CCleaner Hacked Up to 2 million impacted by Malicious CCleaner — Is it worse Than Equifax?

wefightforsecuritySeptember 18, 2017Uncategorizedccleaner, ccleaner hack, clleaner hack, data breach, equifax, equifax worse, information security, malicious ccleaner, malware, security audit

CCleaner distribution center was hacked and a malicious version of CCleaner was put in it’s place. Unfortunately, up to 2 million CCleaner users downloaded a malicious version that had a RAT, also called remote access tool. This could be worse than Equifax, which some would say that is unrealistic, because Equifax affected up to 142 million people. However, it only affected the information curated by Equifax, not the entire users computer, which some of them most likely had their SSN, along with other very personal information.

What Is CCleaner and how was I affected?

CCleaner is used to clean up computers, which naturally would tick off hackers. So, in August 2017 a hacker with malicious intent broke into the CCleaner servers and replaced the legitimate CCleaner with one that had malware in it. Over 2 million people downloaded malware or to be more precise, a remote access tool that allowed the hacker to gain access to your computer’s name, a list of installed software and Windows updates, running processes, MAC addresses of network adapters alongside additional information.

While that sounds pointless, it actually isn’t. This information is sent back to a hacker who is using a U.S server. Now the hacker knows the system he has infected and how secure or insecure it is, then without pointing out how he got into the system he has an easier way of exploiting it. Or he could exploit the system after already being inside of it, but from what we’re reading it appears the remote access tool was doing recon work after infecting you to find another way into your system, so the malicious version of CCleaner wouldn’t be noticed for awhile and they suceeded. CCleaner was hacked with a RAT on August 15th and wasn’t detected until September 12th. That’s almost a full month the hackers had complete access to two million systems.

To conclude, it appears the hackers used the malicious version of CCleaner to do recon, or if this were a traditonal robbery the term “case the joint” would be used. They infected the computers, to see how to get into the system further without their initial point of entry, which in this case the CCleaner hack from being noticed.

Depending on what type of data was exfiltrated, this could be worse than equifax, because it affected more data. We are looking at the quality of the data stolen, not the quantity of the data stolen. Clearly the quantity of the data stolen from Equifax is far higher than CCleaner, but CCleaner may have gotten the users higher quality data they can use for ransom and other malicious uses or reselling it.

We will continue to update this, to keep you informed

Equifax hack: The Equifax Data Breach Disaster In Full U.S & Argentina Equifax hack Report

wefightforsecuritySeptember 13, 2017September 14, 2017cyber security, Uncategorized

Equifax hack and the Equifax Data breach In U.S and Argentina explained In Full

The Equifax hack & the Equifax data breach was horrible, because it has affected up to 143 million people that had their social security numbers exposed in the Equifax data breach disaster. Now Equifax Argentina has been hacked due to equifax using no security measure for a certain portals login credentials. So, what happened with Equifax data breach? Equifax security had a history of not responding or fixing known security vulnerabilities in their system at the time the equifax hack in the U.S took place. One of many vulnerabilities that had not been fixed was an xss that was reported a year prior to the malicious hack, which may help show the negligence that Equifax showed towards their cyber-security.

After the Equifax hack in the U.S took place, the Argentina Equifax hack took place, because their username and password were the same default credentials, no one in the world should be using. What was their username and password? admin for username and the password was also admin.

If you haven’t heard that Equifax royally screwed up on providing credit card monitoring, or even if you have heard that they messed up, it’s far worse than what you know. Originally when people accepted the Equifax credit card monitoring they were waiving their rights to sue Equifax for the equifax data breach, according to multiple reports. After they came under extreme criticism Equifax updated their terms to say they meant you can’t sue them for the use of the credit card monitoring, but you can still sue them for the cyber-security breach that has already occurred.

