Tuesday, October 31, 2017

Phishing attack targets iCloud

Here’s just a small report, on a rather transparent phishing attack.

It purports to come from “Support iCloud” and says that your Apple ID has been blocked.  But it’s easy to tell it didn’t come from Apple.

Curiously, I signed onto iCloud in the normal way on my Windows 10 and the site asked some extra security questions. 
There had been a week where I didn’t update the iPhoto cloud because I have new WiFi (from Cox) in the condo and I hadn’t connected the smartphone to it yet. 

Tuesday, October 17, 2017

"Krack" attack can compromise WPA2 wi-fi security

Rapid7 has reported a serious security flaw in wi-fi routers in homes and businesses that would appear when external enemies are in close proximity, such as in adjacent apartments, hotels, or public wi-fi connections.

Alyssa Newcomb on NBC News reports on it as the "Krack Attack".  It bypasses WPA2 standards.

Users should apply forthcoming Windows and Max fixes and firmware from router companies as soon as possible,  Firmware usually gets updated be restarting a router once a week. 

Thursday, October 05, 2017

Phishing attacks try to intercept real estate sales with wire fraud

Persons approaching purchase of property in real estate transactions should become wary of phishing attacks that submit wire transfer instructions which turn out not to be from the real title company.

People should only wire money to accounts that they can confirm separately really to belong to the title company. 

Monday, October 02, 2017

Bluetooth security vulnerabilities are reported

Webroot is warning users of the risks of Bluetooth devices as possibly attracting hackers, as in this article   Webroot advises users to turn off devices when not in use.  This appears to apply to wearable devices, which could provide a portal for hacking personal information from phones.


I’ve noticed that the Microsoft Action Center, on at least one computer, recommends resinstalling a Bluetooth driver after the Creators’ Update of Windows 10.  But there don’t seem to be any symptoms.  I wonder if this relates to the same possible vulnerability.