Security Awareness Training Gives the Biggest Cybersecurity Bang for Your Buck

Coverage of scams, phishing, and malware in the media and public information campaigns such as Cybersecurity Awareness Month are helping to improve understanding of cyber threats but there are still significant knowledge gaps that need to be addressed. Further, multiple security awareness studies have revealed that many employees believe that they could spot a phishing attempt or scam, but their confidence is often misplaced. When threat identification skills are put to the test, many employees fail even simple tests and take actions that could easily result in a threat actor gaining a foothold in their employer’s network.

Increasing numbers of businesses are starting to appreciate the importance of training their employees and many provide security awareness training; however, not nearly frequently enough. While it was once sufficient to provide annual security awareness training, the cybersecurity best practice is now to provide ongoing training. Cybercriminals are constantly changing their tactics, techniques, and procedures, and a once-a-year training session is no longer sufficient. Training should be provided in small doses regularly throughout the year to keep employees up to date on the latest threats.

Security awareness training should be heavily focused on the ways that cybercriminals target individuals, such as phishing and social engineering, after all, these are the most common threats and the ones that employees are most likely to encounter. Employees should also be taught security best practices, such as how to choose strong passwords and the importance of doing so, always logging out of accounts when leaving workstations, and not using unauthorized software and hardware.

Study Reveals Major Gap in Cybersecurity Knowledge

The latter is an area where knowledge needs to be improved. Many employees choose to download software to their work devices that has not been authorized by the IT department. They also commonly use unauthorized cloud services and personal devices for work – collectively known as shadow IT. Shadow IT poses a significant cybersecurity risk. Personal devices do not usually have the same standard of security as work devices, and they are used for a much broader range of activities, which means a much higher risk of device compromise. When the devices are used to access internal resources or accounts, access could easily be given to threat actors.

Software is often installed by employees on work devices to help them work more efficiently. While the software can save employees time and effort, the software also poses a security risk, even when the software has been downloaded from a reputable vendor. Software updates are regularly rolled out to correct vulnerabilities, and if the IT department is unaware that software is in use, updates will not be applied and vulnerabilities are likely to remain unaddressed.

Shadow IT also covers unauthorized cloud services, even those provided by reputable vendors. Last year, Okta suffered a series of damaging breaches that were traced to an employee signing into their personal email account on a company-owned device. Through that attack, the threat actor was able to gain access to the Okta customer support system and attack at least 5 of Okta’s customers. A recent study by Kaspersky found that 85% of surveyed businesses had suffered a cyber incident in the past 2 years, and 11% of those were attributed to the use of shadow IT.

Comprehensive Security Awareness Training from TitanHQ

TitanHQ offers businesses a comprehensive security awareness training platform that covers all aspects of security and can be used to train employees on security best practices, improve understanding of cyber threats, and give employees practice at identifying threats in a safe environment. Businesses can choose from an extensive and regularly updated library of computer-based training sessions, each of which is delivered in bite-sized chunks of no more than 10 minutes. The training sessions are engaging, interactive, and enjoyable, and can easily be tailored to suit each business and meet the training needs of each employee.

The training platform – SafeTitan – can also be configured to trigger further training in response to risky behaviors, with the training provided in real-time to ensure it has the biggest impact. The platform also includes a phishing simulation platform with hundreds of phishing templates based on real-world phishing threats. TitanHQ data show that businesses that provide regular security awareness training through the SafeTitan platform can improve resilience to phishing attacks by up to 80%. TitanHQ also offers another solution to help curb the use of shadow IT. WebTitan is a DNS-based web filter that is used by businesses to control Internet access and prevent employees from visiting dangerous websites. The solution can also be used to block access to cloud services, software download sites, and prevent downloads of software installers.

If you do not currently provide security awareness training to your workforce or do not use a platform that provides ongoing training, give the TitanHQ team a call or take advantage of the free trial of SafeTitan and take an important step towards improving your security posture.

The post Unauthorized Use of Software and Cloud Services is a Major Security Risk appeared first on WebTitan DNS Filter .

Risks from Pirated Software

Employees look for pirated software to make their work life easier and there are many software solutions available that can save employees a considerable amount of time and effort. The problem is that these software solutions can be costly for businesses and employers do not consider the benefits to be justified by the cost.

Pirated business software is easy to find on peer-2-peer file sharing networks and warez sites and can be quickly and easily installed. The problem is that these free file downloads are often made available by malicious actors, who bundle the pirated software with malicious programs. The user gets the software they are looking for, and the threat actor gets access to their device.

Malware is often delivered that provides a threat actor with access to the user’s device, and once access is gained the threat actor can move laterally throughout the network. One such malware variant found bundled with pirated software is Danabot. Danabot is an information stealer and malware downloader and recently has been used to deliver ransomware payloads.

This year has seen an increase in malicious use of proxy server apps. These apps are offered to third parties to allow them to run traffic through the devices where the proxy is installed. These proxy server apps are often used by threat actors for credential stuffing attacks using new IP addresses, or for hiding other malicious cybercriminal activities. This summer, an investigation by a cybersecurity company found evidence that cybercriminals have been using a “legitimate” proxy app to compromise systems, and the proxy app is being bundled into installers for pirated software.

Recently, Kaspersky identified a campaign that bundles a proxy Trojan malware with legitimate copyrighted macOS software via warez sites. The campaign has been running since at least the Spring of 2023 and involves at least 35 legitimate, but pirated, software solutions that are commonly used by businesses. They include image editing, video compression and editing, and data recovery apps. In this campaign, the pirated software is delivered via PKG files, which are also capable of executing malicious scripts during the installation process. The user gets the software they want, and the malicious proxy is side-installed.

It is not only pirated software that is a problem. Many free software solutions are bundled with PUPs and malware and are offered for download on warez sites, but even legitimate clean software can be a problem. If employees install any software on their device without the knowledge of the IT department it poses a security risk. The software will be outside the IT department’s control which means that when updates and patches are released, they may not be installed. Unauthorized software – referred to as shadow IT – can provide threat actors with easy access to an otherwise very well-defended network.

How to Block Pirated Software Downloads

The easiest and most cost-effective way to block pirated software and shadow IT is to use a web filter such as WebTitan. A web filter is used to carefully control the online content that can be accessed through wired and wireless networks.

WebTitan automatically blocks access to all known malicious sites through continuously updated blacklists that are generated from a massive network of more than 600 million endpoints worldwide and multiple threat intelligence feeds. WebTitan can be configured to block access to peer-to-peer file sharing networks and warez sites, where pirated software is often offered. As an additional control, administrators can configure WebTitan to block specific file downloads from the Internet, such as installers and other executable files. Controls can be applied organization-wide, for user groups, or for individuals.

With WebTitan installed, businesses will have full control over the online content their employees can access. Since WebTitan is 100% cloud-based, installation is a quick process that requires no software downloads. Most businesses can implement WebTitan and configure it in about 20 minutes. To find out more about WebTitan and its capabilities give the TitanHQ team a call. Alternatively, take advantage of the free 14-0day trial and put the solution to the test before making a decision about a purchase.

The post Why You Should Block Employee Access to Warez Sites appeared first on WebTitan DNS Filter .

Malvertising is the use of malicious adverts that trick Internet users into downloading malicious files. Malicious actors often target search terms typically used by businesses and pay for their adverts to appear for those terms at the top of the search engine listings. The adverts offer a product related to that term that is likely to get a click. If the ad is clicked, the user is directed to a site where they are offered the advertised product, which they can download. Oftentimes the file download is legitimate but has been bundled with malware, which provides the threat actor with access to the user’s device. Since the user gets the product they are looking for, suspicion is unlikely to be aroused.

Earlier this year, a new ransomware variant was discovered that has been active since at least March 2023. Cactus ransomware is distributed using a variety of methods, including the exploitation of vulnerabilities in VPN appliances, but in November the group started using malvertising for initial access. Malicious adverts are used to trick people into downloading a custom version of the malware-as-a-service offering, DanaBot.

Danabot is a multifunctional malware that has several similarities to Emotet and TrickBot, and functions as an information stealer but also serves as a downloader of additional malware payloads, such as Cactus ransomware. Danabot is used to steal credentials, and then the threat actor moves laterally via RDP sign-ins, before access is provided to a threat actor tracked as Storm-0216. Storm-0216 has previously conducted ransomware attacks using the now-defunct Maze and Egregor ransomware variants, with campaigns previously using QBot for initial access. The recent law enforcement takedown of QBot’s infrastructure forced the group to experiment with other initial access malware variants.

If DanaBot is installed, it will inevitably lead to a ransomware attack and it is unlikely that the threat will be blocked in time to prevent file encryption. The best defense is to implement measures to block the initial malware download, including security awareness training for the workforce to raise awareness about the threat of malvertising and a web filtering solution to block malware downloads.

