loader from loading.io

Welcome! Why Hackers are turning to Covid-19 Templates and Why you must be on Lookout plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Release Date: 08/01/2020

Welcome! Remote Work and Security of Home IoT devices on network plus more on Tech Talk with Craig Peterson on WGAN show art Welcome! Remote Work and Security of Home IoT devices on network plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

  Welcome! Craig discusses problems that businesses can face when remote workers have IoT devices on the network they use to connect to work. For more tech tips, news, and updates, visit - CraigPeterson.com --- Read More:             --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] Hey, we got a new red flag for home workers when it comes to those smart digital assistants that we have in our homes. Yeah, indeed. Not only can it cause problems for us in our homes, but that problem can go right through to the business....

info_outline
Welcome! Security Concerns on Voting Technology plus more on Tech Talk with Craig Peterson on WGAN show art Welcome! Security Concerns on Voting Technology plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome! Craig discusses problems related to Mail-in Voting and Voting technology. For more tech tips, news, and updates visit - CraigPeterson.com --- Read More:             --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] Red team-blue team. This is a very interesting problem that is now being confirmed. Through a study. A bipartisan study. We are in trouble with our election this year. Hey everybody. Craig Peterson here. Thanks for joining us. Man alive! can anything be more political than a presidential election cycle? It...

info_outline
Welcome! Mounting Election Security Concerns plus more on Tech Talk with Craig Peterson on WGAN show art Welcome! Mounting Election Security Concerns plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome! Craig discusses the mounting security issues revolving around the upcoming elections. For more tech tips, news, and updates visit - CraigPeterson.com --- Read More:             --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] Before the break, we were talking about some of the problems with different types of voting, the electronic voting machines, the apps that have been used and developed, and serious problems with those. But now we're going to talk about the problem with the mail. Hey, you're listening to Craig...

info_outline
Welcome! Smart Lock and even larger issues with IoT plus more on Tech Talk with Craig Peterson on WGAN show art Welcome! Smart Lock and even larger issues with IoT plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome! Craig discusses problems with some of the smart lock technology and an even larger issue surrounding IoT devices in general.  For more tech tips, news, and updates visit - CraigPeterson.com --- Read More:             --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] Hey, welcome back everybody. If you have smart locks or you think maybe smart locks are the way to go, we've got a little bit of news for you. Some research had just come out about these smart locks in our homes and offices turns out they just smart...

info_outline
Welcome! Facial Recognition being used to Arrest Rioters plus more on Tech Talk with Craig Peterson on WGAN show art Welcome! Facial Recognition being used to Arrest Rioters plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome! Craig discusses how Police are using Facial Recognition to identify and trace movements of rioters. For more tech tips, news, and updates visit - CraigPeterson.com --- Read More: r             --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] Facial recognition software is getting better all the time. You've seen these rioters and they're wearing all of the masks and hoods and helmets and everything to try and hide their identity. It isn't working anymore. Craig Peterson: [00:00:20] Hey everybody, Craig Peterson here....

info_outline
Welcome! The Future of Business Offices plus more on Tech Talk with Craig Peterson on WGAN show art Welcome! The Future of Business Offices plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome! Craig discusses the Hawthorne Effect and the changing business office. For more tech tips, news, and updates visit - CraigPeterson.com --- Read More:             --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] Hey, is this the great reset or maybe it's the inevitable reincarnation of the corporate office. That's what we're going to talk about right now. What is happening? What's happening at the corporate real estate? How are we using technology to cope? Craig Peterson: [00:00:18] You're listening to Craig Peterson...

info_outline
Welcome! Virtual Learning Meeting Lands Parents in Hot Water plus more on Tech Talk with Craig Peterson on WGAN show art Welcome! Virtual Learning Meeting Lands Parents in Hot Water plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome! Craig discusses how a kid on a zoom virtual learning meeting caused his parents to be questioned by Police.  For more tech tips, news, and updates visit - CraigPeterson.com --- Read More:             --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] When you think of a violation of somebody violating your privacy, what are you thinking about? Is it people Tom's? Is it somebody sharing a little story about you? That isn't true. with back to school, virtual, um. Craig Peterson: [00:00:19] Yeah, we've got a story...

