M3Power

?? Browser Extension Security ?? A popular Chrome extension designed to hide YouTube Shorts has been found to contain malicious code after a recent update. Originally well-regarded for blocking Shorts on YouTube, the extension now exhibits harmful behavior, including requesting unnecessary permissions and running suspicious activities in the background. Security experts have advised users to uninstall the extension immediately to protect their devices from potential risks. This incident underscores the security dangers posed by browser extensions, highlighting the need for caution when installing third-party tools. If you have questions about how this may impact your organization, or if you're concerned about other browser extensions potentially affecting your environment, don't hesitate to contact our team! M3Power offers browser extension security services that can detect suspicious or malicious extensions within your network. We provide expert recommendations and support to help ensure your organization remains as secure as possible. Office: 816-767-9364 | Email: [email protected]

CISA Alert: Large-Scale Spear-Phishing Campaign A foreign threat actor is running a significant spear-phishing campaign that targets various sectors, including government and IT. The campaign involves sending emails with malicious remote desktop protocol (RDP) files to gain unauthorized access to networks and potentially deploy harmful code. CISA advises restricting outbound RDP connections, blocking the execution of RDP files, enabling multi-factor authentication, and using phishing-resistant methods like FIDO tokens. Organizations are also encouraged to deploy endpoint detection systems, conduct user training, and monitor for suspicious activities. Below is an article that outlines the issue and recommendations made by CISA. M3Power offers email security and a suite of security services designed to help protect against sophisticated phishing attacks like the one outlined by CISA. If you're concerned about the impact of such threats on your organization or need assistance implementing CISA's recommended protective measures, please contact our team for expert guidance and support. Office: 816-767-9364 | Email: [email protected]

?? Mandatory Azure MFA ?? On August 15th, a 60-day advance notice was issued to inform Entra global admins the start date of Azure MFA enforcement and the actions required to do so. Required MFA for all Azure users will be rolled out in phases, with Phase 1 starting this month. With the mandatory Phase 1 enforcement date approaching, MFA will be required to sign-in to?the Azure portal,?Microsoft Entra admin center,?and?Intune admin center. As cyber threats continue to evolve, MFA is a crucial tool in safeguarding sensitive data and ensuring that only authorized users can access resources. There are several ways to enable MFA, but we understand that complex environments or technical barriers may make this process a little more difficult. If you have any questions about your environment, what this process looks like, or how to stay complaint, please don't hesitate to reach out. Our goal is to ensure customers are as informed as possible and to assist in avoiding any potential business interruptions. *Attached below is an article that goes more in-depth on the situation* Office: 816-767-9364 | Email: [email protected]

We are excited to be part of the TribalNet conference in Las Vagas NV. #TribalNet

Vulnerabilities in Microsoft apps for macOS: Cisco Talos discovered eight security flaws in Microsoft apps for macOS that could be exploited by attackers to gain access to app permissions, such as the microphone, camera, and screen recording, by injecting malicious libraries. These permissions, regulated by the macOS Transparency, Consent, and Control (TCC) framework, are critical for protecting user data. If exploited, these vulnerabilities could lead to unauthorized access and privilege escalation. Despite these risks, Microsoft has classified these vulnerabilities as low risk and has declined to address them. After Microsoft Updates, of the 8 applications with reported vulnerabilities – Excel, Outlook, PowerPoint and Word are still vulnerable to the issues described in the article. If you have any questions about the potential security impacts or ways to mitigate the risks of these vulnerabilities, please reach out to our team. Office: 816-767-9364 | Email: [email protected]

M3Power Protect: Our Managed Security Platform M3Power MDR provides comprehensive threat detection, investigation, and response across various telemetry sources within an organization. MDR goes beyond endpoint detection and response (EDR) solutions by integrating telemetry from multiple sources and applying advanced analytics to provide a more holistic and proactive approach to cybersecurity. This platform approach allows M3Power to customize a solution around an organization’s needs. Some key features and capabilities of M3Power’s MDR solution include: * Integration of Telemetry Sources - Windows event logs - AV and EDR - Firewall, Proxy and Network monitoring solutions (Zeek) - Email Security solution (Defender, Sophos, etc) - Cloud providers (Entra/M365, GCP, AWS) - Password vaults (1Password) - MFA providers (Duo) - Chromium based browsers * One year telemetry retention * 24x7 triage and alert investigation, allowing your team to focus on actionable detections * Bidirectional capabilities allow customized and automated response actions across endpoints and cloud providers - triggered based on specific detection logic * Incident response capabilities from artifact collection and incident analysis to forensic timeline creation For more information on M3Power Protect, please feel free to reach out to our team. Office: 816-767-9364 | Email: [email protected]