TitanHQ offers comprehensive security awareness training for businesses – SafeTitan – which makes it easy to create training courses for the entire workforce. The solution has modules covering all types of threats, and since each module is no longer than 10 minutes, the security awareness training is easy to fit into busy workflows.

TitanHQ’s web filtering solution, WebTitan, is used to carefully control the web content that employees can access. WebTitan will prevent access to all known malicious websites and can be configured to block specific file downloads from the internet, such as the executable files that are used to install malware. For maximum security, the solution can also be configured to restrict access to only trusted, white-listed websites, or alternatively websites can be blocked by category.

If you want to improve your defenses against cyberattacks that target employees, including malvertising, social engineering and phishing, give the TitanHQ team a call to discuss your options. TitanHQ has a portfolio of cutting-edge cybersecurity solutions to help you defend against increasingly sophisticated cyber threats, with all solutions available on a free trial to allow you to try them out before making a purchase decision.

The post Malvertising Campaign Leads to Cactus Ransomware Attack appeared first on WebTitan DNS Filter .

The Expert Insights website receives more than 1 million visitors a year, and each month helps more than 85,000 IT decision-makers select the best B2B products to meet their needs. Expert Insights writes guides and publishes technical reviews, and the website features honest reviews from genuine users of business software solutions on how well the products perform, how easy they are to use, and what it is like to do business with the companies that provide software solutions. The website saves IT decision-makers time and effort and allows them to purchase new software products with confidence.

Each quarter, Expert Insights announces its Top Solution Awards. These awards span more than 40 categories, with the winners in each category chosen based on technical analyses of the products by the Expert Insights team and positive reviews from genuine users of the products. “We are thrilled to unveil our list of the ‘Top Solutions’ for Winter 2023, highlighting the extraordinary innovation in the B2B technology landscape,” said Craig MacAlpine, CEO and Founder of Expert Insights. “These awards celebrate leading solutions across more than 40 product categories, based on our own technical analysis and the engagement of thousands of enterprise tech professionals that use Expert Insights to research solutions each month.”

TitanHQ is often recognized by Expert Insights as its products are much-loved by users due to their ease of use, ease of implementation, performance, and price, with the TitanHQ team often praised for customer service. In Q4, 2023, TitanHQ received four awards, having been named Top Solution in four different categories: Email Security, Email Archiving, Web Filtering, and Security Awareness Training for SpamTitan, ArcTitan, WebTitan, and SafeTitan.

“Our team is truly honored by Expert Insights’ acknowledgment of TitanHQ as the ‘Top Solution’ Provider in their Q4 2023 Awards.,” said TitanHQ CEO, Ronan Kavanagh. “This recognition across multiple categories underscores our commitment to empowering our partners and MSPs with cutting-edge technology, enabling them to deliver advanced network security solutions to their clients.”

If you have yet to try any of these solutions, why not give them a trial today? All TitanHQ solutions are available on a free trial so you can test them in your own environment to see for yourself the difference they make. Full support is provided throughout the trial and the TitanHQ team is on hand to make sure you get the most out of the trial and to help you with any setup and configuration issues.

The post TitanHQ Wins Quartet of Expert Insights’ Best Solution Awards appeared first on WebTitan DNS Filter .

Any warning that your browser is out of date will naturally be a cause of concern, but it is important to stop and think if you receive a prompt to download a browser update while using the Internet. This is a common tactic used by cyber actors to infect devices with malware. In August 2023, a malware distribution campaign was detected that pushed malware via fake browser updates. The campaign uses a malicious JavaScript framework called ClearFake, which is added to compromised websites to perform drive-by downloads of malware. The campaign uses social engineering to trick users into downloading and running a fake installer.

The attackers compromise WordPress sites and add the ClearFake JavaScript framework. When a visitor lands on the webpage, JavaScript runs and generates a prompt about an important browser security update. If the user responds, a malicious Windows Application Packaging Project (APPX) file is downloaded from Dropbox that, if executed, will deliver a malware payload. The warnings are tailored to the user’s browser and were initially being used to deliver the HijackLoader malware downloader on Windows devices; however, in November, the campaign was expanded to target Apple computers via a fake Safari browser update. In the Apple attacks, the malware payload was an information stealer called Atomic Stealer (AMOS). Atomic Stealer is capable of stealing passwords, cookies, local files, cryptocurrencies, and credit card information stored in browsers.

