This week has been a doozy, as the old saying goes. From a disturbing Twitter hack to a serious vulnerability with Microsoft's DNS Server to nation-state hacking against organizations engaged in finding a vaccine for COVID-19, there's been a flurry of malicious activity. If you are still questioning whether or not your organization is at risk, my advice is to assume that you are. To not could be catastrophic. In the case of the Twitter hack, an employee was the victim of a targeted phishing attack that got them to divulge credentials allowing the hacker into backend administrative systems. Once in, the hacker sent out tweets under the accounts of several public figures. The tweets in question involved a cryptocurrency scheme.
The vulnerability in Microsoft's DNS role on Windows Server could allow a hacker to take control of systems and then attack other connected systems from there. This issue was so serious that it generated an emergency alert from the Cybersecurity & Infrastructure Security Agency (CISA) to immediately patch impacted systems.
All three of these incidents represent different ways that cybersecurity threats impact us all. It's imperative that you continually reevaluate your cybersecurity posture. Talk with your IT department or partner and be sure you are doing everything that you can to help protect your business. We are available to help, call 714-660-1811.
First and foremost, what is a DDoS attack? DDoS stands for Distributed Denial of Service. Simply stated, this type of attack floods a given service with massive amounts of traffic from distributed sources making the service unavailable and the source difficult to pin down. As an example, if a hacker or hacker group wants to make a given web site unavailable, they can flood that site with so many requests that the site can't keep up. As a result, the site becomes unavailable to people who are legitimately trying to use it.