Information Technology for SMBs

Powersolution is receiving reports of the persistence of BazaCall (BasarCall) malware attacks, which were initially documented in early 2021.   If you receive a fraudulent or suspicious email such as this, Do Not Respond. Here is how this fraudulent email works: Attackers use email to prompt victims to call a fraudulent call center to cancel a supposed subscription before they are automatically charged. The call center is staffed with attackers who tell the caller to access

Threat actors are using browser push notifications to convince users into installing fraudulent Windows Defender updates. A popup will appear in the tray to notify the user of the update. If clicked, the user will be directed to a fraudulent update website that prompts users to download and run a signed ms-appinstaller (MSIX) package purporting to be published by Microsoft. Once installed, it appears in the Start Menu but serves as a shortcut to an

Abnormal Security, an email security vendor, has published a report on a new phishing campaign discovered that uses a compromised account, a trusted email security system (such as Zix, is an email security vendor with a primary focus on email encryption solutions), and multiple redirect links. The email is crafted to create a sense of security and authenticity as the header and footer include a message that the email was sent securely using the Zix

Global Insurance Underwriter AXA Group Drops Reimbursement for Ransomware Payouts, Reinforces the Need for Businesses to Bolster Their Cyber Defenses The AXA Group is a Paris-based global insurance underwriter and asset management company doing business in 54 countries, including the U.S.  Earlier this month, the insurance giant announced that it will no longer write cyber insurance policies in France that provide reimbursements to customers for ransomware extortion payments.  It appears AXA is the first insurer

Researchers have found three new malware families, Doubledrag, Doubledrop, and Doubleback detected in December 2020 and tracked as UNC2529. These malware strains used in an ongoing phishing campaign throughout the financial industry are being tracked as UNC2529. Organizations in the US, EMEA region, Asia, and Australia have been targeted by the sophisticated cybercriminals Key Elements to be aware of in the UNC2529 phishing campaign: Malicious emails contained highly personalized messages. Over 50 domains were similar

This week, the Center for Internet Security’s Multi-State Information Sharing and Analysis Center issued an advisory that cited multiple vulnerabilities in Google Chrome.  This is important, as Google Chrome is a commonly used web browser that enables access to the Internet. The vulnerabilities (for versions prior to 89.0.4389.128) could allow for arbitrary code execution, which might enable an attacker to view, change, or delete data.  As a result, the Center for Internet Security classified these

powersolution.com, through our relationship with Infragard and The New Jersey Cybersecurity & Communications Integration Cell (NJCCIC) have been alerted to a new email threat dubbed ‘BazarCall.’ Threat actors are using a combination of customer service call centers and phishing emails in order to spread various forms of malware. Similar to other email-based scams powersolution.com has recently reported, the phishing email in this campaign states that the recipient’s free trial of a known service, such as

Adobe Flash has reached its end of life on December 31, 2020. At the end of January 2021, powersolution will ensure that Microsoft patch KB4577586 is installed on eligible clients’ computers. powersolution will also be creating and remotely running a script that detects and removes Flash from managed systems. Adobe’s technology for fancy interactive graphics mostly used to spice up your browser has drifted towards its demise for so many years that it has almost