Tech – Page 59 – Scriptingthewhy.com

Jobs Band of Thieves

Consider following on social media!

Quick note: if you’re viewing this via email, come to the site for better viewing. Enjoy!

Tim: Hey Briggs, did you read the latest script?
Briggs: You know I did bro.
Tim: Z-Daddy is like my gun, he’s always on point.
Briggs: Bro, stop calling him that and that was mad cringe.
Photo by Pixabay, please support by following @pexel.com

There was a time, a long time ago, when we as humans weren’t divided and we lived together in perfect harmony. In case you were wondering how long ago that time was, I’m referring to the stone age when we were in caves, communicating through grunts and often pointing off into the distance to what may be a potential threat.

But as our civilization grew, so did our divide, and this also happened within the world of technology. There has been a long-standing argument over which PC (Personal Computer) is superior and to what aspect. Many claim that Windows users are the most vulnerable to viruses, malware, and susceptible to other forms of attacks and Apple is the alpha, omega, and like a self-proclaimed independent woman of modern society, they don’t need any virus protection keeping them down.

Mac users, you might want to keep reading because your PC isn’t off the menu.

Shaw: Mac can get hacked? But Steve Jobs at fruit.
Z-Daddy: Shawn, that has nothing to do with this topic.
Photo by Dima Valkov, please support by following @pexel.com

A Bitten Apple

For many years, Apple has gone under the radar for being targeted for viruses and malware. Viruses have been reported to hit Apple products but not as hard or as often as with Windows and Android.

But there is a new addition to the growing list of viruses aiming to put MacOS higher up on the attacking menu. MacStealer is classed as malware that can collect your passwords, cookies, and other credentials from the web browser. Web browsers like Firefox and Google Chrome are commonly on the menu. MacStealer also has the capability to extract information from the KeyChain database.

KeyChain, in case you’re unfamiliar, is a macOS app that stores your passwords and account information, so in a sense making it easier for you to login into your accounts with less recalling. Always keep in mind that if it makes it easier for you it also makes it easier for the attacker depending on your given level of privilege on your PC.

A small inconvenience can go a long way.

Here at Uptycs, we find viruses and stuff.
Photo by Zhengdong Hu, please support by following @pexel.com

Malware Among Mac

Analyst researchers at a company called Uptycs discovered this malware. Uptycs, which is a cloud-based analytics solution for anomaly detection. You may be asking yourself what all these words mean. These are all fancy words for, “We look for anything that may be suspicious on your network” or “sus”, for those who have played Among Us.

They had found the malware being advertised on a forum site on the dark web. For those who don’t know, the dark web is not what Hollywood makes it out to be, and you may have experienced it to some degree. The dark web is the use of special browsers like Tor Onion and VPNs (Virtual Private Networks) for peer-to-peer connections to access content that otherwise wouldn’t be accessible.

Always keep in mind, just you being there isn’t illegal, however, the activities in which you participate if discovered could have consequences. MacStealer, was not only being sold as Malware-as-a-Service (MaaS) – meaning the author created it and it’s being sold for public use via agreement on pay, but its price tag was $100.

The fact that threat actors keep a budget in mind when it comes to paying for malicious services on the dark web leaves me dumbfounded. Even cyber criminals feel the effects of inflation.

Z-Daddy, please tell I don’t have to switch back to Windows OS.
Photo by Andrea Picacquadio, please support by following @pexel.com

Ideal Co-Worker

So, at this junction, you probably want to know how this malware functions. MacStealer, when distributed, appears as an unassigned DMG (Apple Disk Image file) with a weed icon on the folder.

This is done with the intent to trick the victim into running the file on their computer. After clicking, the victim is prompted with a fake prompt to enter their credentials to “log in”. Once this action is completed, the machine is comprised, and information aggregation can begin.

Once all of the data is collected, it’s stored in a ZIP file and is sent back to controlled servers and stored to be collected later for the hacker. At the same time, MacStealer sends out a notification signifying the task is complete.

Yes, I know, this is more efficient than your co-workers, and no, you can’t make a virus to replace them. I’ve already tried.

Oh my co-workers just got lucky. I was so going to replace them with a virus.
Photo by Andrea Piacquadio, please support by following @pexel.com

Zero Victim Security

This is being told with some good news… finally. No one (that I am aware of) has been hit with this malware yet. Uptycs analyst spotted it and put out an alert in time.

It’s still in the developing stages, so features from the author are looking to be added to it but for now, it’s nothing too sophisticated where you wouldn’t be able to spot it. Still, prevention has to be mentioned because not everyone may be computer savvy.

For some people owning an Apple product is like eating at a fancy restaurant, some people just bought it for the name. I don’t know how many people have put weed icons on their folders but if you find a file or folder with a weed icon and you didn’t put it there, delete it. Only enter your passwords and other log-in information at secure websites.

