Department of Homeland Security and cybersecurity firm Trend Micro are advising Windows PC users to immediately uninstall Apple’s Quicktime video player, after two new bugs were found in the software. According to Trend Micro, the bugs could be used to launch attacks on PCs if users visit a compromised web page or open a tainted file. As Apple is no longer issuing security updates for Quicktime for Windows, despite the presence of the bugs, Trend Micro said removing the software is the safest call. While the company said it is not aware of any cases where the bugs had been exploited by hackers, DHS’s United States Computer Emergency Readiness Team, which put out a similar alert on April 14, said the “only mitigation available is to uninstall QuickTime for Windows.” The alert does not apply to Mac operating systems.
From “Do Workers Have a False Sense of Security? New CareerBuilder Survey Looks at Security in the Workplace”
PR Newswire (04/14/16) Published by ASIS
Ninety-three percent of workers say their office is a secure place to work, according to a survey of more than 3,000 respondents by CareerBuilder. However, their sense of security may be misguided. Thirty-seven percent of workers say they have a security guard at their workplace, and 22% are unsure of how they would protect themselves in the case of an emergency in their office that poses a physical threat. Seventeen percent of workers say their workplaces are not well-protected in case of a fire, flood, or other disaster, and 22% say they do not believe their companies have emergency plans in place should such events occur. Thirty-one percent of workers say their workplace is not well-protected from a physical threat from another person, and 31% say their workplaces are not well-protected from digital hacking threats.
By ASIS From “Cyberthieves’ Latest Target: Your Tax Forms”
Wall Street Journal (04/04/16) Sidel, Robin
A new email scam is putting vast amounts of individuals’ tax information in the wrong hands. The perpetrator, impersonating a company’s high-ranking executive from a phony email address that appears legitimate, fools staffers in the payroll or human resources departments into forwarding W-2 forms or other tax information. Thousands of workers have already fallen victim to the scam, which has hit smaller companies to companies as big as Weight Watchers. According to experts, this data is being sold in underground markets to criminals who use the data to file fraudulent tax returns and collect refunds. These thefts can often include Social Security numbers, which are difficult to retain once compromised. The attack has the potential to wreak havoc on a victim for years. Tax officials say thieves are targeting companies of all sizes; at least 50 have already reported that they were victims. The reason the scam is so effective is because it is so simple and low-tech. When preying upon the right type of victim, it becomes very simple to extract the desired information. It also shows that hackers are becoming more aware of who exactly they are targeting. According to experts, the scam has proven that hackers focus on specific employees who have valuable information rather than hacking into a network in a blind search for data.
This Spring we will begin sharing important security news, home security product reviews, videos geared toward safety education, and some really simple ways to keep yourself and your property safe.
Here’s a taste:
Do you want to avoid gas pump credit card “skimmers” but still get your credit card points? There’s an easy solution! Use your credit card to buy gas station gift cards and refill on-line. Use the gift cards at the pump.
You got your points and your credit cards are safer!
Can’t wait to see you in April!