So do you use ticket broker Ticketfly often? I ask because you better check your information to see if it’s safe. Ticketfly hacker steals information, and lots of it.
So a few days ago, a hacker compromised Ticketfly. He/she caused a data breached that leaked out over 26 million customers’ info. This information includes emails and peoples’ addresses. Let me be clear. The hacker did not leak credit/debit cards, social security numbers, passwords, or anything of that nature. We can thank Troy Hunt for this knowledge. Hunt is the founder of Have I been Pwned, an online security firm. Because on this site, you can check to see if anybody breached your information. Clearly, someone did.
However, the threat is not yet over. Because the hacker still threatens to post more info. If this sounds like a ransom attack, then you’re right. The hacker demands one bitcoin. As of this writing, one bitcoin is worth about $7,400. If the hacker gets the money, then he/she will fix the problem and reveal the flaw. But Ticketfly refused. Therefore, Ticketfly closed the website. They did it because the hacker threaten to reveal more information if he/she doesn’t get that bitcoin. So Tickefly isn’t taking any chances.
Let’s look at the good news. In so many of these incidents, the hackers did compromise credit and debit cards. It messed up a lot of people. But that isn’t happening here. And they made sure it’s not happening by shutting down the website altogether. This is good, wise IT support move. We should also thank Pwned for catching this before it went too far. Now some, even visitors at our Boston computer service shop,? say they should give in and gave the hacker the bitcoin. But if you give these hackers an inch, they’ll probably take the whole road, forget the mile. How far do you think they’ll go if unchecked?
So who remembers the Apple iPhone January 1 1970 bug? How bizarre. But now, I read about a bug hitting up Android/Google smartphones. Furthermore, this Android bug can reveal text messages.
They name this bug ‘the1975..com’. Yes, you have to spell it with two periods between the year and com for it to work. But why would you want it to? Anyway, when you type ‘the1975..com’ in the Google app, then it will pull up your private text messages. But the real intention of ‘the1975..c0m’ is to pull up a rock band’s website. The text conversations can come from anywhere and everywhere.
A Reddit user who calls him/herself?Krizastro found the app. They used the Google Pixel Launcher, and this bug came to them that way. If you want a recap of your text messages, there’s a way to do that. For example, in the Google app, just type, ‘show my text messages’. You could also manually go through contacts and texts, but the ‘show my text messages’ way is quicker. Just don’t use the ‘the1975..com’ way. There’s no telling what Pandora’s Box you might be opening. No brand of Android seems to be immune to this bug. Not even the newer and high end phones like Galaxy S8+ and Galaxy S9+ are immune.
So let me share with you some good news. Yes, this Android bug can reveal text messages. But there is no major breach or threat to your information. If it’s anything, it’s just an annoyance. So why do I report it? I, along with everyone else in this Boston computer service shop, believe you should be informed. Android leaders have yet to comment on this. But look at their good record with customers. I truly believe they’re already on it. That’s more than I can say for many IT service and support companies.
So do you remember the 2014 movie The Interview? It caused so much controversy they had to take it off many theaters. In fact, NK dictator Kim Jung Un threaten havoc. But four years later, they’re still retaking havoc. This is the new North Korean malware: consumer alert.
According to the FBI and Homeland Security, North Korean hackers are using remote access tools to steal passwords and other important data. Furthermore, North Korea did this since 2009 and continue to do so in 2018. They’re biggest targets are media, pop culture, and financial sectors. Jonap, one of the tools, can carry hackers’ commands. Then, it infects a system already weak by other malware. Users get hit when they visit infected sites or open malicious emails and attachments.
And the new North Korean malware isn’t just hitting US sites. Jonap is affecting 87 other nations from around the world. Then there is Brambul. Brambul is a worm they put on by dropping malware. After this, it gets IP addresses. Then, they get illegal access to your system. If that isn’t enough, they’ll make up their own IP addresses. These fake addresses help them carry out more attacks. Now, they have IP addresses, usernames, passwords, emails, and all the other sensitive information they need.
For the IT support community to find, or even deter, North Korea’s hackers is going to be hard. First of all, they’re hard to find. Then, look at their twisted cause. Keep in mind only a small percentage of the North Korean people even have online access. Also keep in mind there are less than three million smartphones in North Korea. However, their population is around 30 million. So who in North Korea is doing these hacks? Who in North Korea gives the international IT service community such a headache? Could a select handful people under North Korean dictator Kim Jong Un’s orders be behind this?
