Latest news from Camtek CSI, London

 Latest news

26 September 2017 | Deloittes hit by cyber-attack

Deloittes arguably one of the world's most influential cyber security consultants have themselves been hit.
According to a report by TechTalk this attack 'wormed' its way into their system in November or December and remained undetected until March 2017. The Guardian reported that approximately five million emails were potentially exposed although Deloittes stated that only a fraction of these were impacted.
Because of the reputation of the company this has been a big hit to their ego. It goes to show that many companies are still not considering cyber-security as important ast it should be. Cyber is the new kind of warfare which I have been preaching for some time now! And, when the GDPR is effective 28 May 2018, its cyber-attacks that will most likely compromise your data.

16 September 2017 | Equifax data hack affected 694,000 UK customers

It is reported that Equifax's CIO and CSO are leaving the company as it highlights its security efforts.
The credit data firm was hacked between May and July 2017 with Equifax reporting that it was due to a weakness in an open-source software package, that allowed hackers access to a database maintained primary for lenders. The full article was published by The Guardian on 8 September 2017. Also featured on the BBC 10 October at


12 May 2017 | Cryptolocker affects NHS | Camtek CSI

A version of cryptolocker called Wanacrypt0r 2.0 has affected large parts of the NHS today, together with other organisations like Telefonicia. This is ransomware that gets into your IT system (often by invitation) and encrypts all data files and demands money to provide the encryption key. It is difficult to get your files back in 95% of cases, but there are ways of protecting against it - although no one is ever 100 per cent safe. That is why we tell people to keep several backups and have a cyber security regime.

Update: Microsoft issues 'highly unusual' Windows XP patch to prevent massive ransomware attack. Windows XP ceased to get support on 8 April 2014 including program patches. You should be using a later supported operating system to help prevent these attacks. The Microsoft story on this link.

4 May 2017 | Android malware spreads like wildfire | The Next Web

You might think that just barring your phone from installing non-google play applications made you safe - think again. TNW reports that malware-infested software for Google's mobile operating system is multiplying at an alarming rate. Security researchers from antivirus software firm G Data have discovered that more than 750,000 new malicious applications have sprung out during the first quarter of this year.
This issue is particularly widespread among devices from third-party phonemakers where software updates tend to be less frequent and sometime with significant delays.
Full story from TNW on this link.

2 May 2017 | IBM blasts malware with infected USB sticks | TechTalk

Tech Talk has reported that IBM has released a statement disclosing a number of USB sticks have been sent into the public domain. The USB flash drives were shipped to include Storwize flash. It is the Storwize flash that included malicious code It is reported that the infected models include drives that have part number 01AC585 which were shipped with Storwize V3500, V3700 and V5000 generation 1 storage systems.
If you have used any of these sticks you should disinfect your endpoint by doing a malware scan. Maybe best to dispose of the USB stick.
Full story on this link.

2 May 2017 | Warning over fake bank websites | The Telegraph

Hundreds of fake websites that appear to be owned by major high street banks have been discovered online.
Researchers have found as many as 324 sites that look as if they are run by respected brands such as Natwest, HSBC and Barclays but are infact owned by individuals.
Fraudsters have been known to use fake domains, which look similiar to the real thing but are misspelt, to prey on unsuspected customers who are tricked into revealing their log-on and security questions.
Companies and individuals are still being tricked by phishing emails and fake web sites. There are several ways of protecting yourself by the correct training and using protective devices.
Camtek CSI can provide the training and advice to circumvent this as well as help guard against cryptolocker and other malware.
The full Telegraph article can be seen on this link.

25 April 2017 | BrickerBot destroys insecure IoT devices | TechCrunch

A worm called BrickerBot searches out and bricks insecure IoT devices. It has been known to destroy infected webcams and IoT devices by using a Linux package to expose telnet-based interfaces with default passwords. These devices were recently used by the Mirai botnet to turn them into denial-of-service weapons. For the full story go to TechCrunch at this link.

