The Far-Reaching Consequences of Cyberattacks

On November 21, Blue Yonder reported disruptions in its managed services environment after falling victim to a ransomware attack, impacting high-profile clients like Starbucks, Morrisons, and Sainsbury’s – a stark reminder that even the most well-established companies can be targeted. 

At Molaprise, we understand that the financial and operational impact of a cyberattack can be devastating. Supply chains are disrupted, services are halted, sensitive data may be compromised, and the damage to a company’s reputation can take years to recover from. As we’ve seen with this latest attack, attackers are not only targeting large, well-known firms but also their customers and partners. 

The State of Cybersecurity Today

What we’re witnessing now is a cybercrime environment where attackers are relentless. They have evolved, using tactics such as double extortion (threatening to release data in addition to encrypting it) to put more pressure on their victims. The situation with Blue Yonder is still ongoing, but it begs the question: Are your existing cybersecurity strategies against complex threats effective?

Molaprise: Your Shield Against Cyber Threats

At Molaprise, we want to help you avoid becoming another headline, for the wrong reasons. We consider it our mission to equip businesses with robust cybersecurity defenses that stay one step ahead of the attackers. With our proactive threat monitoring, cutting-edge encryption, and incident response capabilities, we offer a layered defense strategy to protect your critical infrastructure. Contact us today. We’re offering more than just solutions—we’re offering peace of mind. 

The post Blue Yonder Today, You Tomorrow? appeared first on Molaprise.

The way forward is to rely on password managers. However, with numerous options available, choosing the right one can be overwhelming. Are the free ones just as good as the paid ones? And these two have the same rating on play store, do I just pick any?

We conducted a reddit poll to compile a list of the best password managers based on real user feedback.

Top options to consider

1. Bitwarden

• Pros – Affordable, open-source, user-friendly interface, excellent security features, cross-platform support, and a travel mode that temporarily disables access to certain passwords for added security. Plus, there’s no device limit.

• Cons: Some advanced features are only available in the premium version, and the user interface can be a bit overwhelming for newcomers.

2. 1Password

• Pros – Intuitive interface, cross-platform support, excellent security features, travel mode, no device limit.

• Cons – Monthly subscription fee may be a drawback for some, and there’s no free version, which can be a turnoff for those looking to test the service first.

3. Keeper

• Pros: Strong security features, including biometric login and dark web monitoring. It also offers secure file storage and advanced intuitive design.

• Cons: This also has no free option and no custom fields, and add-ons are purchased separately so the price is a bit on the high end.

Notable Mentions

In addition to the top contenders, our poll highlighted several other tools that users trust:

• KeePass/KeePassXC: (These are two different versions!) A free, open-source option that allows for extensive customization and is particularly popular among tech-savvy users.

• Vaultwarden: A self-hosted version of Bitwarden that appeals to users wanting more control over their data.

• Dashlane: Known for its intuitive interface and additional features like VPN and phishing alerts, though it can be pricier than some alternatives.

• Enpass: While primarily known for its excellent security features, it lacks two-factor authentication. It’s still got great features and offers cross-platform syncing.

• LastPass: While it offers a solid free version, MFA and offline access, recent security incidents have led some users to seek alternatives.

Interestingly, NordPass and Roboform didn’t receive any mentions in the comment section of our poll. I’d love to hear your thoughts on why you think that is.

Wrapping It Up

With the right password manager, managing multiple passwords should be a breeze. Whether you’re a tech-savvy individual or just starting your journey, there’s a password manager out there that’s perfect for you and your organization. The key is to find a tool that fits your needs.

If you’re looking for more tailored advice on implementing or improving your cybersecurity strategy, feel free to reach out to the team at Molaprise. We remain committed to helping you make informed choices that enhance your security in 2024 and beyond.

The post The Most Recommended Password Managers According to Reddit appeared first on Molaprise.

On July 19, 2024, CrowdStrike discovered a bug in their security software that caused Windows to crash. This impacted everything from airlines to banks to healthcare systems in many countries. Again, it wasn’t a cyberattack. Just the software trying to read more information from memory than it should’ve. For insights on how Molaprise can assist with these issues, check our previous blog!

Bug Details 

Imagine trying to grab 21 pieces of data when there are only 20 pieces available – that’s exactly what this software did. Its attempt to read more information from the computer’s memory than was available (an out-of-bounds read) caused the system to crash. The root cause was a coding error in a new feature which was overlooked during testing and deployment. It wasn’t a security risk however because hackers couldn’t do anything harmful like stealing your data and CrowdStrike’s software has several layers of protection. In view of that certain measures were taken:

• Data Field Adjustment – A patch has been released to correct the data mismatch.
• Enhanced Safety Checks –  New safeguards have been added to prevent accessing invalid data.
• Expanded Testing – Testing procedures have been improved to cover more scenarios.
• Validation Improvements – Additional validation checks have been implemented before software releases.
• Phased Updates – Future updates will be deployed in stages to identify and address issues early.

CrowdStrike’s Layers of Protection 

• Certificate Pinning – The Falcon sensor only accepts specific SSL/TLS certificates. This ensures that the software only communicates with trusted servers and prevents Man-in-the-Middle (MitM) Attacks. 
• Checksum Validation – This process verifies that the channel files haven’t been altered during transmission or storage. 
• Access Controls – Verified channel files are stored in a directory that requires administrator privileges to access or modify. Only users with full admin rights can attempt to tamper with the file. 
• Anti-Tampering Alerts – The system is designed to detect attempts to modify files outside the standard delivery and update mechanisms outlined above. 

The Wake of The Incident 

Once the outage gained media attention, the NCSC observed an increase in phishing, domains & URLs impersonating CrowdStrike and the distribution of malware disguised as recovery software and security updates by attackers. 

