Cybercriminals are getting more creative in infecting computers with malware, and users must step up in order to protect their devices. To stay one step ahead of cybercriminals, you should learn more about their more insidious tricks such as watering hole attacks. Here’s what you need to know about these attacks and how you can protect yourself from becoming a victim of one.

The term “watering hole” colloquially refers to a social gathering place where a particular group of people often go to. As internet users, we all have unique “watering holes” or websites that we visit frequently. A financial analyst, for example, is likely to visit websites related to financial investments and market trends.

In a watering hole attack, cybercriminals observe the watering holes of a specific demographic and infect their most visited websites with malware. Any user who has the misfortune of visiting any of these compromised sites will then have their computers automatically loaded with malware.

The malware used in these attacks usually collects the victim’s personal information and sends it back to the hacker’s server. In extreme cases, the hacker will actively take control of the infected computer.

But how does a cybercriminal choose which websites to hack? With internet tracking tools, hackers find out which websites companies and individual users visit the most. They then attempt to find vulnerabilities in those websites and embed them with malicious software.

Hackers these days are so highly skilled that they can exploit any website using a watering hole attack. In fact, even high-profile organizations like Facebook, Forbes, and the US Department of Labor have fallen prey to this scheme in recent years.

Protect yourself from watering hole attacks by doing the following:

Update your software

Watering hole attacks often exploit security gaps and vulnerabilities to infiltrate computers and networks. By updating all your software and browsers regularly, you can significantly reduce the risk of an attack. Make it a habit to check the software developer’s website for any security patches. Or better yet, hire a managed IT services provider to keep your system up to date.

Watch your network closely

Regularly conduct security checks using your network security tools to detect watering hole attacks. Use tools like intrusion prevention systems that allow you to detect and contain suspicious or malicious network activities before they can cause problems. Meanwhile, bandwidth management software will enable you to observe user behavior and detect abnormalities that could indicate an attack, such as large transfers of information or a high number of downloads.

Hide your online activities

Cybercriminals can create more effective watering hole attacks if they compromise websites only you and your employees frequent. As such, you should hide your online activities with a VPN and your browser’s private browsing feature. Also, block social media sites from your office network, as these are often used as share points of links to infected sites.

Staying informed is one of the best ways to stay protected. As cyberthreats continue to evolve, it pays to be vigilant and aware of the newest threats. Tune in to our blog to find out about the latest developments in security and to get more tips on how to keep your business safe.

The post How to protect your network from watering hole attacks appeared first on TechSolutions, Inc..

When it comes to your smartphone, especially if you have an iPhone, there is rarely a month or a season that goes by without a new software update available for you to download. Foregoing the updates is tempting, especially when you are busy and just need to be on your phone. However, these updates are important, and the latest update for your iPhone, the iOS 10.1 update, is especially significant.

The latest update for iPhone and iOS users, referred to as the iOS 10.1 update, was launched on October 24, 2016. Its primary purpose is to address a serious security issue with the previous version of iOS. This security vulnerability should be of major concern to any iOS or iPhone user.

The security vulnerability addressed by the iOS 10.1 update was originally discovered by Tencent’s Keen Lab, specifically by a researcher named Marco Grassi. This vulnerability left a hole in the iOS programming that would allow a hacker or attacker to seize control of the phone, changing the code and performing commands after the iOS user opens a JPEG file (image file) that has been “maliciously crafted.”

Essentially, what this boils down to is that without the iOS 10.1 update, a corrupted image file could allow another person to control your device (iPad or iPhone). Even without downloading the file, this security hole could be taken advantage of by a hacker. If this is not enough reason to download the iOS 10.1 update, it also addresses other security issues and concerns that involve specific apps, the ability to see login password lengths through workaround hacks, and the like. Because of these specific issues and more, the iOS 10.1 update is a must-have for users of iPhones or iPads.

If keeping your phone and personal information secure are two of your biggest concerns, the iOS 10.1 update is a no-brainer. The sooner you update your device, the sooner you can feel safer using your iOS devices.

Installing security updates may be inconvenient, but they’re a necessity. If you need help managing software updates and keeping your business safe, contact us today.

The post Why you should download iOS 10.1 ASAP appeared first on TechSolutions, Inc..