Malvertizing, or malicious advertizing, is a cyber-threat that involves disguising spam code into online advertizements that seem to be legitimate. When a user hovers or clicks on any of these ads, it leads to downloading malicious software that can damage data, steal confidential information or even get complete remote access of the infected computer. Malvertizing attempts to exploit the unpatched software vulnerabilities in a computer without any need to compel the user to visit a malicious website.

How Does Malvertizing Work?

Malvertizements can appear on a website in any of the following ways:

• Legitimate Ads: The cybercriminal initially places a number of malware free advertizements on a credible website that allows third party ads. Eventually, he may inject a malicious code into the advertizement to infect maximum computers before it is banned or removed.
• Pop-Ups: Pop-ups can infect a user’s computer the moment the ad appears on the web page. In some cases, the malware may also be installed when the views clicks on ‘X’ to close the pop-up.

How To Protect Against Malvertizing?

• Disable Auto Play For Plug-ins: When you choose auto play for plug-ins, all Java and Flash elements will automatically run when you visit a web page. As most malvertizing attacks involve the use of malicious plug-ins, make sure you have complete control over the ones that you need to run.
• Remove Unused Plug-Ins: You should disable or uninstall all the browser plug-ins that you do not use, including Java. This will reduce the probability of a malvertizing attack by limiting the number of vulnerable software that can be exploited by the cybercriminals.
• Update Your Web Browser: Your web browser should be regularly updated to fix any security flaws. You can enable automatic updates to keep your browser protected against malvertizing attacks. If you have a plug-in installed, make sure they are frequently updated with the latest versions.
• Stay Informed: You should always be cautious of pop-ups that claim to remove malware or increase the speed of your computer. Do not click on any of these links as they may inject a malicious code or download spam software to your computer. Anti-virus, anti-malware software and browser toolbars should also not be installed through an advertizement or pop-up link. 

We, at Centex Technologies, provide complete cybersecurity solutions to the businesses in Dallas, TX. For more information, you can call us at (972) 375 – 9654.

Domain hijacking or theft, can be defined as a security breach in which the hacker steals the target organization’s domain name and transfers its ownership to himself. Once successful, the hacker gains access to the control panel from where he points the domain name to another web server. Thus, whenever a user visits the website, he gets redirected to the hacker’s website. In most instances, the attack is carried out by falsifying a domain transfer authorization code or by using phishing techniques.

Given below are a few common methods that the hackers use for domain hijacking:

Spear Phishing

This is one of the easiest ways to steal the login details of the target website’s admin account. The hacker may send a fake email, claiming be to be from a genuine source, to extract information. The email may also contain a link that redirects the user to a phishing website that looks similar to the original one. When the user logs in to the admin account, the credentials are recorded by the hacker.

Domain Registrar Vulnerabilities

The hacker may also look for unidentified vulnerabilities in the domain name registration system. For instance, in the absence of any restriction on the number of invalid login attempts, the hacker may initiate a brute force attack. Through this, he may employ the trial and error method to use multiple password combinations till the login is successful.

Web Server Vulnerabilities

Security flaws in the target organization’s web server can also be exploited to gain access to the website admin account credentials. In the absence of proper security measures, there are high chances that vulnerabilities in the hosting server provide a backdoor for the hacker to gain access to your website.

Tips To Prevent Domain Hijacking

• Use Two Factor Authentication: Many domain registrars provide an additional security layer to the users by allowing two factor authentication. With this, each time you log in to the admin account, you will have to enter your user name and password, along with a numeric code sent through a text message.
• Request DNSSEC From Your Domain Registrar: Domain Name System Security Extensions (DNSSEC) is a technology that can prevent a domain hijacking attack. It allows the website admin to monitor traffic and use digital signatures to verify the legitimacy of the DNS responses.
• Change Default Password: Make sure you change the default password of your admin account. If you retain the same login credentials provided by your registrar, your domain security may be at risk.

For more information about domain hijacking, contact Centex Technologies at (972) 375 – 9654.

Since inception of Virtual Private Network (VPN), the technology is widely used in business firms to provide a secure and convenient way to connect distant employees and remote offices. VPN makes it easy for the users to share files, folders and other important data over the internet, without any form of protocols or permissions required.

If you are planning to use virtual private network for your business, given below are some of the pros and cons that you should consider:

Security

• Pro: VPN offers a high level of security while accessing the internet. It uses advanced authentication and encryption protocols to safeguard your data from unauthorized access by the hackers.
• Con: Deployment of a VPN technology can be quite complex for any business. You need to hire a dedicated IT staff who has complete knowledge of VPN configuration, network or security issues that may arise and the best way to deal with them.