6 April 2017 | Take care over Easter break | Camtek CSI

As the Easter holidays approach, we would like to remind you to stay away from holiday scams and cyber campaigns which may include:
            *    Unsolicited shipping notifications that may include phishing scams or potentially Trojan downloaders

            *    Electronic greeting cards that may contain malware

            *    Requests from charitable contributions that may be phishing scams or solicitation from sources that
                 are not real charities.

            *    False adverts for holiday accommodation or timeshares.

20 March 2017 | Resilience Matters Vol 2 No 1 - Newsletter | Camtek CSI

resilience matters 2 1

17 March 2017 | End of support for Windows Vista | Microsoft

Microsoft has ended its support for the Windows Vista operating system. The product will no longer receive any security updates, hotfixes, free or paid support or any online technical content from Microsoft. Users are advised to switch to Windows 10.

14 March 2017 | Experts warn on rise of hacker ransoms | National Crime Agency UK

According to the UK's National Crime Agency (NCA) smartphones, watches, televisions and fitness trackers can be used to hold people to financial ransom over personal data. Ransomware works by making devices unusable until a ransom is paid to unlock them. To combat this as far as mobile devices are concerned it is important to back up data such as photographs and audio files either to a cloud store or a locally attached flash drive. Many devices also use GPS to track the whereabouts of the phone owner, it is advisable to switch off the location app on a mobile phone when not using the function for mapping or locating apps. This will also save battery power. If you have concerns about your smart tv, then just turn it off and pull the plug out! Ransomware is on the rise, and has been prevalent over the last year. For desktops and lap-tops it is important to keep anti-virus definitions up-to-date together with any other anti-malware programme that you use. Back your data up to a removable hard drive on a regular basis. And, on occassions actually keep an image of your main system drive. If you require any assistance contact us on the number above or by email.

13 March 2017 | 38 popular Android devices ship with malware already installed | Checkpoint Software Technologies Ltd

Keeping malware off mobile devices is a top priority, but do you expect malware to already be present when you open the box? Check Point, the company that brings you Zone Alarm Firewall products, claims that it's research has detected malware on 36 different Android devices from multiple large tech companies. Check Point is not blaming the manufacturer but that the devices are being compromised at some point between the manufacturer and the end user by being added "somewhere along the supply chain". It's not unusual for adware to find its way onto mobile devices reporting back to their creators the habits of the user. It is important to use comprehensive anti-virus and anti-malware products on mobiles as an added barrier to prevent personal data being stolen for whatever reason.
For more information on this story go to:

8 February 2017 | "Fileless" a new form of threat | Kaspersky Labs

"Fileless" attackers are now using anti-forensic techniques and memory-based malware to hide their activity during illegal data acquisition.
After dropping on the hard drive and starting its malicious MSI package it then removes the package from the hard drive with file renaming and leaves part of itself in the memory with a payload. The fileless trap is now ready to be sprung.

Source: Kaspersky Labs.

5 January 2017 | How to see if your Netflix account has been hacked | Netflix

There are many reasons social media applications get hacked. It may be friends knowing your passwords, criminals using other information or carrying out 'brute force attacks' to gain access to your personal content.

Recently some Netflix customers have had their Netflix accounts hacked. Netflix credentials are often stolen and sold to other markets.

The easiest way to check this is to go to your account and check your primary profile and check your viewing activity. Here you will see a list of everything you have watched - note this could be any authorised viewer on any of your devices, such as main TV and tablets or phones. Also check to see whether your 'language' interface has been changed.

Finally if you are suspicious then (1) Go to 'my account' page and click on 'sign out of all devices' which will clear credentials on all the devices you (and others) have used requiring a fresh log on. (2) Change your password to a strong one using a mix of letters, numbers and symbols and not one you use on other accounts.



14 March 2017 | Security updates for Windows OS | Microsoft

Microsoft has released 17 updates to address vulnerabilities in Microsoft software. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system.
Users and administrators should review Microsoft security bulletins on this link.