“The Travelers Guide To Wi-Fi Hacking”

  • 0

“The Travelers Guide To Wi-Fi Hacking”

Dear Blast Reader,

Do you stay at hotels when you travel? Do you ever use the hotel internet? Did you know that there may be someone spying on you while you are in your hotel? Did you know that hackers target hotel Wi-fi? Did you know that the hackers that target hotel wi-fi also target traveling business professionals?


Hotel wi-fi is targeted and compromised to assist in the delivering of the malicious payload to the selected victims. A ­payload is the part of the malware that performs the malicious action. Those behind the attack continually evolve the malware’s tactics and payload. It is believed that the attackers are exploiting the vulnerabilities in the server software, either by:

  • Gaining remote access.
  • Physically gaining access to the hotel and the hotel’s servers.


Now, attackers are using a new form of malware known as the “Inexsmar Attack”. This attack starts with a phishing email.  To make the email look real, the message is tailored to you. This email address you by name, and has real looking documents attached.


But, looks can be deceiving. Within this email there is a self-extracting archive package. This is a package that begins the trojan downloader process. A trojan downloader process is a malicious program, usually installed through an exploit or some other deceptive means. Using email attachments the malware is installed onto your computer. Once you are convinced to open the attachment, hackers will then initiate their malware attack.


How does the malware go un-detected?

To prevent being detected, the malware is downloaded in stages. These stages include:

  1. Hiding malicious codes and strings by linking malicious code to otherwise unrelated code.
  2. The malware then runs an operation to download the second part of the payload, the trojan malware.


So, as your defences improve, it is believed that the multi-stage download for the trojan malware is an evolutionary way to keep the trojan viable.

So, how do you protect yourself?

To protect yourself against this new form of advanced and evolutionary trojan malware, here are a few tips:

  1. Use public wi-fi as little as possible. Hackers exploit public wi-fi in places like coffee shops, restaurants, and hotels.
  2. Use a Virtual Private Network, also known as a VPN. VPNs are encrypted web browsers that hide your IP addresses & your location.


If you have any questions about Hacking, Malware, Cyber Security, or Computer Forensics contact FDS Global. You can reach us at our office at (954) 727-1957 or by email at RMoody@FDS.Global. Please feel free to visit out website at www.FDS.Global.

  • 13

“Printers Beware”

Dear Blast Readers,


Did you know that 54% of employee’s say that they do not always follow the security policies put into place by their company’s Information Technology departments? * Did you know that about 51% of employees who have a printer, copier, or a multi functioning printer (MFP) at their work place say that they have copied, printed, and/or scanned confidential documents at work before? *


With cyber threats on the rise, it is not a shock that even printers are not safe from cyber attacks and data breaches. If a printer is connected to a wireless network and is unsecure, then it is open to hacking. Once compromised, other devices connected to the same network are left vulnerable.


How can a hacker gain access to a network using an unsecure printer?


One way a hacker can gain access to your unsecured printer is if the firmware is out-of-date. This allows the system to accept malicious lines of code. The hacker can then use the code to gain access to:

  • Print Jobs.
  • The user’s computer.


Another way a hacker can gain access to your unsecured printer is using a drone. Along with a drone the hacker would need a mobile phone and two applications. The two applications would do the following:

  • The first application identifies all wireless printers
  • The second application deploys malware into the printers.


So how does this type of drone attack occur?


Firstly, the hacker would fly a drone using a smart phone into position outside of an office building. Once into position, the hacker activates the two applications. Once the first application scans for open Wi-Fi printers, the second application establishes a fake access point (one that mimics the real device). Once established, the fake access point is then able to intercept documents that have been sent to the real device. With network access gained, the hacker can then in-bed malware into the company’s network.


When malware is installed within the network, hackers can gain access to your servers and documents by:

  • Accessing sensitive and/or confidential information.
  • Changing the printer’s settings or LCD readout.
  • Launching DoS attacks (Denial-of-service attacks).
  • Using the printer to receive and transmit faxes.
  • To send unauthorized print jobs.
  • Retrieving saved copies of documents.
  • Eavesdropping on network printer traffic.


