Tech Friday with Dave Hatter - April 17th 2020 - SPONSORED BY INTRUST IT


  • Microsoft Patch Tuesday fixes 3 bugs currently exploited in the wild:
    • Microsoft's April Patch Tuesday has patches for 113 new security vulnerabilities,17 critical and 96 important
    • 2 of the flaws were publicly known at the time of release, and the 3 are being actively exploited
    • CVE-2020-1020, a remote code execution vulnerability occurs when the Windows Adobe Type Manager Library improperly handles a specially-crafted Adobe Type 1 PostScript format
    • The affected font library is used by Windows Explorer to display the content of a file in the 'Preview Pane' or 'Details Pane' without opening it
    • CVE-2020-0938 is a remote code execution flaw that also resides in the Adobe Type Manager Library
    • These two zero-day flaws were reported to Microsoft in March by researchers working with Google Project Zero
    • The third zero-day flaw, CVE-2020-1027, is an elevation of privilege vulnerability discovered by Project Zero, impacting all supported versions of the Windows
    • Other critical flaws also lead to remote code execution attacks
    • Microsoft strongly recommended that the patches are applied as soon as possible
    • To install the latest updates, go to Start \ Settings \ Update & Security \ Windows Update & the click "Check for updates"
    • I have updated my systems with no issues thus far
  • Monitoring social distancing via Wi-Fi:
    • We discussed something similar to this way back in 2015:
      • Named "RF Capture", the MIT device expands the capabilities of previous technologies and can identify persons behind a wall
      • It works by bouncing wireless signals off people standing behind an object back to a device for analysis using a "coarse-to-fine algorithm" which creates an accurate silhouette of the people
      • The device can distinguish between different individuals and even various types of postures
      • During testing, RF Capture was able to distinguish between 15 people behind a wall with nearly 90% accuracy
      • MIT scientists believe that the device has many applications
      • You can watch a video demonstration here:https://www.youtube.com/watch?v=7LTr02cJkiA
    • A new Wi-Fi based tool allows decision makers to find locations on campus where concentrations of people are high
    • Named Spacer, it allows officials to potentially take action to enforce social distancing
    • "The beauty of this system lies in its ability to accumulate useful information and to share it without further disrupting life on campus" - Michael Chee, National University of Singapore
    • Rajesh Balan, an associate professor from Singapore Management University, helped designed the techniques used said "By using Wi-Fi signal strength received from thousands of mobile devices across campus, location information can be aggregated and mapped over time to inform about where and when people aggregate"
    • The plan for the Spacer project is to expand to all of Singapore
    • Some have argued that intelligent management of groups could help limit the spread of disease without draconian quarantines
    • Spacer illustrates the interesting and privacy invading ways that technology can be used
    • Learn more about the project here:https://sleepcoglab.wixsite.com/singaporespacer
  • Beware stimulus check scams:
    • Many government agencies including the FDA, FTC, FBI and the Secret Service have warned about Coronavirus related scams and Phishing
    • For example, the Secret Service wrote "The United States Secret Service is proactively taking steps to alert the public about the types of email scams associated with the Coronavirus."
    • The FTC recently warned about these types scams on their website: "They’re setting up websites to sell bogus products, and using fake emails, texts, and social media posts as a ruse to take your money and get your personal information."
    • The FBI has warned about various scams including Business Email Compromise schemes related to the COVID-19 Pandemic and spoofed job offers
    • Many Coronavirus related phishing scams have been launched including one containing malicious links and PDFs that claim to contain information on how to protect yourself. Another claims a friend, family member or college has been exposed and you need print the attached file and head to a testing center
    • Anti-virus and anti-Phishing software is constantly improving but the bad guys are making massive amounts of money, are very devious, and are always at least one step ahead
    • With stimulus checking going out, expect a wave of phishing scams and spoofed websites focused on those payments
    • What you can do to avoid being scammed:
      • Be highly skeptical of ANY email, text, voicemail or social media post that claims to be related to the stimulus payments
      • Take a Zero Trust stance and don't click any links or open any attachments from ANY unsolicited email, text or messag
      • Verify all messages out-of-band. Open a new browser window and type in the URL of the site that a message purports to be from. Or call the organization using a phone number you looked up independent of the message you received. These scams are big business and in some cases, criminals have overseas call centers to take calls
      • If you open a file from an attachment that asks to "Enable Macros", don't do it UNLESS and UNTIL you verify from the sender that it's legitimate
      • Be skeptical of any web page that asks for your user credentials unless YOU went directly to that URL by typing it in, and confirm that it's correct by carefully examining the URL. It's very easy for criminals to scrape (copy) a legitimate web site and created a spoofed website with a very similar domain for example,https://www.f0x19.com/v.s.https://www.fox19.com/orhttps://www.kroger.com/v.s.https://www.krog3r.com/orhttps://www.irs.gov/v.s.https://www.lrs.gov
      • Keep your anti-virus/malware software updated
      • Use a strong, unique passphrase for every site/app/platform
      • Use a password management application. At Intrust IT, we recommend LastPass
      • Enable multi-factor authentication (MFA, 2FA) anywhere and everywhere you can
      • Remember that a lock in the URL bar of your browser does not guarantee the legitimacy of a site, bad guys can and do purchase TLS certificates too
      • For information related to the payments, go directly to the IRS web site here:https://www.irs.gov/coronavirus/get-my-payment
      • If you believe that you might be the victim of a scam, report it at Internet Crime Complaint Center:https://www.ic3.gov
      • Rely only on reputable sources for information related to COVID-19 such as: