Realign LLC

# # # # # # # # # # # FRIENDS AND FRIENDS OF FRIENDS # # # # # # # # # # # # # # # # #

Please avoid posting this information. It is false and only used to trigger additional Potentially Unwanted FB posts. See the following on snopes.com.

https://www.snopes.com/fact-check/new-facebook-rule-tomorrow/

Does a 'New Facebook Rule' About Use of Photos Start Tomorrow? "Don’t forget tomorrow starts the new Facebook rule where they can use your photos," the viral posts claimed. "Everything you've ever posted becomes public from today - even messages that have been deleted."

Attention Chase Bank customers!!

Chase bank accidentally leaked customer info to other customers Chase Bank has admitted to the presence of a technical bug on its online banking website and app that allowed accidental leakage of customer banking information to other customers.

Cyber criminals are targeting organizations that use popular cloud-based email services to conduct Business Email Compromise (BEC) scams. The scams are initiated through specifically developed phish kits designed to mimic the cloud-based email services in order to compromise business email accounts and request or misdirect transfers of funds. Between January 2014 and October 2019, the Internet Crime Complaint Center (IC3) received complaints totaling more than $2.1 billion in actual losses from BEC scams using two popular cloud-based email services. While most cloud-based email services have security features that can help prevent BEC, many of these features must be manually configured and enabled. Users can better protect themselves from BEC by taking advantage of the full spectrum of protections that are available.

[Heads up] FBI Warns About Attacks That Bypass Your Multi-Factor Authentication (MFA)

Last month, the FBI sent a special alert called a Private Industry Notification (PIN) to industry partners about the rising threat of attacks that bypass their multi-factor authentication (MFA) solutions.

"The FBI has observed cyber actors circumventing multi-factor authentication through common social engineering and technical attacks," the FBI wrote in a PIN that was sent out September 17, 2019.

And they are right, at the moment there are multiple ways to bypass MFA protections. Practically all of them can be broken somehow or another. The FBI alert pointed at things like SIM swapping and using flawed proxies. They gave some examples of recent incidents where MFA protections were bypassed, and money was stolen from individuals and organizations.

MFA Is Still Effective and Recommended. Just Not A Silver Bullet.

The FBI made it very clear that its alert should be taken only as a precaution, and not an attack on the efficiency of MFA, which the agency still recommends. The FBI still recommends that organizations use MFA. However, they do want you to know that there now are ways the bad guys can bypass this type of protection.

"Multi-factor authentication continues to be a strong and effective security measure to protect online accounts, as long as users take precautions to ensure they do not fall victim to these attacks," the FBI said.

Continue reading at the blog:
https://blog.knowbe4.com/heads-up-fbi-warns-about-attacks-that-bypass-your-multi-factor-authentication-mfa NEW Tool: Can Your Organization's MFA Solution Be Hacked by the Bad Guys? Find out Now!

You already know that using multi-factor authentication (MFA) can decrease your cybersecurity risk, and certainly is a much stronger defense compared to using traditional passwords alone.

However, did you know that all multi-factor authentication (MFA) mechanisms can be hacked, and in some cases, it's as simple as sending a phishing email to compromise your users’ accounts? In fact, according to a Deloitte’s Cyber Threats report, 48% of cybersecurity breaches are NOT preventable by strong multi-factor authentication.

It’s crucial to understand the exact security risks your MFA solution has and how your users may be compromised so you can take action to mitigate those risks and educate and train your users.

Find out how best to defend against MFA hacks

KnowBe4’s new Multi-Factor Authentication Security Assessment (MASA) is the only complimentary assessment tool for IT Pros to uncover the specific attacks and risks your MFA solution may be vulnerable to. MASA helps you gauge your organization’s MFA security readiness and identifies the potential risks associated with your MFA implementation.

MASA leverages direct expertise from one of the market’s leading security evangelists and InfoSec consultants; Roger Grimes, KnowBe4’s data-driven defense strategist. With 30+ years experience in computer security and MFA risk assessments, it’s like having your very own expert consultant.

Here’s how MASA works:
You will receive a custom link to take your assessment
Answer a series of technology questions relevant to your MFA solution
Get an instant high-level snapshot of potential risks with your MFA
Receive your in-depth report packed with actionable insights and detailed analysis on specific MFA attacks and tips for your top defenses
Find out how hackable your MFA solution is now before the bad guys do!
https://info.knowbe4.com/multi-factor-authentication-security-assessment-chn

[Heads up] FBI Warns About Attacks That Bypass Your Multi-factor Authentication (MFA) [Heads up] FBI Warns About Attacks That Bypass Your Multi-factor Authentication (MFA)

ALERT: Internet bad guys are now trying to trick you into filing an Equifax claim and get a $125 payment because your personal data was in the Equifax data breach. They are sending phishing attacks that look like they come from Equifax and when you click on the links, you wind up on a fake website that looks like it's Equifax, but will try to steal your personal information. Don't fall for it.

if you want to file a claim, go the legit FTC website and click on the blue "File a Claim" button. The website will check your eligibility for that claim, not everyone's information was compromised. Here is the link to the FTC site:
https://www.ftc.gov/enforcement/cases-proceedings/refunds/equifax-data-breach-settlement

Equifax Data Breach Settlement