Help each other out of non-Webroot technical jams and discuss tech-related stuff in general.
- 4,785 Topics
- 12,104 Replies
December 23, 2019 By Catalin Cimpanu The Russian government announced on Monday that it concluded a series of tests during which it successfully disconnected the country from the worldwide internet. The tests were carried out over multiple days, starting last week, and involved Russian government agencies, local internet service providers, and local Russian internet companies. The goal was to test if the country's national internet infrastructure -- known inside Russia as RuNet -- could function without access to the global DNS system and the external internet. Full Article.
My account is already activitated. The system does not recognize my password. I have waited for the automated system to send me an email to retrieve my password, but received nothing. Automated Customer Service sent an email with a temporary password to use, but the Login does not accept it. Customer Service does not answer the phone.
Beta 4 of MacOS Catalina 10.15.2 Released for Testing Dec 6, 2019 Apple has released the fourth beta version of MacOS Catalina 10.15.2 for Mac users involved in the beta testing programs. MacOS 10.15.2 Catalina presumably focuses on bug fixes and improvements to the latest Mac operating system, perhaps addressing some of the issues and problems with Catalina that have been reported by some users. There does not appear to be any major new changes or features introduced in MacOS Catalina 10.15.2 beta so far. Full Article
January 20, 2020 By Catalin Cimpanu Password management service LastPass is currently going through a major outage as users are reporting being unable to log into their accounts and autofill passwords, with some users reporting issues going back for days. User reports about login issues have been flooding Twitter, but also the company's forum, Reddit, and DownDetector. Users are reporting receiving the following error when trying to log in: "An error has occurred while contacting the LastPass server. Please try again later." Both home and enterprise users are impacted. Full Article.
A lesson here for all those who like IOT devices. Under Armour is making a pile of pricey devices into so many useless bricks. Kate Cox - 1/21/2020 Any smart device comes with its own set of benefits and trade-offs, but there's one huge shoe waiting to drop with every single one of them: anything you connect can be disconnected at the other end, and there's absolutely nothing you the consumer can do about it. Today's example of smart stuff going dumb comes courtesy of Under Armour, which is effectively rendering its fitness hardware line very expensive paperweights. The company quietly pulled its UA Record app from both Google Play and Apple's App Store on New Year's Eve. In an announcement dated sometime around January 8, Under Armour said that not only has the app been removed from all app stores, but the company is no longer providing customer support or bug fixes for the software, which will completely stop working as of March 31. Full Article.
Read this document https://www-cdn.webroot.com/4515/4593/9709/BC_Anti-Fraud_DS_us.pdf want to evaluate geo analysis service. Where can I get more details and how to start. Webroot also provides IP reputation scores for all 4+ billion IPv4 addresses via our cloud API—whether blacklisted or not—which can be another important indicator when determining the risk of allowing a user access to a financial platform, and when assessing transaction risk. Finally, Webroot provides geolocation and ASN/ISP-related data for all IP addresses, which can also be used for geo-analysis, geo-fencing, or assessment of whether the session is originating from within a virtual hosting environment.
December 31, 2019 By Pierluigi Paganini Exit scam – Bad news for Grey Market users, one of its administrators revealed that another administrator had emptied the cold storage wallets. According to one of the admins of the Grey Market marketplace one of the admins, ‘theiving‘, has stolen all the users’ funds the platform stored for the escrow service. “ you can mark Market as scam exited and ban all our official accounts” reads the message published by the Market admin. During the last week, the black marketplace was often unreachable before going completely offline. Full Article.
October 30, 2019 By Ionut Ilascu Google decided to temporarily disable the Code Integrity feature activated in Chrome as users report more "Aw Snap!" crashes caused by incompatible software on the system.The issue was initially identified on systems with outdated versions of Symantec Endpoint Protection (SEP) and was pinned to incompatibility with the Renderer Code Integrity feature from Microsoft that had been just enabled in Chrome 78.Full Article.