Never, and if you’re doing it, stop, store your passwords or any information in your web browser. It seems like a good option but it’s the one of few areas threat actors count on for your goodies. If you have too many accounts and passwords to remember, a solution could be using a simple text editor like Microsoft Office Word, saving, and storing your credentials on a flash drive, and unplugging it from the computer for good measure.

Never download files or click on any links sent from unknown sources and double-check with people whom you may know the link was from. There aren’t as many vulnerabilities in MacOS as in Windows, but a moment in evaluating a given situation could see both operating systems with better security.

Any one of these macs could have been comprised, don’t let it be yours.
Photo by fauxels, please support by following @pexel.com

Made it this far and found this to be entertaining? Then a big thanks to you and please show your support by cracking a like, scripting a comment, or plug-in to follow.

Would like to give sincere thanks to current followers and subscribers, your support and actions mean a lot and has a play in the creation of each script.

Do you think there is something I may have missed or have another way to prevent this? Script a comment below.

Security, Tech

Ransomware Threat: Proactive Defense and Collaborative Cybersecurity

Key Takeaways

Ransomware is a form of malware that encrypts a victim’s files and demands a ransom for decryption.
Different types of ransomware exist, including crypto-ransomware, locker ransomware, RaaS, and sextortion ransomware.
Ransomware attacks can have devastating consequences, causing financial loss, operational disruption, and reputational damage.
Everyone is a potential target, from individuals to businesses and governments.
The ‘3-2-1’ backup strategy is crucial for data protection.
Employee education on phishing attacks is essential for preventing ransomware infections.
In the event of an attack, isolate affected systems, contact authorities, and seek professional help.
Paying the ransom is generally not recommended and may be illegal.
The fight against ransomware requires a proactive approach to cybersecurity with continuous vigilance and collaboration.

The hills have danger, Watson.
Photo by Kat Smith, please support by following @pexel.com

Ransomware: The Looming Threat

Ouch. That’s the sound of a collective gasp as the realization dawns upon us: ransomware attacks are not just a distant threat; they’re a menacing reality. The digital age, while brimming with convenience and connectivity, has also become a breeding ground for cybercriminals. And ransomware, their weapon of choice, is proving to be increasingly potent.

The conventional wisdom has long been: don’t pay the ransom. It’s a principled stance, designed to discourage these digital extortionists. After all, rewarding their nefarious activities only fuels their insatiable appetite for profit. Yet, the pressure cooker of modern business, coupled with the fear of irreparable data loss, often tempts victims to cave. The question then becomes: is there a definitive, foolproof strategy for navigating this perilous landscape?

Let’s delve deeper.

Understanding the Beast

Ransomware, in its essence, is a form of malicious software that encrypts a victim’s files, rendering them inaccessible until a ransom is paid. But this is just the tip of the iceberg. The ransomware ecosystem is evolving rapidly, with new variants emerging at an alarming rate.

Crypto-ransomware: The classic model, this type encrypts files and demands a decryption key. It’s the digital equivalent of holding your data hostage.
Locker ransomware: This variant takes a more aggressive approach, locking the entire device and demanding payment to regain access. It’s like being forcibly evicted from your digital home.
Ransomware-as-a-Service (RaaS): In a disturbing twist, cybercrime has adopted a franchise model. RaaS platforms provide the tools and infrastructure for aspiring cybercriminals to launch their own ransomware attacks, lowering the barrier of entry for these malicious actors.
Sextortion ransomware: This particularly insidious form of ransomware leverages blackmail, claiming to have compromising material and demanding payment to prevent its release. It’s a despicable tactic that exploits fear and shame.

These are just a few of the many ransomware variants wreaking havoc. The sophistication and audacity of these attacks are increasing, making it imperative for individuals and organizations to be vigilant.

Your next move should always be made wisely.
Photo by Anna Shvets, please support by following @pexel.com

The High Stakes Game

The potential consequences of a ransomware attack are far-reaching. Financial loss is an obvious outcome, but the damage can extend far beyond monetary implications. Disruption of critical operations, loss of customer trust, and reputational damage can have long-lasting effects. For individuals, the loss of personal data can be devastating, leading to identity theft and other forms of fraud.

It’s essential to understand that no one is immune. From small businesses to multinational corporations, and from individuals to governments, everyone is a potential target. The cybercriminals behind these attacks are opportunistic, casting a wide net in search of vulnerable victims.

Defending Against the Threat

Prevention is undoubtedly the best defense against ransomware. While it’s impossible to eliminate risk entirely, implementing robust security measures can significantly reduce the likelihood of a successful attack.

The “3-2-1” backup strategy is a cornerstone of data protection. This rule dictates having three copies of your data, stored on two different media, with one of those copies off-site. Regular backups are crucial, as they provide a safety net in case of ransomware encryption.

