Category Archive: Uncategorized

Hello world!

Welcome to WordPress. This is your first post. Edit or delete it, then start writing!

Read more

Why do entry level crackers care about my data

Great!  Your information in on the Dark Web!  “Bad Actors” have access to your username and passwords!  You have nothing to hide, but… what do they want to do with your information?  Lets ask an “Entry level” anonymous group. In one of my sources of information, someone did ask this question.  This group focuses on […]

Read more

Got a Draytek Router? Guess what, there is a 0day. Check DNS Settings

Draytek Routers have an acknowledged 0 Day.   It has been seen in the wild! One of the indicators that your router has been compromised is changing of your DNS Settings.  A change of DNS will allow Cyber Criminals to impersonate other websites allowing the bad guys to siphon your personal information.   It is a […]

Read more

Happy New Year! First Major Security Bugs are out!

Happy New Year! After a fairly quiet holiday season in the security word we are greeted with Meltdown and Spectre!  And, boy, are they doozies!   Both of these exploits utilize flaws in the hardware architecture where, no matter what operating system, the hacker can siphon data out of the protected memory space, and everything runs […]

Read more

Happy Holidays, be extra careful!

Happy Holidays! We hope your holiday season is going extra fine, but we, at Ultra Scary, need to remind people that in this high stress season to be very careful on emails they receive. We just got this one from a friend, asking for assistance (I have change some of the information in the message).  […]

Read more

DON’T FORGET YOUR NON-WINDOWS MACHINES WHILE PATCHING

You are a proactive business owner, you subscribe to a service to patch all your computers for a monthly fee, your network and systems are safe? Correct?  A Patched Systems is a good System? Right? Not so fast. Most MSP’s focus on what they have an agent installed on, WSUS will patch Windows Machines but are […]

Read more

BAD SECURITY DOESN’T LOOK GOOD IN RED….

Kromtech security researchers discoverd a Mongo Database configurations at a cosmetics company, Tarte Cosmetics, that exposed almost 2 million of it’s customers to the web.   8.7 Gigabytes of information!  Once Tarte was contacted by the security researchers, they kept the site online and the data accessible for over two days, showing where they value their […]

Read more

ARE YOU IN A HURRICANE RELIEF ZONE? WATCH OUT, YOU MAY BE TARGETED!

We have been getting reports of people with addresses in hurricane relief zones are being targeted for FEMA fraud. The Fraudsters are using stolen identities in these areas to file false claims.   If you get a letter from FEMA that you have applied for relief, and you did not, please contact the Office of Inspector […]

Read more

WIFI IS BROKEN, WELCOME TO KRACK ATTACKS

It’s the morning of October 16th, the security groups are all a buzz with the latest Wireless Security flaw, Key Reinstallation Attacks. The attacker can very easily create a Man in the Middle (MITM) attack to listen to all wifi traffic from a target.  The attacker can strip out the encryption of a SSL session […]

Read more

EX CEO OF EQUIFAX BLAMES ONE IT GUY…

Ex Equifax CEO, during a testimony before congress blames all of the data loss on a single technician. https://www.engadget.com/2017/10/03/former-equifax-ceo-blames-breach-on-one-it-employee/ After being notified by CERT (Department of Homeland Security’s Computer Emergency Readiness Team) of a  Apache Struts vulnerability, a memo was dispatched to a single tech to update the vulnerable servers and scan it for any […]

Read more