If the Equifax credit card monitoring issues stopped there, that would be amazing but Equifax showed they weren’t prepared to handle a breach. Equifax only provides you a year of free monitoring services and they use their own companies services to provide you that one year of monitoring. Senator Schatz wrote a scathing, yet one hundred percent factual critique of Equifax and the Equifax data breach that points out they will make a large profit off of their credit monitoring, because per his critique, Senator Schatz stated that was insufficient. He Also pointed out that their current one year monitoring model makes them profit when people can go back to the company that equifax owns for continued monitoring after the year is up.

It was pointed out by others that Equifax can make up to $120 of profit per person off of credit card monitoring per their page that allows you to sign up. If all 142 million people affected paid for the next year of credit card monitoring they would make 14 billion dollars off of the breach, just on the credit card monitoring. Senator Schatz went on to point out that they will make 30 dollars off of each person who wants to freeze their credit card file, which is a smart thing to do.

After the scathing critique from Senator Schatz, and colleagues and many other people who protested over the credit freeze charge Equifax announced they will be allowing free credit report freezes until November 21st and refunding anyone who paid for the service after the breach was announced. A credit freeze is also known as a security freeze for your credit report adding layers of security helping protect criminals from opening new credit in your name.

Equifax went on to say that you will not be automatically enrolled or charged after the free year of credit monitoring is over. However, they do not state that they won’t use the email addresses or other information to contact you to let you know you have the option to enroll for another year. Their wording is quite specific in that it states you won’t be automatically enrolled, so the probability of them trying to manually convert you into a paying customer whether via email blasts or phone calls still appears to remain per the wording they have chosen to use.

Now let’s make this very clear, the Equifax data breach could still make them up to 14 billion dollars if every single person used their service and was manually or via automatic blast email opted into one paid year of monitoring after the free year ended. Let’s make it equally clear that not every person has signed up for their monitoring nor would every person renew services, but let’s say 50 percent of the 142 million people affected used the service for an additional year on their own dime. Based off of Equifax’s site the services cost $120 a year so , Equifax could make 8 billion and 520 million dollars. Even if only 25 percent of people renewed they would make 4 billion and 200 million dollars off of their own disaster. Nonetheless, they stand to profit off of being hacked.

When you go to equifaxsecurity2017.com to see if you are hacked and click on any button to see if you were affected by the hack or to enroll in the one year monitoring, they are going to direct you to go to trustedidpremier.com. Most people won’t notice this, since sadly people don’t pay attention to the site they are actually on. This site asks for your six digit social security number, which quite frankly you should never enter online. Furthermore, you did not hire Equifax to collect the data that was leaked on you, they collect it as part of their business model for their clients. You are not the client, you are the product, which the well written CNN piece makes painfully clear.

How did the equifax data breach in United States happen?

Updated: We were correct that Equifax was hacked by the March, 2017 Apache Struts bug.

Updated: Providing insight to the carefully crafted Equifax announcment that looks like they are blaming Apache Struts, but are evading from doing so. Removed the Quartz article link, since that article appears to be partially inaccurate.

Equifax released a statement that many news outlets took as admitting they were hacked by an Apache Struts vulnerability, however after careful analysis, that isn’t what they were saying whatsoever. They were simply noting that their is evidence that someone may have tried to use the 2 month old Apache struts vulnerability, but have not yet confirmed that is indeed how the hack took place. While we do believe not updating Apache Struts is one way an attacker could’ve gotten in, their security is inexcusably weak making it possible that a different exploit was used.

However the equifax data breach wouldn’t have happened as badly if they hadn’t kept so much data about people online, that the people did not ask to be collected about them. When a site you are the customer of is hacked that’s one thing, when a site that you are the product of and in this case you are a product of Equifax, that’s entirely different. You are the victim in this scenario, and Equifax put too much of your personal data online. Also, they did not fix known security vulnerabilities.

How did the Equifax Data Breach happen in Argentina?

The Equifax Data breach in Argentina occured because someone had the idea to put the username and password as admin for the username and admin as password. Now to be fair, they may have just bought some software and did not follow the instructions or do any security review whatsoever, like resetting the default admin credentials for the portal they were using. As far as we know, only thousands upon thousands of people were affected in the Equifax Argentina Data Breach. The Equifax Argentina data breach is a developing story, so we will continue to update this as more information becomes available.

