Weakness Scoring System

Our Federal government division witin the Department of Commerce, under the National Institute of Standards and Technology, NIST, has a National Vulnerability Databaase designed to help the public, and especially the technical administrators of IT systems to guage potential weaknesses or vulnerabilities in software and hardware systems.  

 

NIST has been working with private industry and other public sector organizations to rate and maintain a catalog of IT threats.   Originally started in 1999 under another name, and as an effort between NIST, SANS institute, and othrs, under the name ICAT or Internet Category Attack Toolkit.  It evolved and even faced death by lack of budgets until rebranded as NVD in 2005 and supported more fully.  

Example: 7.8 Severity Linux Vulnerability

This page is an excellent example of the use, and also of how technical it is.  https://nvd.nist.gov/vuln/detail/CVE-2021-46936

The post What’s the Score? National Vulnerability Database appeared first on Aditi Group Managed IT & Consulting.

Something else to fear.  Yes, just when you thought web advertising couldn’t be more annoying with slow page loading, pop-ups in the middle of that interesting article and more Viagra than you ever care the know about…comes Malvertising ransomware.

And it came in a big way as major websites that we trust and visit daily were hit by dangerous software hidden in advertisements.  This software is a form of ransonware which encrypts data and holds it hostage – for a price.

Were you hit already?  If so, the authorities say you’ll just have to pay up if you want your data back.

Read more > http://www.cnet.com/news/new-york-times-bbc-dangerous-ads-ransomware-malvertising

The post Malvertising Ransonware – Don’t Click on That Ad appeared first on Aditi Group Managed IT & Consulting.

Hollywood Presbyterian Medical Center paid hackers about $17,000 worth in Bitcoin. And reporters at Forbes say Locky is infecting up to 90,000 network systems every day.

When Locky encrypts a file it will rename the file to the format [fusion_builder_container hundred_percent=”yes” overflow=”visible”][fusion_builder_row][fusion_builder_column type=”1_1″ background_position=”left top” background_color=”” border_size=”” border_color=”” border_style=”solid” spacing=”yes” background_image=”” background_repeat=”no-repeat” padding=”” margin_top=”0px” margin_bottom=”0px” class=”” id=”” animation_type=”” animation_speed=”0.3″ animation_direction=”left” hide_on_mobile=”no” center_content=”no” min_height=”none”][unique_id][identifier].locky and creates ransom notes called _Locky_recover_instructions.txt.

So, please, BACKUP your data!

> Read more[/fusion_builder_column][/fusion_builder_row][/fusion_builder_container]

The post Locky Ransomware – Data Lockout appeared first on Aditi Group Managed IT & Consulting.