Business owners have spent the last couple months fearful of cyber attacks from the “fileless malware” plastered across headlines. The reality of this new threat doesn’t actually call for panic...yet. Getting acquainted with this new malware today could save you from a headache in the future.

What is this new threat?

To oversimplify the matter, fileless malware is stored somewhere other than a hard drive. For example, with some incredibly talented programming, a piece of malware could be stored in your Random Access Memory (RAM).

RAM is a type of temporary memory used only by applications that are running, which means antivirus software never scans it on account of its temporary nature. This makes fileless malware incredibly hard to detect.

This isn’t the first time it’s been detected

Industry-leading cyber security firm Kaspersky Lab first discovered a type of fileless malware on its very own network almost two years ago. The final verdict was that it originated from the Stuxnet strain of state-sponsored cyber warfare. The high level of sophistication and government funding meant fileless malware was virtually nonexistent until the beginning of 2017.

Where is it now?

Apparently being infected by this strain of malware makes you an expert because Kaspersky Lab was the group that uncovered over 140 infections across 40 different countries. Almost every instance of the fileless malware was found in financial institutions and worked towards obtaining login credentials. In the worst cases, infections had already gleaned enough information to allow cyber attackers to withdraw undisclosed sums of cash from ATMs.

Am I at risk?

It is extremely unlikely your business would have been targeted in the earliest stages of this particular strain of malware. Whoever created this program is after cold hard cash. Not ransoms, not valuable data, and not destruction. Unless your network directly handles the transfer of cash assets, you’re fine.

If you want to be extra careful, employ solutions that analyze trends in behavior. When hackers acquire login information, they usually test it out at odd hours and any intrusion prevention system should be able to recognize the attempt as dubious.

Should I worry about the future?

The answer is a bit of a mixed bag. Cybersecurity requires constant attention and education, but it’s not something you can just jump into. What you should do is hire a managed services provider that promises 24/7 network monitoring and up-to-the-minute patches and software updates -- like us. Call today to get started.

Like Apple’s Siri and Google’s Google Now, Cortana is an intelligent personal assistant that assists you with a variety of tasks such as making phone calls, setting reminders, as well as searching for files. All of this is possible, with the right commands of course. In order to fully utilize Cortana, we’ve created an unofficial list of things you can ask or say to Cortana on Windows 10 devices.

Hey, Cortana Before asking her to do anything, we need to get Cortana's attention by clicking or tapping the Cortana button on the taskbar. If you do not see Cortana on your taskbar, right-click the taskbar and go to Cortana > Show Cortana icon. To enable 'Hey, Cortana', simply say "Hey, Cortana," followed by your question. If you're using a Windows Phone, you can press and hold the search button to activate Cortana.

Basics tasks If you’re looking to launch a program or open a website, simply use the word ‘Launch’ or ‘Open’ followed by the website’s name. Make notes by uttering the words ‘take a note’ or ‘note it down’. As for making drafts, start with ‘Write an’ followed by email or text and end with the contact name and the message itself. Lastly, ‘Show me emails from [contact]’ will display all the texts or emails sent from the specified contact.

Scheduling/Reminders It’s important for small- and medium-sized business owners to stay on top of their schedules. Take a glance at your calendar events with commands such as ‘How’s my schedule looking?’ or ‘What do I have next week?’. Add or move appointments with ‘Add’ or ‘Move’ followed by the appointment and time. Reminders are easily scheduled by uttering the words ‘Remind me’ followed by whatever you need to be reminded about and when.

Search If you can’t locate the file you need, don’t worry. By asking Cortana to ‘Find’ a document, video, or picture on your device from a specific time frame, she will sift through everything quickly to find what you need. You can easily initiate search queries with ‘Can you find’ followed by whatever you are looking for. You can even look at basic search results without having to open a browser window: Simply ask whatever question you have and enjoy combing through the results.

Window’s voice-activated personal assistant, Cortana, helps you accomplish daily tasks with ease and efficiency -- but only if you use the right commands. If you have further questions or would like to know more Cortana commands, feel free to contact us. We’re ready to help!

Smartphones are basically palm-sized computers. As such, they deserve the same protection as desktops and laptops. While there is no need to install bulky security software to protect against cyber threats, there are steps users can take to prevent cybercriminals from penetrating these small computers.

Mobile malware MO

Malware and other threats pose risks that are as harmful as those that infect desktops and laptops. Some of the threats include messing up your phone bill, ruining your mobile phone’s data, remotely locking and unlocking devices, intercepting messages, prompting fraudulent log-in commands, and sending fake notifications, among others.

Most malware comes from applications downloaded from third-party app stores. Once a phone is compromised, the hacker will have access to passwords, user accounts, and other sensitive personal data. Since some Android devices are linked, there is also more than a passing chance that bugs on one device find their way to linked devices.

Who is responsible?

The burden doesn’t fall solely on smartphone users; app stores such as Google Play Store are responsible, too. Some of the infected banking and weather forecast apps that were widely reported were downloaded from the Google Play Store. Aside from taking swift action against the apps, infected companies were urged to provide as much information and updates as possible regarding the malicious applications so they could be removed from the store to protect users.

Of course, Android users are responsible for their own safety, and there are several measures they can take to avoid becoming victims.

How to avoid being victimized by malware

Yes, the Google Play Store isn’t 100% secure, but downloading from the Google store and other more established app stores -- and not from little-known and less secure third-party stores -- reduces the probability of downloading malicious apps. In case an infected app makes its way to the store and gets thousands of downloads, Google is usually quick to remove the threatening app from their environment and block other malicious entities.

It also pays to read the user reviews. Despite app stores’ best efforts, the proliferation of apps in today’s marketplace makes it nearly impossible to prevent mobile malware from getting through to the store and, afterwards, users’ device.

If an app poses significant risks, someone is bound to post a review or a warning. Regularly updating your mobile device’s software also helps prevent attacks, as the latest software version often comes with stronger security patches or quick fixes.

Malware doesn’t discriminate. Regardless of your computing or communication device of choice, it will find a way to infect and destroy. Ascertain your business devices’ safety by consulting our security experts today.