This Week In Nerd News (TWINN) – December 12, 2022

Nerds On Site
Article Written By David Redekop

1995

Founded In

96,000+

5-Star Reviews

4.83 / 5

Satisfaction Rating

TWINN #102 – 14 Days from Disclosure to Exploit

In software development culture, we have had white light thinking for decades; imagining the possibilities of how we can write code to make life better, accelerate commerce, do the heavy lifting, anything that can be monetized. We’ve historically left security concerns to afterthoughts, and all of that history is now catching up to us in ways that now force us to reconcile. When we don’t reconcile quickly, that is when nation states as well as cyber criminals take advantage of us as we now see:

YouTube video

The 5 Top Cyber Security Stories Of The Week

Zero-day are exploited on a massive scale in increasingly shorter timeframes. It used to take months, if not years, for a vulnerability to be exploited, but it probably isn’t a surprise that it’s down to an average of only two weeks now from public disclosure.

Hacktivist Attacks Show Ease of Hacking Industrial Control Systems. I can speak from personal experience that it is shocking how often credentials are left at factory-defaults and the lack of network segmentation makes lateral movement and access too easy.

North Korean hackers once again exploit Internet Explorer’s leftover bits. Time to again make sure that Internet Explorer is *not* the default web browser on any business systems.

Hackers earn $989,750 for 63 zero-days exploited at Pwn2Own Toronto. Interestingly no teams attempted to hack a new iPhone, but a fully-patched and updated Samsung Galaxy S22 got hacked four times!

Iranian APT Targets US With Drokbk Spyware via GitHub. This is a real-life example of a “dead-drop resolver” as a way of hiding in plain sight.

Did you know?

Google Adds Passkey Support to Chrome for Windows, macOS and Android. This is a step in the right direction to raise the difficulty level for criminals to phish their victims.

You May Also Like…

About Nerds On Site

On-site & remote IT support in Canada & the United States

Hey from Nerds On Site! We’re a leading digital technology and IT support provider. Our highly trained technicians and engineers can provide fast and efficient on-site and remote IT services for business and residential needs.

For business clients, we can ensure that your computing infrastructure runs at its optimum levels – regardless of scope or size. We have you covered, from installing new hardware to setting up virtual offices or providing sophisticated cyber security solutions. We’ll help you troubleshoot technical issues quickly and efficiently, so you can focus on what matters most, running your business operations.

Residential Clients will also benefit from our knowledgeable team, who offer a range of IT solutions tailored to fit their home’s technology needs. Whether it’s helping Clients restore computer systems that seem to be running slow or providing solutions for wireless connectivity in the home, we ensure that all devices are working optimally.

We make IT more productive, profitable and pleasurable for our Clients in North America and beyond! Call us today to find out more.

 

Choosing the Right IT Support

At Nerds On Site Client satisfaction always comes first. We don't want to just be your one-time IT provider, we want to be your forever Nerds whenever you need us.

Nerds On Site London Tick

Client Satisfaction Always Comes First

Nerds On Site London Tick

Available Everyday, Evenings & Weekends

Nerds On Site London Tick

Local Nerds, Global Team

Nerds On Site London Tick

By The Solution Pricing

Nerds On Site London Tick

We speak Normal Speak, not "Nerd Speak"

Nerds On Site London Tick

No Travel Fees or Hidden Costs

Business Client Reviews

A 96.4% Satisfaction rating based on 29,000 + reviews

"My Nerd always delivers highly professional services and meets my small business needs. He is extremely intelligent, experienced and very personable. As usual, I would not hesitate to recommend his services to other businesses."

Frank J

Nerds On Site Client

"My Nerd is always prompt and professionally responsive. I feel like he takes a personal vested interest in our account. I trust him completely and have experienced the benefit of following his recommendations. Our business would not be the success it is, without his contribution."

Corinne L

Nerds On Site Client

"Our Nerd responds quickly to requests for service. He provides recommendations that are appropriate for our current equipment as well as 'plan ahead' advice. He is always pleasant and accommodating. We are very pleased to have Nerds caring us."

Kim M

Nerds On Site Client

For Immediate Support