Scalability

• Pro: Virtual private networks are quite scalable when it comes to accommodating the growing demands of a company. As your business expands and opens offices in multiple locations, you do not need separate lines to connect all of them. You simply need to connect to the already configured VPN to access the corporate network.
• Con: If you need to add infrastructure to the VPN, it may lead to certain technical issues, particularly if you switch to another service provider. Combining VPN products from two different vendors may cause problems in compatibility while using equipment from the same provider may increase your expenses.

Remote Connectivity

• Pro: Virtual private networks allow employees and business partners to communicate easily over the internet, irrespective of their geographical location. Expenses related to international calling and long distance communication can be considerably reduced.
• Con: The use of improperly configured internet networks and unsecure devices to connect to the VPN can compromise security of all the connected computer systems. Employees may also connect through wireless hotspots which increases the risk for a potential data breach.

Despite these pros and cons, VPN offers the most viable solution for remote users to communicate securely. However, businesses need to focus on addressing the minor glitches in order to capitalize on this technology.

If you are planning to configure VPN in your company’s internal network, Centex Technologies can provide complete IT support. For more information, you can call us at (972) 375 – 9654.

Wi-Fi hotspots in airports, hotels, coffee shops, subways etc. may seem to be a convenient way to access the internet but these networks are not configured properly to safeguard your personal and financial information. Often, you do not even need a password to connect to these public networks, which makes them likely to be used by cybercriminals as well. Any information you send or receive through these networks may be altered, accessed or pilfered without your knowledge.

You should avoid using public Wi-Fi networks in the first place but in case it is absolutely necessary to do so, here are some security rules that should be followed:

Turn Off Sharing

When you are using a public network, make sure you disable sharing of files, printers and music library. This will prevent other users on the same network from accessing your personal information, particularly if it are not password protected. You should also turn off network discovery, so that your computer is not included in the list of connected devices, minimizing the risk of a potential attack.

Enable Firewall

Turn on your operating system’s firewall to prevent unauthorized access to your computer. Many windows devices automatically enable firewall during initial setup. However, you must check your computer’s settings to ensure that the firewall is turned on.

Look For Secure Browser Extensions

Many websites transmit information in plain text over the network you are connected to. This allows the hackers to easily steal the information and use it for malicious purposes. When you use websites that start with ‘HTTPS’, it means that all the data between your computer and the web server is end-to-end encrypted. Thus, even if a data breach occurs, the information will be of no use to the hacker unless he has the decryption key.

Use A Virtual Private Network

To increase your security on public Wi-Fi networks, you can consider using a virtual private network (VPN). It will encrypt your network connection and hide your IP address so that you can access the internet anonymously. By using a VPN, you can have the security of a private network, while protecting all your sensitive information from online attacks. You can also enable private browsing or incognito mode so that your browsing details are not stored on the network.

For more information on public Wi-Fi security, feel free to contact Centex Technologies. We can be reached at (972) 375 – 9654.

With the increased dependency on computers, smartphones and tablets, cyber security has gained considerable importance for business firms in Dallas, TX. Hackers are continually using viruses, spyware, phishing, malvertizing and other attack vectors to gain access to an organization’s sensitive information. Though implementing a cyber security policy is important, employees should also be proactive and comply with the company’s risk management strategy.

Listed below are some cyber security do’s and don’ts that need to be followed:

Do’s

• Follow Good Password Practices: Make sure you create strong and hard-to-guess passwords for all your official accounts. It should be of 6 to 10 characters comprising a combination of alphabets, numbers and symbols. Create different passwords for all your official accounts and do not share them with anyone.
• Stay Vigilant Against Phishing Scams: Do not open emails or download attachments you receive from unknown senders. Hackers often send spam emails, claiming to be from a legitimate source, with an aim of tricking users to execute a file or visit a fake URL. If you receive any such email, you must delete it and inform the IT division of your organization.
• Protect Your Information: Keep all the important data and files protected with regular backup on an external hard drive. Personal, financial as well as other sensitive information should be stored in an encrypted format. Thus, even in the event of a data breach, the hackers will not be able to decode the information.

Don’ts    

• Leave Your Computer Unlocked: You should lock your computer system whenever you leave your seat. This is important to make sure your files and email accounts are protected against unauthorized access.
• Download Unnecessary Software: Avoid downloading and installing unrequired software on your computer, particularly from third party sources. These may contain a malicious code to infect your system and can steal, modify or delete confidential information. Always download software that is licensed and released by legitimate vendors.
• Plug In Portable Devices: Do not plug in any removable media, such as hard disk, CD or pen drive, without the permission of the IT department. These devices may contain malware and infect your computer system upon connecting. Make sure you run a thorough scan to detect and remove any virus in these devices.

We, at Centex Technologies, provide cyber security solutions to business firms across Dallas, TX. For more information, feel free to call us at (972) 375 – 9654.