VMware wants to add Nyansa's AI and machine learning capabilities to its security and network portfolio January 22, 2020 By Dev Kundaliya VMware is to acquire network analytics software firm Nyansa in a bid to bolster its flagship SD-WAN by VeloCloud platform. The deal is expected to close in VMware's first quarter of its fiscal year 2021 - the quarter to the end of April 2020 - subject to customary closing conditions. Financial terms of the deal were not disclosed. VMware wants to add Nyansa's artificial intelligence (AI) and machine learning capabilities to its existing security and network portfolio. The added capabilities will help customers operate and troubleshoot the Virtual Cloud Network, while also strengthening VMware's ability to offer "self-healing networks", the company said. Full Article.
Webroot is happy to announce the release of our Internal Security Training Courses! We’d love to hear from you about these courses once you’ve completed the training. What security gaps do you find to be challenging to attend to? What techniques do you use to bolster your network security? Got network security tips? Share your expertise with the community! Let us know in the comments below!
It’s that time again: MSP Nifty Gifty! We want to round out 2019 with cool presents for you and yours. That’s why we’re partnering with other businesses in the channel to bring you 10 days of fun, business-building gifts that will help MSPs like you kick-start the new year.What’s the MSP Nifty Gifty? It’s 10 days of cool and valuable gifts in December—just for MSPs.How does the Nifty Gifty work? Each day, you’ll receive a special gift from one of the channel sponsors. It might be a free software subscription, a book, a gift card, or any number of other items.There’s also a grand prize—worth $1,900 in nifty gear—to help you kick off 2020 right. Click here to enter!
Weekly Threat News: 2nd JanuarayThreat News
Our Senior Threat Research Analyst, @FredFunk, is back from holidays and has a fresh batch of 2020 threat news for you. General News Mirai Variant ECHOBOT Resurfaces with 13 Previously Unexploited Vulnerabilities Mirai was one of the biggest botnets ever seen. It consisted of millions of compromised IoT and other connected devices including routers. This army of devices was put to criminal use launching huge DDoS and other attacks. The Mirai model was so successful it spawned many variants and one of these variants, ECHOBOT, was discovered in mid-2019. Whereas the original Mirai compromised devices using a small amount of likely passwords (such as typical hardcoded router credentials) and exploits ECHOBOT uses a staggering amount of different device vulnerabilities and affects a wide range of devices. By targeting web and networking software as well as the classic Mirai targets of embedded IoT OS, ECHOBOT has greatly increased its ability to spread. There has been a lot of researc
I have begun to notice something disconcerting with the WRSA firewall. It has a tendency to drop what are perfectly valid outbound packets. If you are reading this and are game to spend a few minutes to see if you have the same problem, feel free to follow along(But first a quick aside - the WRSA firewall and the Windows Firewall are meant to be run together by design. If you for some reason turned off the Windows Firewall …. well, just don’t do that!)Go to a administrative command promptRun "netsh wfp show filters"Open resulting filters.xml fileSearch for the 10 instances of <name>Webroot SecureAnywhere Filter</name>You should find the items shown below. In each case, note the FilterID value a dozen or so lines below the layerKey value.<layerKey>FWPM_LAYER_INBOUND_TRANSPORT_V4</layerKey><layerKey>FWPM_LAYER_INBOUND_TRANSPORT_V6</layerKey><layerKey>FWPM_LAYER_OUTBOUND_TRANSPORT_V4</layerKey><layerKey>FWPM_LAYER_OUTBOUND_TRANSPORT_V
Webroot returns with another podcast series, this time exploring how MSPs can mitigate risks and boost cyber defenses within their own businesses. ChannelE2E and MSSP Alert editor Joe Panettieri is joined by Webroot experts for a miniseries that looks at the trends and threats facing today’s MSPs. NIST Cybersecurity Framework Joe Panettieri and Webroot’s Nick Emanuel discuss how MSPs can adapt the National Institute of Standards (NIST) Cybersecurity Framework as a blueprint for mitigating risk for both themselves and their clients. Automated Detection & Response Host Joe Panettieri and Webroot's George Anderson contrast traditional endpoint protection with the surging popularity of Automated Detection and Response (ADR) and Managed Detection and Response (MDR) approaches to threat hunting. FBI Warning To MSPs Webroot’s George Anderson returns to discuss a pointed warning issued to MSPs by the FBI about being a vector for attacks against their customers. With host Joe Paniettier
MacOS Catalina 10.15.2 Beta 3 Available for TestingNov 20, 2019 MacOS Catalina 10.15.2 beta 3 has been released by Apple for testing by Mac users enrolled in the Mac system software beta testing program.Usually a developer beta build becomes available first, soon followed by the same beta build as a public beta version.MacOS Catalina 10.15.2 beta 3 is likely to focus on bug fixes, improvements, and enhancements to the MacOS Catalina operating system. It’s unclear if any new features will be included in the release.See Full ArticleWhen Apple releases macOS Catalina 10.15.2 It will be time for me to upgrade to and enjoy the eye candy.