What countries were affected by the Equifax breach?

There have been multiple Equifax breaches this year, but so far we know that the U.S was affected, Argentina was affected, U.K was partially affected.

We will continue to update this article when more information becomes available

SEO For Tour Operators With Free Tips

wefightforsecuritySeptember 1, 2017Uncategorizedsearch engine optimization tour operator, seo for tour operators, seo tour agency, tour company SEO, tour operator

SEO for tour operators is a major battle that most don’t understand. Making sales for tour operators who don’t know SEO or don’t have a company at their disposal who understands SEO for the tour industry are having a lot of problems.

The tour industry used to have techniques that worked, but they were all in-person techniques. Now with the internet being the go-to way of booking tours, a lot of tour operators are going out of business, because they don’t know how to do SEO for tour operators.

That’s where we come in. We know the tour industry and the ever-changing world of SEO in the tour industry, which is why tour companies hire us to get them on the first page and you can too.

SEO tips for tour operators aren’t abundant on the web, but we are going to give you a big one. You have a lot of chances to help with the SEO creation and are already doing it without even knowing you are doing so.

What are we talking about? We are talking about the pictures that tour operators take of sightseeing tour locations and photos of happy tourists. It is extremely useful when doing SEO for tour operators that we write about your services to show satisfied customers or what people will see. That is only one small element, because even online the tour industry can be quite brutal, which is why an SEO formula that has worked for tour operators thus far is the best way to go. We get our tour clients in Google places results and on the front page of google.

It goes without saying that nothing is guaranteed, however we also can say that our formula for SEO with tour operators has yet to fail us, which is why the owner of Guideline tours gave us a written recommendation, which is in our post from earlier today.

We look forward to helping more tour operators with SEO. If you want to contact us right away, instead of just buying our monthly package, feel free to use the contact form below.

Los Angeles SEO services Including Google Places

wefightforsecuritySeptember 1, 2017September 1, 2017UncategorizedLA seo, los angeles seo, search engine optimization, search engine optimization services, tour company SEO, tour SEO

Los Angeles SEO services that get sites into Google places now known as Google my business are a dime a dozen online, but how many of these companies can actually deliver on what they claim?

It turns out very few can, in fact we discovered that the last SEO company of a client of ours was doing literally nothing whatsoever, because they weren’t able to login to make changes. Unfortunately, the customer was still getting charged plenty every month for SEO services rendered, even though none were. This isn’t a one time incident, but listing all these incidents is a blog post in itself.

One of our Los Angeles SEO clients is a tour company, an industry that is extremely brutal to get ranked well, but after some work we came up with a simple system that works very well for all tour companies that gets our clients not only ranking well and appearing in Google places, but also making them a lot more sales due to our work.
Here is what they had to say about our work and working directly with our CEO.

“Previous to Ryan we used a very large company for our SEO with lukewarm results at best.

When we switched to Ryan’s services we saw results after just one week.

Ryan leaves no stones upturned. The dynamic of SEO is constantly changing, he is constantly researching new trends in maximizing SEO.

He will access what your companies individual goals are for success.

I highly recommend Ryan

Paul,
Guideline Tours
Los Angeles
“

We’ve proven our methods work across all sorts of Los Angeles SEO industries and across the country. So how do we do it? What is our magic trick? Maybe it’s having listened to thousands of hours of SEO techniques for over a decade from experts? Maybe it’s using those techniques for all those years? Maybe it’s that we are always looking for unused avenues that don’t always have to be online to improve our customers sales?

Some would call this digital marketing and they would be right in some regard, but everything we are currently doing is online with exception to some programs that are about to launch.

If you follow our site and read previous blog posts, you’ll notice they aren’t all about SEO. That’s because we are a diversified company, which focuses on SEO and internet security, better known as cyber-security. We are excellent in both areas, which is why other Los Angeles SEO companies dread going up against us in a conversation when they are trying to scam a customer, which we will be writing about soon.

Month: September 2017