Considering the fact that an average user has to manage at least 4 to 5 online accounts, a lot of people end up setting the same or easy-to-remember passwords for all of them. The exasperation of remembering different passwords and ignorance about the consequences of a data breach are the main reasons behind a security attack. The ever increasing use of internet and poor password practices has created unlimited opportunities for the hackers to steal important data, tamper websites, gain access to financial information etc.

Listed below are some of the common types of password attacks:

• Brute Force Attack: In this attack, the hacker uses a computer program to try every possible password combination until the correct one is found. Using a list of some of the most common passwords, such as ‘123456’, ‘password’ or ‘Password1234’, the hacker attempts to gain access to the user’s account. Due to the endless combinations of letters, numbers and symbols, brute force attack may take a long time to be completed. 
• Guessing Game: This is another form of brute force attack that involves guessing a user’s password by trying the most obvious words, such as names of loved ones, pets, places, numbers, birth dates, phone numbers etc. Even combination passwords, such as ‘name123’ are quite trivial to guess.
• Keylogger Attack: It refers to a type of physical breach in which the hacker tracks the keystrokes to record the user name and password. Even a strong password or encrypted login credentials do not provide complete protection from this attack. Initially, the user may be tricked to install the keylogger software, either through phishing or in the form of a drive-by download. Whenever you login to your account, the software traces everything you have typed and transmits it to the hacker to gain easy access to your information.
• Intercepting: Passwords can also be captured when they are transmitted over the network in an unencrypted format. Packet sniffers and other network monitoring software may be used by the hackers to intercept your login details as well as online financial transactions. These types of attacks most commonly occur when users access their online accounts through unsecure wireless networks.

Centex Technologies is a leading IT security company serving the businesses in Dallas, TX. For more information on the common password attacks and the ways to prevent them, feel free to call us at (972) 375 – 9654.

ZCryptor is a malicious software that infects removable devices and network drives to encrypt files stored on a computer. It mainly spreads through spam emails, macro malware or fake installers. ZCryptor was first discovered by a security researcher named Jack, after which Microsoft also investigated the potential threats caused by the ransomware. The company issued an alert for the users stating:

“We are alerting Windows users of a new type of ransomware that exhibits worm-like behavior. It leverages removable and network drives to replicate itself and infect more systems. We detect this ransomware as Ransom:Win32/ZCryptor.A.”

According to the researchers, the ransomware was initially designed to target systems with Windows XP 64 bit, but computers having the latest version of the operating system can also be infected.

How Does ZCryptor Work?

To infect a computer system, ZCryptor uses the common phishing techniques, such as camouflaging an executable file as a known software, usually Adobe Flash Player, or through macro files in Microsoft Office. Once executed on the system, the ransomware starts encrypting the files stored in it. It creates a registry key to ensure auto-execution on every start-up. Next, an ‘autorun.inf’ file is installed on the removable drives so that the malware spreads to all computer systems that these devices connect to. It replicates by creating copies in different network drives and using multiple file attributes in order to avoid detection by the users.

ZCryptor is known to encrypt a wide range of file formats including documents, audio, video, image, archive, database, APK, Java source code etc. and change their extension to ‘.zcrypt’. Upon encryption of all the files, a pop-up appears on the computer screen, asking the user to pay a ransom amount to get access to the unique decryption key.

How To Protect Against ZCryptor?

• Keep your operating system and other software updated to stay protected against the known vulnerabilities.
• Avoid visiting suspicious websites, opening unknown email attachments and downloading software from unidentified developers.
• Use a reliable anti-virus software to prevent and detect malware infections.
• Disable macro files in Microsoft Office.
• Keep a backup of your files on a removable media device to minimize the consequences of a ZCryptor attack.
• Format the infected removable drives before you connect them to other computer systems.

For more information about ZCryptor ransomware, you can contact Centex Technologies at (972) 375-9654.

With more than 300 million users, LinkedIn provides a networking opportunity for business professionals across the world. However, just like other social media platforms, LinkedIn also has its own set of security issues. It is important that you protect your account in order to safeguard your information and avoid spoiling your online reputation.

