• Data Transfer
• Data Recovery
• Virus / Malware Removal
• Ransomware Mitigation
• Backup Services
• NAS File Servers
• Cloud Storage
• Remote Support
• Managed Services
• IT Continuity & Resiliency
• Ethernet Networking
• Wireless Access Points
• Cable Management
• Voice Over IP (VoIP)
• Unified Communications
• *nix / BSD Server
• Microsoft Windows Server
• Apple Mac OS X Server
• E-Mail / CRM Systems
• Google Apps
• Office 365
• Exchange Server
• Hardware Upgrades • Server Builds • Performance PC Builds • Custom Development
Who We Are
NYC Geeks is the premier computer repair and technology service provider for homes and businesses in the New York metropolitan area. We are certifiable geeks with years of hands on experience and proven techniques for a broad array of products & services.
Comparisons to the Windows flaw WCry exploited are exaggerated, but only a little.
And the company has promised to put Thunderbolt 3 controllers into its processors.
Lobbyists try to kill "opt-in" privacy standard before it can be implemented.
The Windows team's migration to Git is almost complete.
The “future standard for phone authentication” is not ready for mainstream use.
Attacks came from either an unusual type of DDoS or poorly written spam bots.
New hardware boasts up to 13.5 hours of usage between charges.
Common tools, techniques, and infrastructure make link "highly likely."
The Pukguksong-2's “cold launch” mobile launcher reduces warning time for strike.
Yahoo promptly retired ImageMagic library after failing to install 2-year-old patch.
A run-down of recent WCry developments you may have missed.
Locked-down operating system blocks access even to some built-in Windows software.
A tool released on Friday decrypts PCs running a fuller suite of Windows versions.
Want to read an article in incognito mode? Buy a subscription and log in.
While selling benefits of “telework” to others, IBM forces relocation in stealth layoff.
The software giant is reaching out to communities that it used to ignore.
Trump advisor says net neutrality hindered free data services for the poor.
Let’s just say this neural network won’t make you fear the robot uprising.
Trump’s cybersecurity order cribs from his predecessor, despite campaign bluster.
Decryption tool is of limited value, because XP was unaffected by last week's worm.
Original release date: May 24, 2017
The Samba Team has released security updates that address a vulnerability in all versions of Samba from 3.5.0 onward. A remote attacker could exploit this vulnerability to take control of an affected system.
US-CERT encourages users and administrators to review Samba's Security Announcement and apply the necessary updates, or refer to their Linux or Unix-based OS vendors for appropriate patches.
Original release date: May 17, 2017 | Last revised: May 19, 2017
The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has released a short overview of the WannaCry ransomware infections. This fact sheet provides information on how the WannaCry program spreads, what users should do if they have been infected, and how to protect against similar attacks in the future.
US-CERT encourages users and administrators to review the ICS-CERT Fact Sheet on WannaCry and the US-CERT Current Activity on the topic. For more technical details, please consult TA17-132A, Indicators Associated With WannaCry Ransomware.
Original release date: May 17, 2017
Joomla! has released version 3.7.1 of its Content Management System (CMS) software to address a vulnerability. Exploitation of this vulnerability may allow a remote attacker to take control of an affected website.
Users and administrators are encouraged to review the Joomla! Security Release and US-CERT's Alert on Content Management Systems Security and Associated Risks and apply the necessary update.
Original release date: May 17, 2017
Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:
- Cisco Prime Collaboration Provisioning Authentication Bypass Vulnerability cisco-sa-20170517-pcp1
- Cisco TelePresence IX5000 Series Directory Traversal Vulnerability cisco-sa-20170517-telepresence-ix5000
- Cisco Prime Collaboration Provisioning Information Disclosure Vulnerability cisco-sa-20170517-pcp2
- Cisco Policy Suite Privilege Escalation Vulnerability cisco-sa-20170517-cps
Original release date: May 17, 2017
WordPress versions prior to 4.7.5 are affected by multiple vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.
Users and administrators are encouraged to review the WordPress Security Release and upgrade to WordPress 4.7.5.
Original release date: May 16, 2017
The Federal Trade Commission (FTC) has released an alert about scammers sending out fake emails that look authentic to trick you into sending money to them. Users should be suspicious of unsolicited phone calls or email messages from individuals asking about your information. If an unknown individual claims to be from a legitimate organization, try to verify his or her identity directly with the company.
Original release date: May 15, 2017
Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.
US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:
Original release date: May 12, 2017 | Last revised: May 15, 2017
US-CERT has received multiple reports of WannaCry ransomware infections in many countries around the world. Ransomware is a type of malicious software that infects a computer and restricts users’ access to it until a ransom is paid to unlock it. Individuals and organizations are discouraged from paying the ransom, as this does not guarantee access will be restored. Using unpatched and unsupported software may increase the risk of proliferation of cybersecurity threats, such as ransomware.
The WannaCry ransomware exploits vulnerabilities in Server Message Block 1.0 (SMBv1). For information on how to mitigate this vulnerability, users and administrators are encouraged to review the US-CERT article on Microsoft SMBv1 Vulnerability and the Microsoft Security Bulletin MS17-010. For general advice on how to best protect against ransomware, review US-CERT Alert TA16-091A. Please report any ransomware incidents to the Internet Crime Complaint Center (IC3).
Original release date: May 10, 2017
Cisco has released a security update to address a vulnerability in its WebEx Meetings Server which could allow a remote attacker to obtain sensitive information.
US-CERT encourages users and administrators to review the Cisco Security Advisory and apply the necessary update.
Original release date: May 09, 2017
The Federal Trade Commission (FTC) has released an announcement about its new website devoted to protecting small businesses. This resource aims to help business owners avoid scams, protect their computers and networks, and keep their customers' and employees' data safe.