Hard Drive Blog

In the world of cybersecurity, the dominance of a few key players like CrowdStrike and Microsoft not only shapes the landscape but also raises significant concerns about the resilience and diversity of security infrastructure. This post will critically examine the implications of such a concentrated market and explore the complexities faced by businesses reliant on a narrow range of cybersecurity solutions.

The Monoculture Risk

Cybersecurity monocultures, where the majority of systems rely on a handful of providers, can be inherently risky. This dependence creates potential single points of failure, making the entire ecosystem vulnerable to specific exploits. For instance, if a major flaw was discovered in CrowdStrike’s Falcon platform or Microsoft’s security protocols, the impact could ripple across all their clients, potentially crippling thousands of businesses that depend on their systems.

Anecdote: The 2017 WannaCry Ransomware Attack

An illustrative anecdote of these risks is the 2017 WannaCry ransomware attack, which exploited vulnerabilities in Microsoft Windows OS. The widespread reliance on Windows allowed the ransomware to infect more than 200,000 computers across 150 countries, highlighting the dangers of a homogeneous technology environment. This event underscores the vulnerability created when diverse systems are not employed.

The Complexity and Vulnerability of Businesses

Businesses today, especially small to medium-sized enterprises, often lack the resources to diversify their cybersecurity strategies effectively. Relying on giants like Microsoft and CrowdStrike might offer ease and integration but at the cost of tailored security that addresses specific organizational risks. This reliance simplifies the attacker’s job: finding a vulnerability in a widely used system provides them with numerous potential targets.

CrowdStrike’s Market Influence

While CrowdStrike has been instrumental in advancing endpoint security, its market dominance could stifle competition and innovation. The firm’s success might deter new entrants, fearing they cannot compete against such an established player, or it might lead to acquisitions that absorb smaller innovators, further concentrating the market. Each scenario can slow the pace of innovation required to respond to evolving cyber threats.

Regulatory Considerations

There is a crucial role for regulation in this scenario. Governments could enforce diversity in cybersecurity solutions by mandating standards that require businesses to implement multiple layers of security from different vendors. Such regulations could lessen the systemic risk posed by cybersecurity monocultures and encourage a more competitive market environment.

Conclusion: Navigating a Path Forward

The cybersecurity industry’s current trajectory, with significant reliance on companies like CrowdStrike and Microsoft, presents clear risks. Businesses must recognize these vulnerabilities and consider integrating diverse security solutions to safeguard their operations more effectively. Meanwhile, policymakers need to consider how to encourage a competitive, diverse market that fosters innovation and reduces systemic risk.

This critical exploration reveals that while CrowdStrike and Microsoft provide invaluable services, their dominant positions could inadvertently weaken the very infrastructures they aim to protect. The cybersecurity sector must embrace both competition and collaboration to build a resilient digital future.

New CVE-2024-30078 Security Vulnerability

This vulnerability is unlikely to be exploited but is very dangerous. It is highly recommended to update your computer by running your Windows updates.

The vulnerability is a driver issue that has existed for several years. If you are still using Microsoft Windows 7, 8, or 8.1, no patch will be made for these devices. However, for any units currently supported by Microsoft, a patch has already been made and was released yesterday 6/18/2024 during Update Tuesday. This includes Operating Systems installed on servers, towers, and laptops.

Exploits are executable programs indicated by (name).exe. Anti-virus (Black List) programs won’t be able to stop this type of attack. However, if you are one of my clients with White Cloud Security (WCS) installed, an .exe vulnerability will not be allowed to run due to the nature and principles employed by WCS, a white listing system.

The vulnerability especially affects those who use their computer at coffee shops, restaurants, or any public Wi-Fi. It makes no difference if you are using free Wi-Fi, your personal hotspot, or a VPN. Hackers who know how to exploit this flaw don’t need your authentication for the exploit to execute. It is a very dangerous threat and needs to be patched right away.

For those of you who have your computer set up by Hard Drive, your updates are postponed to avoid becoming a Microsoft guinea pig. Your update will run by Saturday, but you should manually run your updates as soon as possible to avoid any issues with a potential attack.

If you have questions or concerns, please call us at Hard Drive. According to the company that discovered it, this vulnerability has never been accessed. Now that it is known to exist, hackers are aware of it and will use this exploit as soon as they learn how it works. Don’t take any chances.

We’re going to use a program called Splashtop SOS so I can see your screen and help you with your computer. It’s like I’m sitting next to you, guiding you through the process and allows me to control your computer during the help session. (Once this session is over I will not have access to your computer.) Let’s get started!

