Blog
Vulnerability In Mac OS Went Unnoticed For Years
Researchers at Okta Security have stumbled across something big. Recently, they discovered a flaw in Apple’s OS that would have allowed hackers to completely undermine Apple’s code signing process. While at first glance that doesn’t sound so bad, the implications are terrifying. In a nutshell, code signing uses cryptographic “signatures” to verify and validate code. […]
Turn Cortana Off At Lock Screen To Avoid Potential Hack
Do you use Cortana? It’s a handy virtual assistant (like Siri) built into Windows 10. Unfortunately, as useful as she is, there’s a problem. Even if you don’t use Cortana yourself, take heed: Microsoft has recently issued a security update based on findings by McAfee researchers. It turns out that Cortana can be “summoned” from […]
Study Shows People Prefer Alternatives Over Passwords
File this one away under “confirming things we already knew.” A recent study conducted jointly by Blink and Trusona confirmed that people just don’t like passwords very much. Their study tracked the login behavior of 148 participants over a three-week period. Without knowing the true purpose of the study, participants were asked to log into […]
New Trick Lets Hackers Bypass Office 365 Email Security
What’s old is new again. Hackers have recently begun re-deploying a decade-old trick called ‘ZeroFont’ to get around Microsoft’s security filters and deliver phishing and spam emails to Office 365 email accounts. The gimmick? Zero-point fonts. As anyone with even passing familiarity to Office 365 knows, if you’re drafting a document, you can change the […]
Majority Of Web Apps Found To Have Security Vulnerabilities
How many web apps do you have on your phone? Probably a ton. Here’s something you likely didn’t know. Based on the latest research from Positive Technologies, nearly half of them (48 percent) are vulnerable to unauthorized access. As bad as that is, it’s just the tip of the proverbial iceberg. Here are some […]
Google Cracking Down On 3rd Party Browser Extension Installs
Malicious code can wind up on your PC or phone by any number of roads. Companies do their best to guard the digital passes, but invariably, things get missed and the hackers find a way in. It’s a constant battle, and sadly, one that the good guys are losing. Recently Google has stepped up its […]
Another Vulnerability Found In Intel CPU’s
More bad news for Intel. Yet another security flaw has been identified in the processors the company makes. This one is so newly discovered that the full technical details have yet to be released. Here’s what we know so far, from a recent Intel announcement: “System software may opt to utilize Lazy FP state restore […]
The U.S. Is The Most At Risk Nation For Cyber Attacks
Being “number 1” isn’t always a good thing. Rapid7 has just published their third annual “National Exposure Index,” and unfortunately, the United States has the dubious honor of being the nation most at risk for a cyber attack on its core services. The group’s methodology for ranking national exposure comes down to tracking the number […]
Yahoo Messenger Will Shut Down In July
It’s the end of the line for Yahoo Messenger. As of July, it will be no more, marking the end of an era. The announcement comes just six months after AIM (the old AOL messaging program) was shut down. The first major messaging programs from the early days of the internet will soon be a […]
Some Private Posts On Facebook May Have Been Exposed
Facebook is in hot water again. Recently, the company admitted that while testing a new feature on the site, they inadvertently made public the posts of more than fourteen million users. The incident occurred between May 18th and May 22nd and occurred when Facebook was testing a new “Featured Posts” enhancement. The goal was that […]
A Visionary Approach to Your Security
The purpose of an IT partner isn’t just to fix something when it is broken, it is to keep your people working and your data secure. Astral moves beyond traditional managed services by addressing all the key areas of cybersecurity in today’s complex landscape.
