Microsoft Windows, Microsoft Azure, Linux, TP-Link, NFC Devices
Risk 1: Low
Issue: A growing trend in Europe is the usage of NFC (near-field communication) devices to steal credit card data. NFC devices are typically small, sometimes hidden, devices that are able to communication wireless. This technology allows tap-to-pay and other mobile-phone or credit card features. There has been a 40% uptick in NFC-related credit card theft this month in Europe. While Europe is not the US, trends tend to float between regions.
Resolution: Please be extra cautious of using your tap-to-’anything’ features. If the device is regularly not monitored, the risk increases. This is common among gas stations. While it is convenient, there are risk with the wireless communication.
To be extra cautious, users can use apps named “Local NFC” or “NFC Tools & RFID Scanner” (there are several options based upon your phone) to detect the presence of malicious devices.
Risk 2: Medium
Issue: A large vulnerability in the standard Linux kernel was announced overnight. Linux is an operating systems (similar to Windows or MacOS) that allows your computer to run applications; Linux is used heavily in servers globally. The kernel is the part of the operating system that handles its core logic and processing, i.e. the ‘brain.’ This vulnerability allows remote attackers to gain local administrative privileges on that machine.
Resolution: A patch has been made available so system administrator should apply this patch. However, given the infrastructure-related focus of this type of vulnerability, taking the system offline may not be an option. If that is the case, one can add “nf_tables” to their internal blocklist.
Risk 3: Low
Issue: The US Commerce Department has reportedly submitted a proposal (again) to ban the sale of TP-Link routers and products within the US cited security concerns. This is now the fourth attempt the US government has made in this direction; each time, TP-Link has made minor adjustments to allow at leas short-term continued use. TP-Link currently makes up about 10-15% of the US market due to their low cost.
Similarly, last year, a similar request was made for Kaspersky’s security quite.
Resolution: Financial Guardians has already publicly stated to not purchase or use TP-Link hardware (or Kaspersky software).
Risk 4: Low
Issue: Microsoft experienced a DNS-related issue similar to the AWS outage last week. As reported last week, the DNS is essentially the roadmap that most online services utilize to know where different data and servers are located. When this goes out, their products/services typically suffer a significant outage. Microsoft and those hosted on their platform experienced an outage ranging form 1-3 hours.
Resolution: As discussed in our Substack last week, there is little that can be done to fully mitigate these outages, but there are several tips there to help prepare and offset the potential impact.
Risk 5: High
Issue: Microsoft has pushed out a mid-sized update patching several issues resulting from their previous update. Yes, you read that correctly. At least four of these patches are related to security-critical systems.
Resolution: The most recent update was pushed out Thursday, October 30, so please complete an update if you have not done so yet.
Financial Guardians is a proud member of InCite, the recently launched online community exclusively for tax professionals, bookkeepers, and accountants. InCite members receive a 30% discount.
Financial Guardians has partnered with the California Society of Tax Consultants to provide a 30% access discount as well as many other offers. More info can be found at www.cstcsociety.org
Follow up question on TP-Link devices. If I have a separate router for my business devices/traffic, is there any harm in using my TP-Link router for my IoT devices (smart home devices)? It would have a different SSID on a different wi-fi network. I understand it is more vulnerable to hacking, but if they can only get access to my smart light bulbs and smart fridge, does it really matter? I don't think I care if a hacker can tell me my water filter needs to be replaced daily, but I don't want to accidently leave my business network vulnerable.
Follow up question on TP-Link devices. If I have a separate router for my business devices/traffic, is there any harm in using my TP-Link router for my IoT devices (smart home devices)? It would have a different SSID on a different wi-fi network. I understand it is more vulnerable to hacking, but if they can only get access to my smart light bulbs and smart fridge, does it really matter? I don't think I care if a hacker can tell me my water filter needs to be replaced daily, but I don't want to accidently leave my business network vulnerable.