It’s been a quiet week on the cyber security front – and by “quiet” we mean “same old ransomware attacks“. Ransomware is the subject that’s been getting everyone’s attention lately, as the number of attacks just keeps growing.

We published a security alert about a new ransomware strain. What’s particular about this one it’s that it claims to donate your ransom to children charity. Emotional extortion much? And of course it doesn’t donate anything, it’s just a social engineering trick to make people pay the ransom.

Another major article, that we’ve been working on for a veeery long time, is this list of tools that you can use to enhance your security and privacy. Last time we counted there were more than 50 free tools – and I’m sure we’ll quickly expand this list.

We also updated one of the most popular articles from our blog (almost 1.000 shares on Linkedin!) : 4 surprising reasons why the CEO is the biggest security risk for the company. Please join the conversation and let us know what’s your opinion on the subject.

Now off to what else is new in the cyber security world:



Security articles of the week



1. FBI advises against paying the ransom

After last year they were advising people to pay the ransom, now they changed their mind. FBI advises you against paying the ransom, as you can never be sure if you’ll receive the key to decrypt your data.


2. 272 million stolen credentials are traded in Russia

272 million stolen credentials – that means user names and email accounts passwords – are being traded in the Russian “underground”.


3. Hacker explains how he breached Clinton’s email server

Romanian hacker Marcel Lazăr Lehel, also known as Guccifer, explains how he breached Clinton‘s email server.

(spoiler alert: just like he breached any other email servers)


4. New report reveals the security vulnerabilities behind Samsung’s SmartThings

Balance between user’s security and comfort should become a priority to companies that commercialize Internet of Things products.


5. Electric and water utility shut down its IT systems after a ransomware attack

An electric and water utility from Michigan shut down its IT systems for a whole week because of a ransomware attack.


6. How to tell if you’ve been hit by fake ransomware

Hit with fake ransomware? The odds are small, but there’s still a possibility that it happened. Here’s how you can easily tell.


7. OpenSSL security flaw allowed cybercriminals to decrypt HTTPS traffic

OpenSSL released some patches that fix severe security flaws. Two of them allowed cybercriminals to decrypt HTTPS traffic or execute malicious code on a web server.


8. How cybercriminals are using victim’s location

How cybercriminals are using victim’s location to craft out customized scams and increase their odds to succeed.


9. Cybercriminals don’t want just your credit cards

They also want to find out all the personal information they can find out about you.


10. Report shows that fifth of breaches are caused by “miscellaneous errors”

Blame it on the victim:

“[…] many organizations are still doing security like they were decades ago. The leading cause of reported data breaches is “miscellaneous errors” – mistakes made by employees – that open the door to attackers.”




Since yesterday was World Password Day, here’s a fun comic from Fredo & Pid’jin that illustrates what some think “strong password” means:

Leave a Reply

Your email address will not be published. Required fields are marked *