Security Alert: April 2015

Welcome to our April Security Alert, where we bring you some of the latest trending news and updates to help protect your network and your business.

Server 2003 End of Life

server2003A year ago Windows XP reached end of life. The server counterpart, Server 2003 will reach end of life July 14th 2015. This means that Microsoft will not be releasing any more security updates after this date, making it significantly easier to compromise (or simply break/crash) these servers. If you are still running Server 2003 in your environment, it is time to start planning to upgrade or migrate your applications to newer servers.

Sources

http://www.microsoft.com/en-us/server-cloud/products/windows-server-2003/

http://www.techradar.com/us/news/computing/servers/windows-server-2003-end-of-life-is-the-biggest-security-threat-of-2015-1289390

 

Health Care companies hacked using phishing attack

parks-44-256Last year, the hackers targeted Point of Sales systems trying to steal credit card numbers. This year, they are going after medical information. Recently Anthem and Premera were both hacked, and close to 90 million records were stolen. These 2 breaches were pulled off easily by sending employees emails with links to fake websites that mimicked the company internal site. The records stolen will most likely be used in more phishing attacks on employees and customers.

BBTech can assist in training your employees to recognize phishing attacks, which can help prevent data leakage. Contact us for information on our free employee-security assessment.

Sources:

https://krebsonsecurity.com/2015/03/premera-blue-cross-breach-exposes-financial-medical-records/

http://www.usatoday.com/story/tech/2015/03/17/premera-says-cyber-attack-affects-customers/24917883/

 

Password free world

iris-scanAccording to a recent survey, the average number of passwords each person has to remember is 19. Think about it: how many passwords do you have? Personal email, financial, social media, retail, not to mention all the passwords you have at work! With so many passwords to remember, most people re-use the same passwords, and make them very easy to remember (which also makes them weak and easily hackable). Several organizations are beginning to look at alternatives to the password. Two example of this are Yahoo and Microsoft. Yahoo will now allow you to login without having to remember a password, instead, they send you a temporary password on your phone. When Windows 10 comes out later this year, Microsoft will introduce a feature that allows you to login with a fingerprint, Iris, or Facial scan.

Sources:

http://www.zdnet.com/article/yahoo-launches-password-free-logins/

http://blogs.windows.com/bloggingwindows/2015/03/17/making-windows-10-more-personal-and-more-secure-with-windows-hello/