To take preventative measures against attacks on your printers Some typical prevention procedures include, but are not imited to:

  • Educating Employees on the importance of security
  • Defining what constitutes a secure password
  • User identification (with PINs and other verification) for printer usage.
  • Data encryption protocols (to prevent interception of data across the network).


If you any questions relating to Firmware, Network Security, Printer Security, Cyber Security or Computer Forensics contact FDS Global. You can reach us at our office at (954) 727-1957 or by email at RMoody@FDS.Global. Please feel free to visit our website at www.FDS.Global.



*(The statistics represented in this blast were identified from: Network, C. (2013, February 07). The Hidden IT Security Threat: Multifunction Printers. Retrieved April 25, 2017, from https://www.forbes.com/sites/ciocentral/2013/02/07/the-hidden-it-security-threat-multifunction-printers/#b615affb615a )*

  • 0

“In A Day Where Everything Is Getting Smarter, It Might Be Smarter To Play Dumb”

Dear Blast Readers,


Did you know that 6.6 million people in the US are stalked every year*? Only 1 in 5 victims are stalked by strangers*. 85% of stalking victims know who their stalkers are*. Did you know that there are 78% of stalkers use more than 1 approach when it comes to stalking their victims*?


We live in a day and age where technology is continuing to get smarter. With technology getting smarter so are the cyber criminals. Today Cyber criminals are always looking for vulnerabilities and back doors to provide access to his or her next victim.


Recently, vulnerabilities in cyber security have been found hiding and lurking in the shadows of smart appliances. Some examples of smart appliances include:

  • Smart Refrigerators
  • Smart Slow Cookers
  • Smart Dish Plates


Smart Refrigerators can have 3 built in cameras, that allow you to see inside of the Refrigerators from where ever you are. They also can have the capability of streaming music, streaming videos, as well as sharing calendars, notes, memos and pictures. The Smart Refrigerators can also have voice activated features. If these refrigerators fell victim to a hack attack, then hackers would have total control over all the features.


By hacking the Smart Refrigerators, hackers can then peer into your life. Watching you, your spouse, and even your children with the help of the video feed that comes from the Smart Refrigerators cameras.


Also, they can listen to every conversation going on inside your home because of the voice activation speakers (the speakers that help to refrigerator listen and respond to your commands).


The Smart Refrigerators can also share calendars, notes, memos and pictures. If a hacker was to gain access to this information, it could be sold on the dark net to someone with malicious intent. But, you could also be stalked. With this information, a stalker would know your schedule, know what your family and friends look like, where your favorite places are, among other things.


A Smart Slow Cooker is another smart device that cyber criminals and/or hackers could use to their malicious advantages. Being a Bluetooth connected device allows the Smart Slow Cooker to connect to smartphones (both Android and iOS devices), and tablets that have the Smart Slow Cookers application. From this application, you can control all the features, including:

  • Adjusting the temperature
  • Turning the Smart Slow Cooker on/off


With access to the Smart Slow Cookers, hackers would be able to get into the application and mess with the settings. They would be able to turn it on and off as they pleased, they would also be able to control the heat settings, possibly being able to blow the power source creating a fire. Hackers would be able to do all of this without the consent or knowledge of the device’s owners.


Do you wear a fitness tracker on your wrist consistently? Do you monitor your caloric intake with said device? Did you know there is a Smart Dish Plate that can help you track your eating habits and calorie intake? The Smart Dish Plate is Bluetooth and Wi-Fi connected. It connects to your smartphone, via application, and your fitness tracker. It also has 3-mini built in cameras.


If hackers and/or cyber criminals were to gain control over this device, then it is likely that your phone and its data will be targeted as well. This leads to the possibly that this data could be sold on the dark net.


With the 3-mini built in cameras, hackers would also be able to spy on you through the camera feed.


By gaining access to the smart kitchen appliances, hackers can do many things without your knowledge or consent. They can control the device and all its features and they can also gain access to any other internet connected device connected the same network, including:

  • Smartphones
  • Tablets
  • Computers
  • Alarm systems


If you have any questions about hacking or cyber security contact FDS Global. You can reach us at our office at (954) 727-1957 or by email at RMoody@FDS.Global. Please Feel free to visit our website at www.FDS.Global.