While this campaign is new, fake browser updates have long been used for distributing malware through compromised websites and malicious adverts. It is therefore important to ensure that this method of attack is incorporated into your security awareness training campaigns to raise awareness of the threat. That is easy to do with the SafeTitan security awareness training and phishing simulation platform. For an additional layer of protection, you should consider using a web filter such as WebTitan. WebTitan will block user access to all known malicious websites and can be configured to block file downloads from the Internet, such as executable files and application installers.

For more information on the SafeTitan security awareness training platform and web filtering with WebTitan, contact TitanHQ today. Both solutions are also available on a 14-day free trial.

The post Fake Browser Updates Used in Malware Distribution Campaign Targeting Windows and macOS appeared first on WebTitan DNS Filter .

BatLoader is a type of malware used for gaining initial access to networks and it is often delivered via malvertising campaigns bundled inside Microsoft Software Installation (MSI) packages. The sites used to distribute the malware often use search engine poisoning (SEO) techniques to get web pages to appear high up in the search engine listings for search terms likely to be used by employees. Threat groups previously known to use BatLoader for initial access have used it to download malware variants such as QakBot, RacoonStealer, Bumbleloader, Cobalt Strike, and the Arkey information stealer. Infection with BatLoader can easily lead to data theft and ransomware attacks.

BatLoader is evasive, and the threat actors behind BatLoader campaigns use living-of-the-land techniques once initial access has been gained which can make detection of malicious activity difficult in the early stages of the infection chain.

One of the latest campaigns is a departure from the standard method of delivery as Google Ads are being used rather than SEO poisoning and the campaign stands out from other malvertising campaigns as the malicious adverts are indistinguishable from the genuine advertisements for Webex software.

The easiest red flag to identify in malvertising campaigns is the website offering the software download is not the official site used by the company being impersonated. This campaign, however, displays the correct Webex logo and the legitimate Webex.com URL in the Google Ad, and the adverts appear in position 1 at the top of the page. If the URL is clicked, however, the user will be redirected to a malicious website.

Checks are performed when the ad is clicked in an attempt to filter out automated crawlers and researchers using sandboxes. If the user is rejected, they will be directed to the official Webex site. If the checks are passed, they will be directed to the webexadvertisingoffer[.]com site where they will be offered a fake Webex MSI installer. In this campaign, BatLoader will be delivered along with the DanaBot banking Trojan. DanaBot is capable of stealing passwords, taking screenshots, providing direct access to compromised hosts, and is often used to download ransomware.

The threat actors are able to create legitimate-looking Webex ads by exploiting a loophole in the Google Ads platform using tracking templates. Rather than use a specific URL in the ad for all clicks, tracking templates allow the advertiser to specify the URL for the redirect based on user parameters, such as the device type, location, and other information.

While Google’s policy is that the display URL and the final URL must be on the same domain, the tracking template may redirect users to a different website. In this case, a Firebase URL is used for the tracking template which has a final URL of webex.com, but clicking the ad directs the user to a different URL at monoo3at[.]com where filtering takes place and users are either directed to the malicious download page or the official Webex site, depending on the fingerprinting that occurs at monoo3at[.]com.

A web filter offers protection against malvertising by blocking access to known malicious websites such as the domain used in this campaign, restricting web activity to administrator-defined websites through category filtering, and blocking downloads of executable files. Administrators often block downloads of MSI files to protect against malware and to curb the installation of unauthorized software (shadow IT).

Security awareness training should also teach employees not to download files from unofficial websites. While the advert in this case is indistinguishable from the genuine site, the site offering the malicious installation package is not the official vendor site and the download can therefore be avoided.

TitanHQ can help businesses defend against malvertising through a combination of the WebTitan web filter and the SafeTitan security awareness training platform. Both solutions are available in a free trial, and product demonstrations can be arranged by calling the sales team.

The post Malvertising Campaign Uses Ads Indistinguishable from Official Vendor to Deliver BatLoader Malware appeared first on WebTitan DNS Filter .

One such campaign that is proving extremely effective is being conducted via Facebook Messenger and was recently detected by researchers at Guardio Labs. The campaign targets business users and tricks employees into downloading a compressed archive (RAR/ZIP), which contains a batch file that delivers a GitHub-hosted malware dropper. The dropper delivers Python-based malware and creates a standalone Python environment for the malware to operate. The binary of the malware is set to execute during system startup and has multiple layers of obfuscation making it difficult for anti-virus solutions to detect once installed.

