Cyber Protection Group to offer $2,000 Security Assessment for Second Year in a Row

For the second year in a row, Cyber Protection Group is offering external vulnerability security assessments for only $2,000.  The increased number of security breaches that have occurred in 2015 have caused a continued need for companies to protect their data.  Vulnerability assessments such as web application testing, internal and external vulnerability assessments, wireless assessments, risk assessments, and network penetration testing are in high demand.  The demand for security testing continues to drive the cost to prices that companies can’t afford which causes systems to be left vulnerable to malicious attacks.  The security testing provided by Cyber Protection Group allows vulnerabilities to be found by the “good guys” before they… Read More

Continue Reading

Complete Security Protection with cpgProtect

Malware Protection, Breach Protection, Internet Filtering, and Faster Web Surfing? Introducing cpgProtect. Cyber Protection Group is extremely excited to announce that we have teamed up with one of the world’s leading threat-protection companies (OpenDNS) to offer our cpgProtect service.   cpgProtect is an extremely advanced malware and breach protection service that includes parental and employee filtering for home and business.  This security service protects any device no matter where it is located.   A faster and more reliable internet Our partner’s (OpenDNS) geographically distributed data centers enforce security policies for business users; parental controls for home users; and provide the fastest, most reliable internet resolution for 65 million active users in… Read More

Continue Reading

Apple Devices Vulnerable to Hackers

Many iOS devices could be vulnerable to a specific issue called the  “masque” attack. This basically allows hackers to get into your phone and hijack traffic, as well as disable communication between apps. The way to acquire the malware is through a third party app installer. Many companies use this to install apps that aren’t on the official app store. The hackers disguise their malicious app as something that may be needed. The apps have hidden software allowing them to bypass user control. Apple released a software update in January to help fix this issue (iOS 8.1.3), but one third of devices are still on an earlier iOS. This will not affect many… Read More

Continue Reading

LastPass Security Breach

LastPass, a program that helps you remember all of your passwords and create new, secure passwords, has been hacked. This occurred in early June. The hackers got away with email addresses and the passwords to other accounts and plugins. Fortunately, the master password to any account was not taken, however it is recommended that you change your master password, and definitely change the minor passwords linked to the account. The chief executive of LastPass wrote in a blog on their website: “We are confident that our encryption measures are sufficient to protect the vast majority of users.” More information can be found on their blog and website at https://blog.lastpass.com/2015/06/lastpass-security-notice.html/    

Continue Reading

Hackers Find Vulnerability in Over 600 Million Samsung Galaxy Devices

If you have a Samsung Galaxy device, you could be vulnerable to hackers. Any device that runs Swiftkey, an app that allows you to swipe along the keyboard to type, could be hacked. The issue lies with the updating of the Swiftkey app. When updating, it is done through an insecure channel. This allows hackers to get into the phone and possibly completely takeover the device, which could lead to personal data being stolen.  Cyber Protection Group is currently unaware of any available solution.    

Continue Reading

Major XSS Vulnerability in WordPress Online Stores using Woocommerce

A vulnerability in an extremely popular WordPress online store plugin called WooCommerce has been identified.  The vulnerability includes a Reflected Cross Site Scripting (XSS) problem that allows an attacker to manipulate input fields and then in-turn attack web browsers of visiting users.  On January 29th, WooCommerce fixed their plugin by updating it to 2.2.11.  The WooCommerce site shows over one million active installs, which means there could possibly be an extremely large amount of affected websites if the site administrators do not keep their plugins updated.  For more information on the vulnerability you can visit http://www.cvedetails.com/cve/CVE-2015-2069/    

Continue Reading

FREAK Vulnerability affecting IOS and Android Devices

Freak (Factoring attack on RSA-EXPORT Keys) is a vulnerability that was recently discovered that affects IOS and Android devices.  The vulnerability tricks browsers to revert back to outdated encryption standards.  This could essentially allow someone to sniff the traffic over the wire and decrypt.  A study done by researchers at the University of Michigan determined that nearly one third of websites are still vulnerable. According to www.freakattack.com, the following browsers are still vulnerable: Internet Explorer Chrome on Mac OS and Android Safari on Mac OS and IOS Blackberry Browser Opera on Mac OS and Linux The vulnerability forces the browser to use a weak 512-bit key which can be decrypted… Read More

Continue Reading

Mandarin Oriental Hotel Group Confirms Breach

According to Brian Krebs of krebsonsecurity.com Mandarin Oriental Hotel Group confirmed a breach at it’s upscale hotel chain.  Mandarin has not confirmed yet on how many of their hotels have been breached at this point.  It is possible that attackers targeted this chain because it is a higher end hotel that can cost near $2,000 per night and would likely have customers with no-limit or high limit credit cards.  These cards would typically go for a higher rate on the black market.    

Continue Reading

Offering Vulnerability Assessments / Penetration Testing for only $2,000

What is Penetration Testing? Cyber Protection Group has recently announced that we are offering Vulnerability Assessments and Penetration Testing for only $2,000.  As breaches have seem to become “the norm”, the demand for network and web application security is increasing rapidly.  On a daily basis, hackers are constantly finding ways into company networks and stealing data, installing malware, and compromising servers.  This has caused the demand for talented security specialists to rise which in-turn has security firms charging outrageous fees for vulnerability assessments and other security testing such as network penetration testing and web application penetration testing.  Cyber Protection Group’s goal is to play a major part in security by lowering… Read More

Continue Reading

Big Fish Games reports malware intercepted customers credit cards.

The largest producer and distributor of casual games, “Big Fish Games” has reported had credit card information intercepted from it’s website.  The website had been infected with malware that was transferring information from its billing and payment pages of its website. Big Fish Games catalogs over 4000 mobile and PC games and distributes them to over 150 countries. Currently the malware has been removed and the website has been fix to prevent the same malware from infecting the website again.   Reports confirm that payments through mobile platforms and Facebook were unaffected. Customers should have already received some kind of communication notifying them of the breach and they have been… Read More

Continue Reading