*(The statistics represented in this blast were identified from: Stalking Information. N.p., n.d. Web. 17 Apr. 2017.)*

  • 0

“Television: A Hackers Window Into Your Home

Dear Blast Readers,


It has happened. Your home has been invaded. The one place you thought that you were safe from anything malicious has been breached, and it is because of your smart TV. Smart TVs, being one of the most popular devices, present new security risks for users.


Hackers can gain access to your home through your TV, and they wouldn’t even need physical access to do so. The only thing that they would need is a “Low-Cost Transmitter”.  A “Low-Cost Transmitter” can easily be purchased online through third party vendors such as Amazon or EBay.


With this device, a hacker would be able to send radio signals that can be picked up by your Smart TV and any others within range of the transmitter. When the TV picks up the signal, the hacker has complete and total control of that TV. This then allows the hacker to get privileged access to the TV. Once access is gained, the hacker can cause chaos and harm in many ways, including:

  • The hacker could spy on you through the TVs camera and speaker.
  • The hacker could attack your other Internet connected devices such as: Computers, Tablets and Smartphones.
  • Hackers can access your stored credentials and personal data, putting your identity at risk.


Typically, infections are in the temporary memory. The steps to secure your devices varies from product-to-product. Some ways to protect yourself and your data include:

  1. Restart your device regularly.
  2. Secure your router.
  3. Be smart with your web-connected devices.
  4. Check firmware updates (manually if it does not automatically check for updates).
  5. Be vigilant for irregular activity occurring on your network.
  6. Place a piece of tape over your TV’s camera for a low-tech way to ensure privacy.


If you have any questions relating Security Risks and Cyber Security contact FDS Global. You can reach us at our office at (954) 727-1957 or by email at RMoody@FDS.Global. Please feel free to visit our website at www.FDS.Global.

  • 0


Dear Blast Readers,

As children most people loved the idea behind Halloween, unlimited candy, jokes and a reason to dress up and scare/shock your friends and neighbors. What if you were the victim of a trick designed to trick you into buying and installing potentially dangerous software. This trick is called Scareware. It has become evermore common in the age of constant computer use. This malignant software is made to create shock, anxiety, Hack-a-boo- Blastand/or the idea of a threat. Usually, it begins with a pop up or email that informs the user that his or her device has been compromised by cyber criminals. There are two types of Scareware. The difference between the two types of Scareware is that one actually contains malware and the other does not.

The first type of Scareware targets users who are more likely to believe pop ups or emails. This type of Scareware targets the elderly, or is sent out in mass. The hope of this type of Scareware is to convince the computer user that his or her computer has been ”infected” by a harmful program. The Scareware then prompts the user to buy and download a “critical antivirus” to remove the software. In reality if the user buys and downloads this “critical antivirus”, he or she has infected their computer.

So, what should you do if you experience one of these pop-up ads or emails?

Continue using the Internet or your email, but don’t disclose any of your personal information. Avoid clicking “download’ on any suspicious messages or pop up ads.

The second type of Scareware is much more malicious. This type of Scareware affects users by first infecting them with malware. This malware can include Ransomware. Ransomware encrypts a users computer. This encryption is unauthorized and can prevent further use of the computer. Once the computer has been fully taken over a message prompt appears on the computer. This message directs the user to pay a “ransom” to unencrypt the computer. Paying this “ransom” is not a guarantee, a lot of the time cyber criminals will take the payment and never be heard from again, leaving the user locked out of their computer possibly forever.

So, what should you do if your computer becomes infected and starts encrypting your files?

Turn off your computer immediately. The less time the program has to work the more likely the infection can be quarantined. Next, leave the computer off and contact a computer forensic specialist. This form of Scareware is especially nasty. Do not connect this infected computer to USBs, hard drives, or your home network; this can lead to more devices becoming compromised.

Some tips to help avoid becoming a Victim:

1.       Don’t put off buying and installing anti-virus software, as well as other Internet security software.

2.       Research the anti-virus software before purchasing it.

3.       Do not click on any links or pop-ups from unknown sources.

4.       Do not open emails from an untrustworthy source.

Scareware is designed to trick users and has the potential to be devastating. For more information on Scareware and how to protect your system feel free to contact FDS Global by visiting our website at www.FDS.Global or give our office a call at (954) 727-1957.