Issue: Google has acknowledged a severe abuse of their Gmail platform using unauthorized packages, typically installed as extensions or add-ons. These are particularly dangerous as they masquerade as legitimate tools. If you recognize the terms Coffin, PyPi, SMTP, or Webhooks in connection to your Gmail account, you may be at risk. This abuse monitors and has access to all of your e-mail content and messages.
Resolution: The abusing code has been removed. You should review your plugins, add-ons, and extensions. If you are unsure of any or notice any of the above phrases, you should uninstall and reinstall a new version from the updated stores.
Risk 2: High
Issue: SonicWall has acknowledged a vulnerability currently being exploited in connection to their VPN appliances. This vulnerability allows for remote access AND control over the device and all data within the network.
Resolution: SonicWall is working on the situation and an update is not available through your device. It is recommended that you halt usage until the patch is available and installed.
Risk 3: Medium
Issue: Zoom has recently acknowledged a vulnerability in their remote control feature that has allowed unauthorized access. A large hacker syndicate has been leveraging this vulnerability to perform large-scale crypto-theft.
Resolution: Zoom has released an update so all zoom users should apply the most recent update. This is also a good reminder to not leave applications open on your system unlike actively in use.
Financial Guardians is a proud member of InCite, the recently launched online community exclusively for tax professionals, bookkeepers, and accountants. InCite members receive a 30% discount.
Financial Guardians has partnered with the California Society of Tax Consultants to provide a 30% access discount as well as many other offers. More info can be found at www.cstcsociety.org