info_outline
 Welcome! CHARGES: Obstruction of Justice for Uber Security Chief plus more on Tech Talk with Craig Peterson on WGAN show art Welcome! CHARGES: Obstruction of Justice for Uber Security Chief plus more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome! Craig discusses a hack at Uber that ended up with its Chief of Security facing Obstruction of Justice charges.  For more tech tips, news, and updates visit - CraigPeterson.com --- Read More:             --- Automated Machine-Generated Transcript: Craig Peterson: [00:00:00] Hey, I've got a story right now that should be a word of warning to businesses that have personal information. If you are working for a company and they've got your personal information, you're going to want to hear this too. Hi everybody Craig Peterson here on...

info_outline
AS HEARD ON: WGAN Mornings News with Matt Gagnon: Deep Fakes and China's Theft of US Intellectual Property show art AS HEARD ON: WGAN Mornings News with Matt Gagnon: Deep Fakes and China's Theft of US Intellectual Property

Craig Peterson - America's Leading Security Coach

Good morning everybody! I was on WGAN this morning with Matt Gagnon, and we began talking about Deep Fakes and then went right into China's theft of US Intellectual Property.  Let's get into my conversation with Matt on WGAN. These and more tech tips, news, and updates just visit - CraigPeterson.com --- Automated Machine Generated Transcript: Craig Peterson: [00:00:00] Be extra careful, because the best way to defend against these deep fakes is to hold the people accountable that host them. Good morning, everybody. It was on with Mr. Matt Gangon this morning, and he and I had a couple of...

info_outline
AS HEARD ON - The Jim Polito Show - WTAG 580 AM: Why Most Businesses Don't Take Security Seriously and Why they Should? show art AS HEARD ON - The Jim Polito Show - WTAG 580 AM: Why Most Businesses Don't Take Security Seriously and Why they Should?

Craig Peterson - America's Leading Security Coach

Welcome! Good morning, everybody. I was on WTAG this morning with Steve Fourni who was sitting in for the vacationing Jim Polito.  He had a few questions about computer security especially in light of the 129 Microsoft Vulnerabilities that were addressed on Patch Tuesday, I did get up on my soapbox for a bit, but Here we go with Steve. For more tech tips, news, and updates visit - ---  Automated Machine Generated Transcript: Craig Peterson: [00:00:00] Hey, it's political season. I had to get on my soapbox. Okay. Little stump, speech, going on here, Craig Peterson. Of course this...

info_outline
 
More Episodes

Welcome!

Craig explains Hacker's new bag of tricks.  They are buying pre-made COVID-19 templates to fleece unsuspecting users.  

For more tech tips, news, and updates visit - CraigPeterson.com

---

Read More:

How to find Stalkerware on your smartphone

This Simple Hack Could Tank Your Business

7 VPN services left data of millions of users exposed online

Universities Brand ‘Drama Therapy’ And ‘Journalism’ as STEM Majors to Circumvent Immigration Policy

DoJ suggested OANN should call FBI about NPR’s tipline, emails show

Google reportedly peeks into Android data to gain edge over third-party apps

Russia’s GRU hackers hit US government and energy targets

Your next smartphone will be a lot harder to scratch

---

Automated Machine-Generated Transcript:

[00:00:00] Hey, welcome back,  everybody. Craig Peterson here on WGAN. It's our last half hour together today, but we'll be back again next week. One till three here on WGAN every Saturday. Of course, I'm on with Matt Gagnon during drive times on Wednesday morning at seven 34, as we discuss the latest in technology news.

You've probably been in the hearing warnings. I've certainly been talking about them with Matt, about all of the nastiness that's going on right now with the hackers. And we're talking about soup to nuts hackers here. We're talking about nation States. In other words, countries like Russia and Iran and particularly China and all of the things they're trying to do to really mess us up.

It's a shame to see that, but we

[00:01:00] also have just regular old hackers. Those people typically in Eastern Europe who are just hoping to get their hands on a hundred thousand dollars from some rich American who doesn't deserve the money, because then, wow, this is great. It's important to them in their family for years.

In fact, their extended family for years. So they're doing everything they can to get money from us. The number of hack attempts has gone way up. I've seen numbers as high a, 300% through phishing attacks and various other attacks, including direct attacks on our firewalls, our websites on basically everything that is facing the internet.

So it's a real problem out there and threat actors, these bad guys are trying to take advantage of people as part of this pandemic. They're pretending that they are the World Health

[00:02:00] Organization, the Internal Revenue Service, the Centers for Disease Control or some government agency or NGO, as they say, non-governmental organizations.

There have been a lot of them coming out pretending to be from the United Kingdom's government, the government of Canada and the government of France. That is a very big deal because they're being successful at. Unsurprisingly, the COVID-19 phishing campaigns have just taken off. I'm looking at a chart right now, different page deployments. So it hit a peak around March 26th and it's been dropping.