So any good IT service person should warn you if something harmful is coming. Just like any travel guide should warn you of bad neighborhoods and places. So something harmful is coming. In fact, it’s already here. The 2018 email virus: this is a security alert.
In the past month, we saw 38 email virus threats. I won’t name them all because many of their names are too hard to pronounce. They all fall under the virus, worm, and/or Trojan categories. But the worse of these is what they call ‘Battdil.I Trojan’. It comes to your email address as a zip file. Then, when you open it, a .EXT or .SCR file floods you with the virus. After that, it takes over your Outlook then spreads to your address book. Now, it affects your people as well.
But that’s not all. Because the 2018 email virus can do even more damage. This includes stealing your information, like credit/debit card numbers, SSN numbers, and usernames/passwords. Cyber criminals can also steal your files remotely before you even realize what they’re doing. But wait, it gets worse. Because they can even turn off and on your system from around the world and there’s nothing you can do. Do you realize how much power these hackers would have over your computer if they put this virus in?
I thank a colleague in this Boston computer service shop for telling me. In fact, he’s treated several cases like this in the last several weeks. But what do we do about it? First of all, don’t answer any emails from people you don’t know. Remember when our parents warned our about stranger danger as kids? It’s kinda like that here, except this is email stranger danger. If you get an attachment, call the sender and confirm they did send it. Make sure you get the latest anti-virus software as well as a spam filter. What else can we do to keep ourselves safe?
In fact, their routers reveal customers’ passwords on the web. We can thank ZDNet for breaking this story. They meant for Comcast’s website to make it easy to set up your Internet service. But there are problems with this. First, you activate an already active account. Then, they require minimum data, and they blast your name and password in plain text for all to see.
In fact, the data requirements are so minimum that they don’t even make you confirm it. If anybody gets your account number, then they can get your router password and pretty much hijack it for themselves. Let me be clear. This does not affect all Comcast customers. This warning is just for those who use Comcast/Xfinity routers. In most cases like this, someone in our Boston computer service shop would say, “Change your password”. But that won’t work here. Because if you do, a potential hacker would see it and continue to interfere. So what do you do if Comcast leaks router information?
If you’re looking to use Comcast’s services, then don’t get their router. Get your own separate router. This isn’t just me. Most IT security experts will tell you that. But what if you already have a Comcast router? Then make sure your encryption is tight. Make sure it’s extra tight if you’re buying something. Comcast itself its working on the issue. But it too late for Comcast reputation? Like I said, many Americans are unhappy with Comcast. Several years back, they may have been the only choice. But now, there are services? You Tube Red, they’re not the only candy store in town anymore.
So let’s say hackers shut a city down. Then, there’s no electricity. There are no computers or IT service. The whole city shuts down. Then riots break out. Days and weeks pass by. The bodies pile up. This may sound like a movie, but this can be real. Can hackers cause an apocalypse?
I say this because I read about some disturbing trends lately. These trends aren’t in China or North Korea, but right here in Massachusetts. We’re talking less than an hour from our Boston computer service shop. For example, in Leominster, MA, an hour away from Boston, their schools paid $10,000 to hackers to get data back. That was a month ago. Several years back, hackers hit suburban towns of Melrose and Tewksbury, MA. Hackers forced these two towns’ police departments to pay ransomware. They gave in.
But wait…don’t take my word for it. Hackers themselves will tell you. One hacker turned cyber security CEO said all it takes is one act to bring down a whole city. For example, a city employee can click a phishing email. Then, a server can lock all data and cause ripple effects throughout the city. That hack can disrupt anything and everything from tax revenue to clean water to garbage collection. It could even disrupt 911 service.
Think about that. One hacker causes mayhem for an entire city. When people need 911 service, they’re not there to reach out. Do you know how many medical problems, fires, and crime that could cause? This isn’t a Hollywood movie, ladies and gentlemen. This can actually happen. It could have happened to Atlanta a couple of months ago. Can hackers cause an apocalypse? If so, then what can we do about it? You can avoid suspicious email and get a good anti-virus system. You can also have a good back up. If you’re a business owner or manager, then train your people on online safety and security. We need it now more than ever. What can we do to be safe?