The malware is an information stealer capable of obtaining cookies and passwords stored in the browser, which are collected, compressed into a zip archive, and then sent to the attacker via Telegram or Discord bot API. Once cookies and browser data have been stolen, the malware wipes cookies, logging the user out of their account. Once logged out, the stolen credentials can be used to log in to the accounts, and passwords are changed to prevent the account user from accessing them, giving the attacker time to misuse the accounts.

The campaign has proven to be highly effective. Around 100,000 phishing messages are being sent each week and the researchers believe that around 7% of business Facebook accounts have been targeted, with 0.4% of business accounts downloading the malicious file. The number of users that have executed the batch file is unknown, but the researchers suggest that around 1 in every 250 accounts have been infected.

One of the ways that businesses can protect against this attack is by using the WebTitan web filter. Facebook Messenger poses a security risk to businesses and can be a major drain on productivity, which is why many businesses block Facebook Messenger at work. WebTitan can be configured to Block Facebook and Messenger, or permit access to the Facebook site but block access to Facebook Messenger. Controls can be applied organization-wide, for user groups, or specific users.

The post Facebook Messenger Used in Large-Scale Phishing Campaign Targeting Businesses appeared first on WebTitan DNS Filter .

Indian businesses need to implement advanced defenses to combat increasingly sophisticated cyberattacks targeting their employees and there is considerable demand for AI-driven email security and web security solutions that are capable of detecting and blocking known and zero-day threats. Many Indian businesses turn to their managed service providers to protect them against phishing, malware, and other cyber threats, and MSPs need to ensure they have solutions that can protect them.

Tata Tele Business Services (TTBS) is the leading provider of business connectivity and communications solutions in India and has the largest portfolio of ICT services in the country. TTBS provides a range of cybersecurity solutions to Indian SMBs, with phishing protection offered through its Tata Tele Email Security Plus Program and web security provided through the Tata Tele Smart Internet Program. Through these two programs, TTBS is able to deliver advanced threat protection against the main initial access vectors.

Those cybersecurity programs have now been bolstered through a new partnership with TitanHQ that has seen SpamTitan Email Security and WebTitan DNS Filtering added to its cybersecurity packages. These two 100% cloud-based cybersecurity solutions have been developed to meet the needs of MSPs of all sizes and allow them to easily incorporate AI-driven phishing and malware protection into their service stacks. SpamTitan Email Security is a multi-award-winning email security solution that delivers cutting-edge protection against spam, phishing, business email compromise, and email-based malware attacks. The solution is easy to implement and use and requires minimal IT support, making it an ideal choice for MSPs who want to improve email security for their clients without having to commit substantial resources to management.

Web Titan is a DNS-based web filtering solution that can be used to carefully control the websites that employees can access. The solution is fed threat intelligence from a network of 650 million endpoints and ensures that malicious web content is blocked and malware downloads are prevented. “We are delighted to partner TitanHQ to offer Tata Tele Email Security- an advanced email security solution that is in line with Zero Trust security agenda of enterprises,” said Vishal Rally, Sr. VP & Head – Product, Marketing and Commercial, Tata Teleservices Ltd. “As a leading technology enabler TTBS is committed to simplifying and democratizing email security for businesses of any size. This partnership will ensure the protection of enterprise sensitive data efficiently and cost effectively”.

If you are an MSP looking to add cybersecurity solutions to your service stack, or if you want to improve the protection you provide to your clients with affordable cybersecurity solutions, give the TitanHQ team a call to find out more about the TitanHQ Partner Program. Through the TitanHQ Partner Program, you can add email security, web security, email encryption, email archiving, and security awareness training and phishing simulations to your service stack and deliver protection to your clients with ease.

The post Leading Indian MSP Delivers Advanced Email and Web Security with TitanHQ Solutions appeared first on WebTitan DNS Filter .

Ransomware gangs use a variety of methods for initial access to networks. Known vulnerabilities in software solutions are exploited, phishing is used to obtain credentials and for delivering malware downloaders, and ransomware is often delivered via the Internet. According to Palo Alto Networks, email attachments were the most common method used for initial access in 2021 and while still popular with many ransomware gangs, in 2022 web browsing was the most common ransomware delivery method. in 2022, email attachments were used as the delivery method in 12% of ransomware attacks; however, web browsing was the initial access vector in 76.5% of attacks.