But here's what these pages are that I'm talking about. These are pages up on the dark web, just regular webpage type pages, and bad guys. These bad

[00:03:00] actors go there and they can download templates. Templates of emails, templates of the website. So instead of taking a day or two to come up with a great copy of a website that looks just like the World Health Organization, all they have to do is pay 10 bucks, $10. For a set of templates that they can now use to send out to you, and me, emails that look like the World Health Organization.  If we click on it, take us to a website that looks like a World Health Organization or one that makes it look like your computer was infected.

A lot of these templates have multiple pages, as well as emails, malicious web domains that can be inserted. The bad guys can rent a web domain and use that. This is regular marketing.

[00:04:00] Where you might have an affiliate and you use an affiliate code in order to, track that was my lead I want to get paid if they buy.

 Well, they have affiliate codes for these bad websites. It's absolutely amazing. Then these credential phishing attackers have our information that they've taken from some hack online. There are some huge databases of our email addresses, usernames names, and passwords that are out of their huge databases.

They're using these databases here to try and get you to click on something. Because they know the last four of your social security number, they know your email address, they know your name. In many cases, they might even know your bank because what they'll do is use the information that they've stolen from, whatever it is,

[00:05:00] a clothing website and use that same email address and that same password to try and log into a number of bank websites.

Are you using the same email address and password to using multiple sites? No, you're not, are you? Because that's what they're doing. That's called credential stuffing and credential fishing. We've seen these landing page deployments go down a little bit, which makes sense because again, most of the bad guys have been doing it.

So let's talk about some of these spoofed websites. What do they look like? the domain is usually a giveaway, if you're paying attention.

So for instance, they might have a wastewater treatment.co. Dot N Z. So that's particular site is a World Health Organization, branded

[00:06:00] credential fishing template.

So you go to that page, you verify quote, unquote, your email, and your password. And now you're in. Now we know that there was supposedly a hack of the World Health Organization's credentials. A hard to tell if that's absolutely true or not, but they're copying the WHO's logo, color scheme and they're trying to get you to enter in your credential.

Same thing with the United States Center for Disease Control and looking at a spoof site right now. It's cdc.gov dot Coronavirus dot secure dot server dot shorter-term rental.org. Obviously it's not really shorter-term rental. So people look at it okay. cdc.gov coronavirus. Okay. That makes sense. It says authenticate with your email provider to generate a vaccine ID. It has quick login links for outlook, g-mail, office,

[00:07:00] EA, AOL, and Yahoo.  It's asking for an email address and a password. So you can receive a vaccine ID, whatever the heck that is. This is a broad web email credential phishing template.

Here's another one here. This is a see matters dot com.  Of course, it's coronavirus is what they're trying to get at here. Financial aid, details. It says, after an accounting audit of our records, we discovered that you are eligible for an instant amount of $1079.83 cents worth of financial aid. Upon submission, your request will be further reviewed by our accounting team. And the amount in question will be credited to your confirmed financial institution in a timeframe of 48 hours.

Again, fake. Here's another one. This is a get my payment website that's out there. And again, these are all templates that they pay their 10 bucks and they

[00:08:00] get a set of templates.

It makes it look like it's the IRS, but again, it's not. They are, IRS is URL, and if you check the SSL key signature that's not them either. So this one is to get my payment. It asks for your social security number, your date of birth, your full name and your zip or postal code. Okay. All right there and the IRS site, how's that for fun?

if you want the real IRS site, by the way, go to irs.gov and you can click through on there.

Here's another one. Get my payment, the government of Canada it's even in French as well. Emergency Canada, emergency response benefit. These things just go on and on, Canada revenue L'Agence du Revenu du Canada de Aussi en Francais. The United Kingdom, her Majesty's revenue and customs, it goes on and on.

So the bottom line here be very careful. The bad guys are out there.

[00:09:00] They've got these ready-made COVID-19 themed websites that they're stealing. They're renting, they're putting online and they have really been making a lot of money.

All right. When we get back, we're going to talk about Britain's hard lesson about blind trust in so-called scientific data.

You're listening to Craig Peterson here on WGAN an online Craig peterson.com.

Stick around. We'll be right back.

---

More stories and tech updates at:

www.craigpeterson.com

Don't miss an episode from Craig. Subscribe and give us a rating:

www.craigpeterson.com/itunes

Follow me on Twitter for the latest in tech at:

www.twitter.com/craigpeterson

For questions, call or text:

855-385-5553