Given below are some tips to protect your LinkedIn profile:

• Update Your Privacy Settings: Make sure you review your privacy settings to keep a check on the information you want to share with your connections. For instance, you should turn off your activity broadcasts if you do not want to display updates about the changes you made to your profile. You can also change the visibility settings for your profile picture, connections and other professional details.
• Opt For Two Step Verification: LinkedIn allows its users to activate two step verification for their accounts. This offers a higher level of protection and prevents the incidence of identity theft and unauthorized account access by the cybercriminals. When you choose two step verification, you will be required to enter the password, along with a numeric code sent to your phone when logging in from an unrecognized device.
• Verify Your Connections: You should connect only with the people you know. Adding unknown connections or merely acquaintances puts your account information at risk. Cybercriminals use fake accounts to connect to entrepreneurs and gain access to their business information that can be further used for malicious purposes. Therefore, if you receive a connection request on LinkedIn, make sure you verify the profile to check if anything seems to be suspicious.
• Change Your Password Frequently: It is recommended to follow the best password practices to safeguard your LinkedIn account from unauthorized access. Create a strong password that includes random letters, numbers and symbols. You should use different passwords for all your online accounts and change them after every few months.
• Check Third Party Apps Connected To Your Account: Be watchful about the apps you have authorized to connect with your LinkedIn account. These can access all your confidential data and hence, you must review the apps that you have permitted. Deactivate all the apps that you do not recognize or use anymore.

For more information on LinkedIn and social media security tips, feel free to contact Centex Technologies at (972) 375 – 9654.

Adware, or ad supported software, refers to any form of software that displays or downloads unwanted advertizements while browsing the internet. It may also be programmed to redirect the users to advertizing websites or track browsing patterns so that customized ads can be displayed. In most cases, adware is a legitimate software that comes as a drive-by download with a freeware program. A visit to a malicious website can also lead to unapproved installation of adware on your computer. However, the advertizements can be annoying, distracting and intrude the user’s privacy in the online space.

Here are some signs that your computer has been infected with adware:

• Pop-up advertizements on the desktop or within applications
• Unidentified changes in browser home page, bookmarks and favorites
• New toolbars installed in the internet browser
• Slow computer start-up and shut down
• Pop-up ads related to websites being browsed or keywords typed in the search engine
• Desktop may be slow to load or refresh
• Unexpected system shut down or restart
• Sluggish internet connection
• Software crashes
• New programs installed on the computer

How Does Adware Work?

When adware is downloaded onto a computer system, it may begin to show pop-up ads according to your web browsing habits. The software may also install tracking cookies and keyloggers or conduct an unauthorized hard drive scan. Some of the common consequences of an adware infection are:

• Infinite Pop-Ups: The user may view an endless series of pop-up advertizements over the current program window. At times, closing one pop-up ad may lead to opening of another one.
• Man-In-The-Middle Attacks: Some adware programs are designed to redirect your network activity through a proxy server to display ads over the web pages being visited.
• Spying: This adware tracks your online browsing habits, websites you visit and even records your keystrokes to figure out the type of advertizements that would catch your interest.
• Data Consumption: The adware may download unrequired add-on program to your computer, thus consuming the bandwidth on your internet connection.
• Device Slowdown: Running too many ads may hamper your device’s performance, making it slow to respond to user commands.

It is important to detect and remove adware from your computer system at the earliest. If not, it may transmit sensitive information, such as credit card numbers, passwords, important files, photos and videos to the cyber criminals who may use it for malicious purposes.

For more information on adware and cyber security, you can contact Centex Technologies at  (972) 375 – 9654.

Network attack can be defined as an attempt to breach the security of a computer network in order to gain unauthorized access to the targeted device or exploit the vulnerabilities in the software applications. Without proper security measures, your network is vulnerable to different types of security threats, eventually causing it to crash. A network attack can either be passive (wherein the hacker may simply monitor and steal data stored on the computer) or passive (in which the information may be altered or destroyed).

Given below are some of the common types of network attacks:

IP Spoofing

A corporate or home network uses the IP address of a device to identify its entity and allow access. In a spoofing attack, the hacker may use a forged IP address to breach into a network in the guise of a legitimate user. He may alter, delete or destroy the data being shared in the network. He may also modify the source of the data packets so that they appear to be originating from another computer on the same network.

Sniffing

Network sniffing is the process of monitoring, capturing and intercepting the data packets traveling through an internet network. If the data is not properly encrypted and sent as cleartext, it can be easily read by the hacker. On the other hand, an encrypted data packet cannot be accessed unless the hacker has the key to open it.

Buffer Overflow

A buffer overflow attack occurs when the target computer receives more data/traffic than it is capable to hold, thus creating a lot of temporary files that overwrite the already existing valid data. The excess files usually contain a malicious code designed to carry out specific actions, such as deleting files, altering data or transmitting confidential information to the hacker.

Man In The Middle Attack

This is a form of session hijacking attack in which the hacker actively monitors, captures and controls the flow of information between the source as well as the destination computer on a network. The attack may be simply aimed at getting access to the information being shared or modifying it before being transmitted to the other end. In some forms of man in the middle attacks, the hacker may even disconnect the other user and completely take over the session to acquire sensitive information.

Centex Technologies is a leading IT company providing network security solutions to the business firms in Dallas, TX. For more information, feel free to call us at (972) 375 – 9654.