Employee education is another critical component of a comprehensive security strategy. Phishing attacks are a common entry point for ransomware, so teaching employees to recognize and avoid suspicious emails is essential. Staying updated on the latest threats and best practices is also crucial.

In the unfortunate event of a ransomware attack, it’s essential to act swiftly and decisively. Disconnecting affected systems from the network can help prevent the spread of the ransomware. Contacting law enforcement and cybersecurity experts is also crucial.

While paying the ransom might seem like a quick fix, it’s generally not recommended. There’s no guarantee that you’ll regain access to your data, and it only encourages further attacks. Moreover, paying the ransom can be a violation of anti-money laundering laws in some jurisdictions.

Like credit cards, just because you made a payment doesn’t mean you’re out the woods just yet.
Photo by Bruno Ticianelli, please support by following @pexel.com

The Road Ahead

The battle against ransomware is far from over. Cybercriminals will continue to evolve their tactics, seeking new ways to exploit vulnerabilities. To stay ahead of the curve, individuals and organizations must adopt a proactive approach to cybersecurity. This includes investing in robust security solutions, staying informed about emerging threats, and fostering a culture of security awareness.

The future of cybersecurity is complex and challenging. However, by working together, we can create a safer digital world. It’s a battle that requires constant vigilance, innovation, and collaboration.

Would you like to add more specific information about ransomware prevention, recovery, or the legal implications of ransomware attacks?

Love learning tech? Join our community of passionate minds! Share your knowledge, ask questions, and grow together. Like, comment, and subscribe to fuel the movement!

Don’t forget to share.

Every Second Counts. Help our website grow and reach more people in need. Donate today to make a difference!

Make a one-time donation

Make a monthly donation

Make a yearly donation

Choose an amount

$5.00

$15.00

$100.00

$5.00

$15.00

$100.00

$5.00

$15.00

$100.00

Or enter a custom amount

Your contribution is appreciated.

Donate Donate monthly Donate yearly

Cloud Talk, Tech

Freedom Didn’t Ring for You, Here’s Why…

Daily writing prompt

What does freedom mean to you?

View all responses

These germs are freer than I am. *sighs*
Photo by Pixabay, please support by following @pexel.com

We’re Not Dictators of Our Past but of Our Future

In a time when pretty much everything is being put under a microscope, it’s nice to sit back, examine, and marinate in a stew with some chill music. The item under our microscope or in question is “What does freedom mean to you?”

This is an interesting question because freedom would be not having to work for most people. This is fair, but that begs the question “Without work, what would you be doing?”

Oh, brother, this is going to be a mixed bag, we can already tell. Anyway, let’s get on with our thoughts and let freedom ring.

Freedom? Freedom is why I wear a watch.
Photo by Dinielle De Veyra, please support by following @pexel.com

Freedom, what is it? Everyone wants it, but is it even a real thing? Don’t worry, you’re not Neo, we’re not Morpheus, and we’re not going to Matrix you. Freedom, when defined, is having the ability to be excluded from obligations.

What are obligations? Think of things you don’t want to do. This could be things like paying bills, putting overpriced gas in your car, or making up your bed. For us, the meaning of freedom is not being free from obligations but having the choice to fulfill obligations without consequence.

Still having to fulfill obligations without the consequence of not fulfilling obligations? That’s a real head-scratcher. We know, but again, we ask “What would you be doing if you didn’t have to do it?”

Freedom is lonely because not a lot of people have it.
Photo by Pixabay, please support by following @pexel.com

So, let’s play on the angle where you have zero responsibilities. Rushing out of bed is no longer a thing, money is no longer an issue, your coffee is always ready, and breakfast is on the table. Your whole day is ahead of you. What would you do? Let us know your response in the comments.

We believe life would take a sharp turn to boredom for the vast majority of people. Why is that? Well, you’re not expected to do anything, you don’t have to pay for anything, nothing is an issue. Welcome to the world of the “rich”, this is the place where you can spend money on nonsense while others try to make sense of what they could be doing better with their time.

We believe this is the reason why rich people are portrayed this way on television, it displays the boredom that comes with freedom. We’re not saying freedom is bad and doing nothing will cause you to do ridiculous things, but we are saying there is a reason why there are consequences.

If you don’t lay out consequences for yourself then they will be laid out for you. The wealthy are well aware of that mindset. That’s why they have their days, weeks, months, and even years scheduled. Fulfilling an obligation that you’ve created and holding yourself accountable for not fulfilling is freedom.

Why? Because you’ve set the terms, not someone else. You’re in control, not someone else. You made your bed up, not your parents. You are free to do what you want within the parameters you have set for yourself, and that’s powerful.

Always remember; Uncle Ben (not the one on the rice box) said “With great power, comes great responsibility”. Well, we say “With no responsibility, comes no power.”

Enjoy what you read? Why not consider leaving a like and subscribing for more?

Click here if you want to read another script similar to this.