CoffeeSecurity - Secure Your Coffee, Secure Your PC, Secure Your Life

Submitted by ken on Sat, 02/01/2020 - 12:00

CoffeeSecurity's intent is to provide customized and targeted cybersecurity training, configuration, and recommendations.  We specialize in passwords/accounts, mobile, personal PC, web-browsing, email, home-automation, and social networks.  Our core beliefs at CoffeeSecurity are:

 - Encryption Works

 - Password Managers Are A Must

 - Coffee and Big Data run the world - Find the Coffee you love, but Limit what Big Data can get from you

 

Organizations Around The World Are Dealing With Fireeye/SolarWinds Announcements

Submitted by ken on Mon, 12/14/2020 - 12:00

An attacker has leveraged SolarWinds Supply Chain to compromise LOTS of people.  This has ruined days all across the world as organizations scramble to mitigate the attack.  Confirmed reports have mostly targeted US Government organizations, but that is likely to expand.  We are most likely dealing with a Nation-State actor here. 

https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html

Work From Home Is Up; Gasoline Consumption Is Down; Are You Taking Advantage?

Submitted by jasonsimpson on Thu, 05/14/2020 - 06:34

First let me say THANKS to the folks still going into work every day.  For the rest that are spending more time at home during Covid19, you are either working from home, or at home waiting to go back to work.  How are you spending your time?  Lots of people are spending less on gas.  If you are describing your experience from the last few months, what are some other things that might make the list?  

Some people are saying they are learning a new skill during this time. A personal friend of mine seems to have time to work on getting his CISSP certification. 

HAM Operators Team Up to Help Design Low-Cost Ventilator

Submitted by jasonsimpson on Mon, 03/23/2020 - 20:05

ARRL New published this story.  http://www.arrl.org/news/view/radio-amateurs-team-up-to-help-university-design-low-cost-ventilator 

Volunteers are responding to the call for help from Gordon Gibby, MD, KX4Z to make low-cost ventilators to help address the critical shortage of these units amid the COVID-19 crisis.  

Some more details are available at the link above. 

Foreign Disinformation Led Us Astray?

Submitted by jasonsimpson on Tue, 03/17/2020 - 18:21

The AP is reporting that some anonymous sources are spreading false information about the COVID19 Pandemic, including the rumor that the US wide lockdown was imminent.  We mentioned hearing of this yesterday.  President Trump mentioned in his press briefing yesterday that those rumors were false.  

That particular rumor went far and wide.  

Please see the AP article for the full scoop: https://apnews.com/7edbc93627b1040a422f2d07f50d4cda

Beware Your Browser Extensions

Submitted by jasonsimpson on Sun, 03/08/2020 - 03:24

Brian Krebs over at KrebsonSecurity wrote an article about a recently found browser extension that was injecting some malicious code onto websites.  It worked basically like this:  You are a website developer, and crafting an article or piece of code to publish.  The extension detects this, and quietly injects some code that requests some javascript to run.  This javascript is to serve up some ads.  The ads of course will generate revenue, not for the website where the ad is served, but the entity that forced the code in via the extension.  

2020 Tornado Season Has Begun

Submitted by Weatherman Lou on Fri, 03/06/2020 - 20:34

This is several days late.  Tornado season 2020 has started, and sadly, has caused a lot of damage and death already in the first week of March.  

Tornado's touched down in several places in Tennessee, causing a lot of damage to the north parts of Nashville, Hermitage, Mount Juliet.  Tornado also touched down near Cookeville and caused a lot of casualties in that area.  Overall I think at this time there were 24 deaths from that storm that went through.  

Researchers discover Philips Hue Vulnerability

Submitted by jasonsimpson on Sat, 02/08/2020 - 12:00

Smart Light bulbs seem to be vulnerable according to researchers.  

 

CVE-2020-6007 flaw exists in the wireless protocol known as Zigbee.  I found this on Infosecurity-Magazone.com.  I'll link to the article and leave the details to them.  

https://www.infosecurity-magazine.com/news/white-hats-shine-a-light-on/

I have previous article about the Philips Hue bulb and getting one to work properly.