Ransomware gangs compromise websites and use them to host their ransomware binaries and traffic is then sent to those malicious sites using a variety of methods. Links may be sent in emails and SMS messages with social engineering techniques used to trick individuals into clicking the links. Malicious adverts are often used – termed malvertising – to direct traffic to malicious sites. Many website operators have third-party adverts on their sites to increase revenue, and threat actors are able to sneak their malicious adverts in and display them on high-traffic websites. There have also been many cases of malicious adverts being displayed through Google Ads. Search engine poisoning is also used, where malicious web pages are created and search engine optimization (SEO) tactics are used to get the web pages to appear high in the search engine listings for specific search terms, often those likely to be used by businesses.

While most businesses have email security solutions in place to protect against phishing emails and block malicious attachments, they do not have adequate protection against these web-based attacks. Since web browsing is now such a common method of ransomware delivery, businesses need to ensure they are protected. The most effective way of blocking web-based ransomware delivery is to use a web filtering solution such as WebTitan Cloud. A web filter allows businesses to control Internet access by employees and prevent downloads of malicious files.

WebTitan Cloud is a 100% cloud-delivered web filtering solution that can be implemented in just a few minutes. Through the web-based Interface, businesses can configure category-based filters to prevent employees from visiting categories of websites that serve no work purpose and are commonly used to deliver malware, such as peer-to-peer file-sharing sites. WebTitan can be configured to block certain file downloads from the internet, such as executable files. This allows businesses to block malware and address the issue of shadow IT – unauthorized software downloaded from the Internet by employees. These unauthorized software downloads are a major security risk.

WebTitan is constantly updated with the latest threat intelligence. As soon as a malicious web page is detected, it is added to the WebTitan blacklist and users will be prevented from visiting that site. Any attempt to visit a blocked site will see the user directed to a local block page, ensuring threats are never encountered. If your business does not currently filter the Internet, give the TitanHQ team a call to find out more about WebTitan. WebTitan is available on a free trial so you can test the solution and see the difference it makes. Product demonstrations can also be arranged on request.

The post Cybercriminals Turn to Web Browsing to Deliver Ransomware appeared first on WebTitan DNS Filter .

It is no surprise that cybercriminals have jumped on the Barbieheimer bandwagon given the huge popularity of the films, and with less money available to spend on luxuries like cinema trips due to the current cost of living crisis, many people will attempt to download the films illegally.

According to NordVPN, Guardians of the Galaxy: Vol. 3 is the riskiest download with 38 concerns raised, including 19 malicious links, 13 phishing warnings, and 6 malware concerns. The second riskiest film was the Super Mario Bros. movie with 23 concerns, including 15 malicious links. Barbie, Indiana Jones and the Dial of Destiny, and other popular summer blockbusters were also being offered in an attempt to distribute malware. Researchers at Reason Labs report similar findings, with links to the new Super Mario Bros movie found to lead to a variety of malware downloads. 150,000 of its customers report that they were targeted with malware.

Malicious files may be relatively easy to identify. Rather than a video file, the downloaded file is an executable file such as a.exe file; however, malicious files may be hidden. Double extensions are often used, and since Windows hides known extensions, the true nature of the downloaded file may not be obvious. While cybercriminals are targeting consumers, businesses are also at risk. Many employees attempt to download pirated material at work and risk infecting their work devices with malware.

One easy-to-implement solution to protect against malware downloads from the Internet is a web filter. WebTitan is an easy-to-implement web filtering solution for businesses that can be used to carefully control the web pages that users can access, whether they are in the office or using work devices remotely.

Businesses can filter the Internet by category and block sites commonly used by cybercriminals for malware distribution – warez sites, torrents, etc – and known malicious websites where malware has been detected. The web filter can also be configured to block certain file downloads from the Internet such as executable files. Logs are maintained of all Internet access to allow employers to see the sites that users are attempting to access, allowing them to take action when employees are engaging in risky behaviors.

Malware is commonly distributed via the Internet and businesses that fail to implement controls are at risk. If you want to improve your defenses against malware, give the TitanHQ team a call and ask about WebTitan. The solution is available on a free trial to allow you to test the product in your own environment before making a decision about a purchase and product demonstrations can be arranged on request.

The post Cybercriminals Targeting Consumers with Fake Blockbuster Movie Downloads appeared first on WebTitan DNS Filter .