M3Power- Powered by Yellow Dog Networks: Founded in 2002, Yellow Dog Networks has spent the past 22 years providing technology services and solutions that allow your company to focus on what it does best. Specializing in Enterprise Networking Solutions, Data Center Infrastructure Solutions, Security Solutions, Voice Services Solutions, and various other Professional Services - Yellow Dog Networks offers expert-level engineering services across numerous manufacturing product lines. Being manufacturer-independent allows us to choose the right technology that delivers the best results, both today and tomorrow. Our partnership is designed to maximize your operability, profitability, and fulfill your business needs. Over the past four years, Yellow Dog Networks has developed and refined M3Power, our managed service platform. Built on a foundation of high-level engineers and architecture, our engineers can help solve the unique problems you face in your industry. We understand that you may encounter a wide array of challenges. M3Power ensures you have an expert to assist with any issue. By taking a co-managed approach, M3Power provides executive direction to maximize profitability for your business. Our managed services allow our customers to focus on their core business, not on information technology. The M3Power service portfolio consists of: - Firewall Management - Server Management - Wired & Wireless Network Management - Endpoint Management - Private Cloud Platform Management - Microsoft Platform Management - DPaaS & Disaster Recovery - Managed Detection & Response - Enhanced Security Services: Email Security, Firewall Security Monitoring, etc. - Strategic Consulting From Yellow Dog to M3Power, our goal remains constant – to provide unconditional services and solutions. The M3Power team will work with your team to tailor and design an innovative service portfolio, customized to meet your specific needs and requirements. For more information on M3Power, please feel free to reach out to our team. Office: 816-767-9364 | Email: [email protected]

CrowdStrike Outage - An Urge for Affected Customers to Stay Vigilant: A faulty channel file rolled out to?CrowdStrike’s Falcon sensor product has caused Windows computers to crash and display the blue screen of death. While the CrowdStrike outage is not a cybersecurity attack, it does open the door for threat actors to exploit affected customers with phishing and social engineering attacks. We urge affected customers to keep an eye out for potential lures that could lead to further issues. Numerous new domains have already been spun up by threat actors. As you and CrowdStrike work to remediate this issue, please be extra cautious with updates and offers of technical support that "pose" to fix the issue. These could be malware or malicious phishing attempts. If you have any questions on the issue, or need any support, please reach out to us at Yellow Dog Networks. Office: 816-767-9364 | Email: [email protected]

The U.S. Commerce Department is banning the sale of Kaspersky software in the U.S. beginning July 20 - Here is some insight on the the situation, why the decision was made, and who all will be effected by the ban of Kaspersky products and software. Individuals and businesses in the U.S. may continue to use existing Kaspersky products and services; however, the ban also prevents any further updates to the software - leading to an exponentially less effective antivirus solution over time. If you have been or will be effected by these recent changes - and have any questions or concerns - please feel free to reach out to us at Yellow Dog Networks. We would love to talk through the issue and discuss potential security service alternatives to Kaspersky. Office: 816-767-9364 | Email: [email protected]

New Blast-Radius Attack: What to know? The new Blast-RADIUS attack exploits a vulnerability in the RADIUS/UDP protocol, allowing attackers to bypass authentication through an MD5 collision attack. This enables them to gain administrative privileges on network devices by manipulating server responses in a man-in-the-middle scenario. The attack can be executed within minutes and is highly parallelizable, making it a significant threat to enterprise and telecommunication networks. M3Power by Yellow Dog Networks provides server and security services to help combat attacks similar to this. Our team of engineers constantly monitors potential threats and will proactively reach out to your team with security best practices and guidance on how to avoid potential security breaches. Providing customers peace of mind and bolstering their security posture is one Yellow Dog's top priorities. Please reach out if you have any questions, need any assistance or would like to talk through our services offerings. Office: 816-767-9354 Email: [email protected]