2FA warning
-
For the billions logging into Gmail and Outlook accounts daily, as well as other major email platforms including AOL and Yahoo, there’s a dangerous new attack to worry about. If you think 2FA always keeps you safe, think again. This attack “bypasses two-factor authentication through session hijacking and real-time credential interception.”
Remember, while many phishing lures remain rudimentary, AI is changing this and they will become harder to detect. The advice is clear. Do not click links. Do not use sign-in popups for the platforms you use except through usual login methods. If you need to revalidate, navigate to a sign-in page through usual channels, never through a link unless it’s one you’ve just requested from a usual channel.
When the world wearies and society ceases to satisfy, there is always the garden - Minnie Aumônier
-
I don’t click on anything these days.
-
This is the sound of email marketing dying? Without those clicks the metrics they need to justify the expense and hassle are most likely already on the decline. That is due to this type of knowledge becoming more common. Spending just 7 months in cybersecurity training and management, really opened my eyes. This threat has been known about for some time now.
And yes, correct answer Steve! Don't click anything! Sometimes you have to do it and it's a good idea to copy the link and check it with https://urlscan.io/ or https://www.virustotal.com/gui/home/url
-
@Mark Can I trust you? Is it safe to click on those links?
Seriously, though, thanks for those. Great resource.
Yea, I'm a member of the "no click" club, too. Have been for a long time.
I'm starting to get phishing texts. I got the "you have unpaid tolls" one a couple of weeks ago. I read a few days later that there has been a huge uptick in those.
-
The new job is going well. I actually like it as I am working a hybrid schedule with 2 or 3 days at the office and the rest is WFH. Everyone is really cool at the office and we even have an office dog that is there most days. The owner is engaged and is down in the support trenches with his team, as he loves helping people with computer issues and he is also very good at it.
While I do well enough in that realm, support was never my main focus, nor do I "love it".
Software development has always been my primary focus. We are working on a proposal for a customer to replace his very much outdated and unsupported custom software package with one based on the framework that I have built over the past 40 years. If we get this job it will be a job that I will be doing for the next several years.I am working on finding a younger person to train, who wants to take the torch from me sometime in the next 5-10 years. We have a couple of candidates internally but we might hire someone outside of the company for this role.
I am also still engaged in my own company. We just release an update to the 9-1-1 centers last week. Yet another update is getting ready to be pushed out next week.
