Insights

Unfortunately, the Colonial Pipeline attack is part of a growing escalation of cyber attacks on critical infrastructure around the world. An escalation that has grown out of control which criminal organizations creating affiliate networks, such as the group that conducted the attack on the pipeline. These types of attacks have been going on for quite some time, but most never hit the headlines due to the impact on national security. This is a significant escalation both in target and response, as Colonial opted to shut the pipeline down until they feel they have a good handle on the situation. It's a little-known fact that the equipment in most of this particular industry is made to live for 30 or more years. Additionally, they weren't built with defenses for hostile environments, like the attacks we are seeing from the Internet. Furthermore, updates are nearly impossible for computational reasons and approval required…

Cyber Security - It's not just for companies. On this episode of the Critical Cast, we have Patrick Kelley of Critical Path Security, well known Cyber Security expert.  Patrick talks about what's going on in the cyber world right now and how individuals and families can protect themselves like businesses do.

Recently, an estimated 32 million Facebook account details were posted online. These accounts were spread across their entire global user base. Additionally, more than 533 million Facebook users had their personal and private information posted to a public forum, a move that has created an uptick in cybercrime leveraging leaked credentials. The publicly released Facebook user data is believed to be part of a 2019 "Add Friend" Facebook security bug. The flaw, exploited by cybercriminals, allowed those individuals to collect hundreds of millions of member account details from Facebook and sell them to the highest bidder on illicit online markets. Critical Path Security (CPS) has obtained a full manifest of the data dump. CPS is offering a review of the data for anyone interested and will share any of the published data. If you would like to know more, don't hesitate to reach out. Ready to find out more? Reach…

Renewed attacks have begun on SMS services around the globe, making SMS 2-Factor Authentication an unsuitable option for authentication. For $16 USD, an individual can sign up for a service that will intercept a target phone number's SMS messages and send the messages to the number of their choice - as long as the individual is willing to provide a signed "Letter of Authority" in which they promise to be the owner of the said phone number. Platforms such as Sakari are actively being used to breach online accounts containing sensitive information, such as banking and health data. In previous years, attacks targeting Ultra-High Net Worth and Highly-Visible individuals have greatly increased. In July 2020, Graham Ivan Clark brazenly hacked into social media accounts belonging to President Joe Biden, former President Barack Obama, Elon Musk, Kanye West, Bill Gates, Jeff Bezos, Mike Bloomberg, Warren Buffet, Floyd Mayweather, Kim Kardashian, Apple,…