CrowdStrike is currently working on improving their security and appreciates feedback from the security community. They even have a Bug Bounty program to find and fix potential issues. 

For the latest updates on the issue visit CISA’s dedicated CrowdStrike update alert page. 

The post CrowdStrike’s Bug Fix: What You Need to Know About the Latest Update appeared first on Molaprise.

Social Engineering is a manipulation tactic used to trick targets into performing specific actions or divulging sensitive information. 

Rather than targeting technological vulnerabilities or using brute force attacks, this technique targets YOU – the human element. 

A harmless click can lead to a digital disaster. That’s why we’re focusing on increasing awareness about social engineering, starting with its most common form: phishing. 

Phishing is a tactic for stealing an individual’s personal information like IDs or passwords, or for installing malware which can be used for various purposes including ransomware attacks.  

83% of organizations fall victim to at least one phishing attack yearly, with the human element contributing to 68% of these breaches. 

The Multiverse of Phishing Variants

Phishing attacks often employ spoofing to appear credible and are easier to avoid when you know how to spot them.

Protecting Yourself From Phishing Scams

The post Think Before You Click: Identifying Phishing 101  appeared first on Molaprise.

Categorized as a software defect and not a malicious cyberattack, the IT outage involving CrowdStrike’s Falcon Sensor software was caused by a defect in a content update specifically affecting Windows hosts. This led to crashes and blue screen errors on affected systems highlighting vulnerabilities in IT infrastructure that can disrupt operations if not managed effectively.

Implications and Effects 

The update affected an estimated 8.5 million Windows devices, causing operational disruptions, potential productivity loss, and heightened security concerns for many organizations. Furthermore, CrowdStrike’s stock declined 11.1% in the wake of the incident.  

While such events may seem inevitable, proactive measures can effectively mitigate their impact and ensure business continuity. 

How Molaprise Can Help

 1. Immediate Response and Support

• Incident Analysis: Conduct a thorough assessment of the recent outage to identify vulnerabilities and areas for improvement. 

• Rapid Remediation: Implement quick fixes to restore your systems and minimize downtime. 

2. Strengthening Your Network

• Proactive Monitoring: Utilize our state-of-the-art monitoring tools to detect and address issues before they escalate. 

• Network Optimization: Enhance your network performance with our tailored optimization strategies. 

3. Building Future Resilience

• Infrastructure Upgrades: Modernize your IT infrastructure with the latest technologies to ensure robust and scalable operations. 

• Disaster Recovery Planning: Develop and implement comprehensive disaster recovery plans to safeguard your business continuity. 

Why Choose Molaprise? 

• Proven Track Record: Our successful collaborations with enterprises and government agencies demonstrate our ability to deliver reliable and effective solutions. 

• Certified Expertise: Our team comprises certified professionals with extensive technical knowledge and practical experience in managing complex IT challenges. 

• Customer-Centric Approach: We prioritize your unique business requirements, working closely with you to develop tailored solutions that align with your organizational goals. 

In collaboration with industry leaders like Microsoft and CrowdStrike, we’re reinforcing the value of safe deployment practices and disaster recovery strategies. Through proactive cybersecurity measures, cloud optimization, and infrastructure modernization, our solutions mitigate risks, enhance resilience, and ensure business continuity. 

Partner with Molaprise today to strengthen your network resilience and safeguard your operations. 

The post The CrowdStrike Falcon Sensor Outage: Preparing for the Unexpected  appeared first on Molaprise.

Molaprise, represented by Petra V, Head of Marketing and Digital Innovations, directly engaged job seekers and talented professionals. The feedback so far has been remarkable. 

Additionally, the presentations on Cisco’s Networking Academy and building a successful personal brand sparked stimulating conversations online and in-person. 

The real fun was getting headshots at the Cisco headshot booth, connecting via the event app, and earning points in the game for a chance to win amazing prizes! 

A big shoutout to Cisco for a well-executed event! Special thanks to everyone involved in making it happen.

For those who missed the event or want to revisit the sessions, the resource link is available here: https://lnkd.in/eG8raCHu 

We’re excited to keep attendees engaged through the event app and Cisco’s TalentBridge platform (open until August 1st). Explore Molaprise’s open positions, connect directly and keep the 2024 Cisco talent expo momentum going beyond the event itself. 

The post A Mola Perspective Of The 2024 Cisco Talent Expo appeared first on Molaprise.

Our CEO, Emmanuel Ola-Dake, took the stage to share our journey alongside distinguished guests Tamekia Flowers-Ball, Ana Diaz, Maureen Fairlie, and Megha Jain Garg. Moderated by Kenneth Ebie, they shed light on the journeys, successes, and challenges faced by NYC entrepreneurs in the world of business and technology. 

The event kicked off with a warm welcome from Commissioner Kevin D. Kim. Then, Mayor Eric Adams delivered an inspiring keynote address, emphasizing the critical role of community support and resilience in fostering a thriving small business ecosystem. He also recognized Michael Garner for his unwavering dedication to women and minority-owned businesses, and many other leaders who left their imprints in diverse ways as a testament to the city’s commitment to nurturing local enterprises. 

The panel discussion was a captivating blend of insights, practical advice, and real-life experiences. The event concluded with an open forum providing exposure to numerous businesses, city agencies, partners and vendors. It highlighted the collaborative spirit that defines NYC’s small business community, which Molaprise proudly participates in and supports. 

The success of the NYC Small Business Expo reinforces the importance of supporting the city’s rich network of small businesses. We are grateful for the opportunity to have participated in such a monumental event where we gained valuable insights and connections that will fuel our continued growth.  

Together, we are shaping the future of small business in NYC; one innovation, one partnership, and one success story at a time. 

The post Highlights Of NYC Small Business Expo appeared first on Molaprise.