Wednesday, April 15, 2015

Verizon: Mobile Security Is a Back-Burner Issue for Now

As reported on CNET, enterprises should devote fewer resources to securing their mobile infrastructure, since it is less prone to attacks, Verizon Communications advises in its 2015 Data Breach Investigations Report. The telecom does expect mobile security to become more of a major issue once companies improve efforts in areas where hackers are more apt to invade.

In-flight WiFi Risks Airline Security, says GAO

As reported at, the GAO has concluded that in-flight WiFi runs the risk of increasing cyber-security threats against airlines, aircraft, and air-traffic control information systems.

Regardless, of course, people will demand their WiFi,  and the airlines will provide it, thereby making air travel far more miserable. Maybe the airlines can charge a ridiculously high fee that users will bitch about but gladly pay, and reduce baggage fees. No, that'll never happen. What was I thinking?

Wednesday, April 8, 2015

Scam Of The Week: E-ZPass Notice To Appear

From Stu Sjouwerman, Founder and CEO, KnowBe4:

A scam is doing the rounds purportedly sent by the American electronic toll-collection agency, E-ZPass. The emails subject is "Notice to Appear." E-ZPass is available on tolled roads, bridges, and tunnels in the United States and is also accepted at border crossings to Canada.

The copy states "You have a debt to pay for using a toll road, and you are kindly asked to service your debt in the shortest time possible. You can find the invoice in the attachment."

The email supposedly comes from a manager of E-ZPass Support, uses the correct color scheme and logo and appears to be collecting money from an unpaid toll. The message says you have ignored previous bills and urges you to pay immediately by downloading an attached 'invoice.'

This is the latest phishing scam and it's a good idea to send your employees, friends and family a note stating something like the following. Feel free to copy/paste or edit:

"At the moment there is a phishing scam doing the rounds claiming to be from E-ZPass, and that you have ignored previous bills and not paid a toll. They want you to open the attached invoice or else you need to appear. Opening the invoice pay infect your workstation with malware so delete this email the moment it arrives.

"E-ZPass will never send an email or contact you requesting sensitive personal information such as credit card number, social security, user names, passwords, etc. If you are contacted by anyone via email or the phone stating they are from E-ZPass and they are seeking personal information, call 1-800-333-8655 to report you have been contacted by someone attempting to obtain personal information."