Weekly Threat News: 22nd November, 2019Threat News
Our favorite Sr. Threat Researcher, @FredFunk, is back with another round of Weekly Threat News. This week, Kelvin discusses the Monero hack, a brand new term DDoSAS (DDoS as a service) thanks to Sergiy P. Usatyuk, and ransomware continues to plague hospitals and governments. General News Booter Boss Banged Up for 13 Months DDoS attacks can be used for many malicious purposes. Whether it’s bringing down major British political party websites or cheating at online games, DDoS attacks have been making headlines recently. The arrest and conviction of Sergiy P. Usatyuk should worry other criminals who sold DDoS for hire services. As is often the case in the cybercrime sphere, justice hasn’t been swift and the charges related to events in August 2015 to November 2017 where Usatyuk is said to have earned a little over half a million US dollars. More: Infosecurity Magazine Webroot Part of Top Ten in Windows Anti-Malware Market Share More: ZD Net Cryptocurrency Coin Stealer Found in
Google changed where Chrome stores data. Chrome handles data for HTML apps. Uh oh. December 17, 2019 By Ron Amadeo Google's latest Chrome update is causing a headache for users and developers of some Android apps. Chrome 79, which is rolling out across desktop and mobile OSes, has been causing data loss for some other seemingly unrelated Android apps. Thanks to this bug, specifically on Android, updating your browser can now do something like wipe out the data in your Finance app. The connection between Chrome and Android app data might not be obvious, but Chrome on Android isn't always just the browser that starts up when you press on the Chrome icon. For some versions of Android, the Chrome app can also provide the built-in HTML render for the entire OS. Apps can call on the system render to display in-app Web content (the API is called "WebView"), and, in this case, an instance of Chrome would seamlessly start up and draw HTML content inside your app. Whether you want to call
We’ve seen reports that Chinese hackers have figured out a way to bypass two-factor authentication. Obviously, this is concerning. Reported via Information Age, the article dives into how one cybersecurity firm believes how it was done. A Chinese government-backed hacking group has found a new way to bypass two-factor authentication, according to a new report. The report by Dutch cybersecurity firm Fox-IT attributes a range of cyber attacks on government entities and managed service providers to APT20, a hacking group linked to the Chinese government that has been on the radar for nearly 10 years. The report tracks the attacks of the group over the last two years and details the method behind them. Read the rest of the article on Information Age @TylerM , Webroot Security Analyst, had this to say: This is pretty scary and just shows that the different types of 2FA implementation have varying degrees of security. SMS text and phishing has always been the most vulnerable, but now it
Twenty years ago, some developers dealt with the millennium bug by postponing it until... now. January 8, 2020 By Daphne Leprince-Ringuet Twenty years ago, as the world celebrated the start of a new millennium, IT professionals across the globe were getting cold sweats at the prospect of the Y2K bug kicking in: the fear that important systems relying on two-digit date logs would come to a standstill if computers interpreted the 1 January 2000, registered as 01/01/00, as the first day of the year 1900. No major incident happened, because developers had seen Y2K coming and prepared well. But two decades later, it has become apparent that some resorted to a quicker fix than others, and simply postponed the problem to 2020. A series of incidents seem to have confirmed that Y2020 is tech's latest unwelcome blast from the past. Full Article.
Last year, RIPE ran out of new IPs—but this week, the used ones are gone, too. Jim Salter - 11/26/2019 Monday afternoon, RIPE—Réseaux IP Européens—or the regional Internet Registry for Europe, the Middle East, and parts of Central Asia—announced that it's out of IPv4 addresses. What this means is that the organization has handed out its last available /22 (1,022 address) netblock. If you need European public IP addresses of your very own, you must get on a waiting list and hope for some other company to die on the vine and relinquish its address space when it does. Full Article.
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.