Tag Archive for: tools

These are govt-approved tools you can use to remove malware from phone and computer

/in


Cyber threats are real and one of the most burgeoning problems of the digital age. With numbers of scams and malware attacks increasing day by day, the Indian government has set up a security agency under the Ministry of Electronics and Information Technology.

Cyber threats are real and one of the most burgeoning problems of the digital age. With numbers of scams and malware attacks increasing day by day, the Indian government has set up a security agency under the Ministry of Electronics and Information Technology.

Called Cyber Swachhta Kendra, it is a botnet cleaning and malware analysis centre. It offers free tools to remove malware from your computer and mobile phones.

Called Cyber Swachhta Kendra, it is a botnet cleaning and malware analysis centre. It offers free tools to remove malware from your computer and mobile phones.

Subscribe to Continue Reading

To inform citizens about the tools, the government is reaching out to citizens via text message that reads “Stay Cyber Safe! To protect your device from botnet infections and malware, the Government of India, through CERT-In, recommends downloading the ‘Free Bot Removal Tool’ at csk.gov.in.”

Here is the list of tools that are listed on Cyber Swachhta Kendra (CSK) website which you can use to remove malware from your computer

  • eScan Antivirus
  • K7 Security
  • Quick Heal

Government approved tools to remove malware from your Android phone

  • M-Kavach 2 developed by C-Dac Hyderabad with the support of MeitY
  • eScan CERT-In Bot Removal

Other relevant tools available on the website are:

1. USB Pratirodh

This tool is a desktop security solution, which controls the usage of removable storage media like pen drives, external hard drives, cell phones, and other supported USB mass storage devices.

Source…

NordLayer’s new browser extension offers all its top VPN tools in one place

/in


NordLayer – one of our picks for the best business VPN – has launched a new browser extension that incorporates the features found in the desktop version of the network access security solution.

Formerly known as NordVPN Teams, NordLayer is part of the NordSec group, which includes among its products one of the best VPNs, NordVPN, and the best password manager for security, NordPass. NordLayer is B2B focused, providing a cybersecurity service that is scalable.

Source…

pCloud launches two free online tools to enhance security among Internet users quickly and effectively

/in


ZUG, SWITZERLAND – Media OutReach – 2 May 2023 – In Taiwan, the need to improve online security is urgent, with organizations experiencing an average of 3,118 attacks per week last year (https://www.taiwannews.com.tw/en/news/4783488). This trend will likely worsen due to the rise in remote work and digital transformation acceleration.

Screenshot 2023-04-25 at 15.48.43.png

It is in this context that World Password Day will take place on May 4th. One of its objectives will be to raise awareness among Internet users of best practices for securing their data.

On this occasion, pCloud, the European service that offers a secure online storage solution and an encrypted password manager, launches two free online tools:

Password Checker, to easily validate the security level of each password ;
Data Breach Checker, to find out if an email is part of a hack… and it often is!

“With data breaches on the rise in 2023, we offer these free and easy-to-use tools to help build good practices that increase online security.”

Screenshot 2023-04-25 at 15.48.16.png

Check your password security quickly and effectively

The Password Strength Checker can identify how quickly a password can be cracked, with hackers usually taking just a few seconds to do so.

This is a significant concern since 78% of Generation Z use the same password for everything.

Concrete tips on creating strong passwords and avoiding the risk of being hacked are also shared by pCloud.

Find out immediately if an email is part of a data breach

pCloud’s Data Breach Checker allows users to find out instantly if their email is part of one or more known data breaches.

This is important since popular sites like Deezer, Twitter, Dropbox, and Canva have already been victims of data breaches.

Sensitive personal information associated with emails, such as credit cards, addresses, and passwords, may also have been hacked.

The problem is that people are not always aware of it, because they were not alerted when it happened or because they do not have a full picture of the scale of the phenomenon.

Accessible at any time, this tool allows the user to know instantly if their email is part of one or more known data breaches.

Here again, the Swiss company takes the opportunity to share 3 practical tips to ensure better…

Source…

Hackers used legitimate remote help-desk tools to scam multiple US federal agencies

/in


TL;DR: The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) issued a joint warning that threat actors (TA) are ramping up a hacking/phishing campaign employing legitimate remote monitoring and management (RMM) software. The CISA notes that it has discovered multiple attacks within federal civilian executive branch (FCEB) networks.

In September 2022, the CISA performed audits on several FCEB networks and found them to have been victim to a “widespread, financially motivated phishing campaign.” A month later, security researchers at Silent Push reported on a “typosquatting” trojan campaign involving several trusted domains, including PayPal, Microsoft, Geek Squad, and Amazon. On Wednesday, CISA confirmed several federal staff members had fallen for the help-desk-themed phishing campaign.

“[We] assess that since at least June 2022, cyber criminal actors have sent help desk-themed phishing emails to FCEB federal staff’s personal, and government email addresses,” the alert reads.

The scams are a bit more sophisticated than the typical phishing emails most people ignore. Dubbed “callback phishing,” emails are sent out that appear legitimate, like the one above from “Geek Squad.” The emails take the form of a high-priced subscription auto-renewal notice and list a number to call to cancel the automatic charge or a link to a “first-stage malicious domain.” These are pages that mimic legitimate businesses like PayPal. The URLs are also disguised, for example, paypalsec.com.

When targets call the number or visit the domain, they are convinced to download legitimate RMM help-desk software form a second stage domain, the CISA specifically named ScreenConnect and AnyDesk. The bad actors use portable executables to bypass security protections preventing employees from installing software. Portable executables are .exe files that will run without being installed on the computer, and most desktop-sharing software have these.

Once the TAs have access to the target through the RMM software, they attempt to execute a refund scam. This attack involves convincing the…

Source…