hacked

It Company Kaseya Gets Hacked, Exposing 1500 Companies to Ransomware

Kaseya

Episode 1812

Employees have been warning IT company Kaseya that the company would be hacked for three years. With weak encryption and lackluster cybersecurity, Kaseya was finally breached, exposing over 1500 IT companies to ransomware. The hack was performed by Russian criminal gang REvil, demanding 70 million in bitcoin for the decrypter. Leo says that there's no excuse for it, as the executives of Kaseya left the company a sitting duck for an attack.

Leo also adds that every year, ransomware gets worse and more prevalent.

Assign Trusted Contacts for Facebook Recovery

If you have a Facebook and are taking precautions in case you get hacked (and used to post/click on things that you wouldn't do), you should assign at least one trusted contact. Friends or family you trust can help you recover your account by sending you a special URL via recovery code. Go to Security & Login Settings, scroll to "Choose 3 to 5 friends to contact if you get locked out", and edit which friends you want to assign. You can also change or remove those chosen friends later for whatever reason.

Why Do Companies Pay Ransomware?

Ransomware

Episode 1809

Hugo from West Los Angeles, CA

Hugo wants to know why companies pay ransomware when they should normally have a backup to their data and network. Leo says that's a good question. Oftentimes, though, the ransomware isn't triggered right away. It lies in wait. Meanwhile, hackers browse around, looking for valuable data to steal and other weaknesses. The hackers will also look for where the backups are stored and seek to disable the backups or lock them up as well. Then, once the recon is done, the malware is triggered, bringing the network down.

Reminder: Western Digital Hacked

Western Digital NAS

Episode 1809

Western Digital's My Book Live Network Attached Storage has been hacked due to an exploit discovered in 2018 and was never patched. Hackers can run a program of their own making taking advantage of it. A hacker has searched for numerous My Book Lives and executed a script to erase them, leaving many without the backups they were relying on. Western Digital's solution is to have users unplug their MBL from the Internet while they research the hack. Will WD issue a fix?

Western Digital Gets Hacked

Western Digital

Episode 1808

Western Digital's My Book Live hard drives were compromised this week using a remote code exploit that had been left unfixed since 2018. Leo says it's important that devices get updated for security reasons regularly, and when it goes out of service, to think about replacing it. Leo also says it's important to adopt a 3-2-1 backup strategy. Three copies, on two different kinds of medium, and one off-site. Just in case. 

Can My Phone Get Hacked?

Pixel 5

Episode 1803

Harry from Fallbrook, CA

Harry wants to know if his smartphone can be hacked and would he know if it was? Leo says yes, and no. Smartphone operating systems are very sophisticated, but Android is more open source and, as such, could be more vulnerable. If anything, your smartphone knows where you are at all times, and as such, so does your phone company. And police can get that data by a simple request.

But unless you're a celebrity, a politician, or a member of a "three-letter agency," it's extremely unlikely you'll get hacked. Just don't download suspicious apps from questionable sources.

How Can I Regain Control of My Facebook Account?

Facebook

Episode 1785

Richard from Torrence, CA

Richard is having a major problem with Facebook. Someone hacked into his account and altered all his information. So he's lost complete control of every account he uses. Leo says that's what Two Factor Authentication , with an authenticator app. It can guard against. You can also set up trusted contacts, which can aid in verifying who you are as you are trying to get control back. But since it's too late for that, you can only hope to get ahold of someone at Facebook to get help in getting control of your account back.

Hackers Encrypting Universities and Companies with Ransomware

University

Episode 1784

The Clop Ransomware Team has attempted to encrypt networks from Universities around the country and threatened to release sensitive data. Colorado University sent out notifications this week that their network had been breached with ransomware, taking personal information and clinical data with a  demand of $10 million in bitcoin. Leo says if you were a student at any of those universities, look for a notice advising you of the breach. Companies that have also been hacked include Kroger and Shell Oil.