The Lighthouse IT Podcast - August 21st, 2020

Matt and Griffin discuss "Proof" that criminals have no boundaries, how Apple gave Epic Games a fortnight before getting kicked off the app store, the launch of Instagram's TikTok competitor (Reels), the uphill battle that TV Ads have had to face, and finally two of the largest influencer ad agencies merging.

Listen here! Want to skip the intro? Go to the 1:45min mark.

Security News

"Proof" that criminals have no boundaries

Brown-Forman, headquartered in Louisville, Kentucky is a multi-million dollar business that is the latest high profile company to fall victim to "new wave" ransomware operators. The company, better known for its properties of Finlandia vodka and Jack Daniels, among other major global brands, was the target by the REvil crew.

The Lighthouse IT Podcast - July 24th, 2020

Matt and Griffin discuss Twitter limiting tweets due to some serious scamming, some popular VPNs had their non-existent logs magically released, Snapchat testing out brand profiles, and Hulu targeting the small business market to allow them to advertise on their platform.

Listen here!

Security News

Twitter Limits Tweeting

Last week, Twitter severely limited access to its service while it investigated issues whereas crypto-coin scams were being spammed from verified accounts, in a move that had the microblogging service in confusion. The scams promised to return your money two-fold if you sent it via bitcoin to the verified accounts, including Bill Gates, Apple, Elon Musk, Barack Obama, and more. 

We're still awaiting an official post report, but early responses have indicated that Twitter employees were the target of a massive social engineering attack to gain access to the accounts. 

READ MORE

The Lighthouse IT Podcast - July 10th, 2020

Matt and Griffin discuss how Microsoft estimates that the global workforce will add 149 million new tech-oriented jobs by 2025, Free/Easy DNSSEC Upgrades for your site, Google's one year SSL certificates, Google testing feature to hide parts of the URL in Chrome’s address bar, and Reddit and Pinterest, It’s Time to Shine.

Listen here!

It's been some time since lockdowns were in place and businesses have now begun to re-open. With all the negative news that had been floating around, we have some perks coming from lockdown. Microsoft estimates that the global workforce will add 149 million new tech-oriented jobs by 2025. The job industry is shifting to roles that can be completed remotely. Other studies are showing that the automation space is expected to grow handily as well as remote workers are needing better workflows that rely less on manual and physical processes.

The Lighthouse IT Podcast - June 5th, 2020

Matt and Griffin are back as they discuss how Sign-in with Apple was much easier than we all thought, why it may be a good reason to upgrade to the dreaded Android 10,  and what updates Google has been making to the world of SEO.

Listen here!

Security News  

Apple Security News 

We’ve all used the log-in service on a website or app by supplying our Facebook or Google credentials. Just like these providers, the sign-in with Apple allows site visitors to use their Apple ID credentials to sign-in to other websites. 

A security research from Delhi, India has discovered an account takeover flaw in Apple's Sign-in with Apple system. These systems work by allowing you to login to a popular service and receiving a "token" that authorizes you access to the websites that use the login service. 

The security researcher discovered if he could identify a valid email address of an Apple ID (which was openly contained in an initial login request), he could pass the email address to a publicly accessible web service and retrieve a valid token. No password was required to do this. 

Luckily, because of the bug report being completed properly, Apple was able to very quickly patch the open flaw and states that its investigations did not show any misuse or compromise. Which is good news for services such as Adobe, Airbnb, Dropbox, eBay, Grindr, Medium, Strava, Tik Tok, and even WordPress that utilize this log-in method. 

READ MORE