1. Opening the Web Browser:

• First, open your internet browser (Google Chrome , or Edge, or FireFox, ).
• Click on this link: Click here to download the Splashtop Application It will automatically download the necessary file.

2. Deploying Splashtop SOS:

• After the download is complete, you can find the file either at the bottom-left corner of your browser or, in most cases, in the upper-right corner.
  • For Google Chrome , or Edge, or FireFox: Look for
  • down arrow in the top-right, it will be to the left of the three dots beneath the X
  • The file will likely be named “SOSDownload.exe” or something similar.
  • If you see the arrow but not the file, click on the arrow, then on the download.
  • If you can’t find the downloaded file, click on the three dots under the “X” in the upper-right corner.
  • find and select “Downloads” (left click)
  • you should see your file there. “SOSDownload.exe”

Step 3 getting to the session code:

• Click on the downloaded file to open it. You might see a message asking, “Do you want to save this program?” Choose “Yes”.
• Then, a security prompt may ask, “Do you want to allow this app to make changes to your computer?” Respond with “Yes”.

4. Sharing Your Session Code:

• After the program opens, it will display a 9-digit number. This is your session code, which allows me to connect to your computer and assist you.
• Tell me that number and I’ll be able to remotely connect to your computer to provide help.

Don’t Worry:

• If any step doesn’t go as planned, don’t worry! Take a deep breath, and we can try again. You’re doing just fine.
• Remember, only share your session code with me, and no one else. This keeps your computer secure.

You’re All Set!

In the digital age, email addresses often serve as a gateway to our online presence, but clinging to old and antiquated email addresses can have unforeseen consequences. While it may seem convenient to maintain these accounts for continuity or sentimental reasons, this practice can pose significant risks and inefficiencies. From compromised security to cluttered inboxes and outdated personal branding, the drawbacks of hanging onto outdated email addresses are numerous and varied. In this article, we explore the compelling reasons why giving up old email addresses is not just a step towards better email management, but a crucial move for enhancing online security, improving email deliverability, and ensuring a more organized digital life.

Throughout my career, I’ve encountered clients clinging to their vintage AOL or Hotmail email accounts. Initially, these accounts evoke a sense of nostalgia, yet there’s an underlying issue that’s often overlooked: the disadvantage of not transitioning to more contemporary email services. This is particularly pertinent when considering emails tied to internet service providers (ISPs). It’s inevitable that superior ISPs will emerge, prompting a switch. Unfortunately, this change often renders your existing ISP-linked email address inaccessible, with the exception of a few like sbcglobal or att.com. Even in these cases, retaining such email addresses can lead to complex issues in the long haul, underscoring the importance of opting for more flexible and future-proof email solutions. 

Below are some links to to alternative emails and email clients

• pcmag.com – The Best Email Clients for 2024
• usnews.com – Best Email Clients of 2024
• themeisle.com – 7 Best Gmail Alternatives in 2024 (Most Are Free)
• clickup.com – 10 Microsoft Outlook Alternatives & Competitors to Try in 2024
• kinsta.com – 11 Top Outlook Alternatives to Try In 2024
• techradar.com – Best email client of 2024

Below, you will find the response from Glenn Rue, a Microsoft moderator, addressing the issue of recovering your Hotmail password. No Guarantees here. 

Glenn Rue

• Microsoft Agent |
•  Moderator

Replied on September 26, 2022

Report abuse

Good day ChristineThompson3419!

Welcome to the Microsoft Community Forum. Please accept our warmest regards and sincerest hope that all is well.

 We understand that you’re unable to recover your husband’s Hotmail.com account due to setting up two-factor authentication (2FA) or what we call two-step verification (TSV).

I’ve helped folks in the past with such a situation and it indeed can be quite the challenge to recover the account. The simple fact is in order for TSV to work correctly it requires you to associate at least three unique security contact email addresses or phone numbers with your account. If you lose your security info and you don’t have a backup contact method available, you can permanently lose your account.

With that in mind let us work together as a team to get past this issue. But to better assist you I need to ask:

 1) If you go to https://account.microsoft.com/ and attempt to log in to your account with the last known password of your husband’s account what error message are you getting? Can you provide us a photo of it?

 2) If you attempt to reset the password of the account using https://account.live.com/password/reset do you get something similar to the photo below or something else? Can you provide us a photo of what you get something else?

 3) When was the last time your husband successfully logged in to the account? I need an exact date.

4) How long have you had this issue? Days? Weeks? Months?

 Hope to hear from you soon.

 Respectfully,

 Many users hold onto email accounts that may be outdated or not fully supported by their founders. This report provides recommendations for transitioning to a new email service while ensuring a smooth migration of data and minimal disruption.

Key Points

1. Maintain Old Email Access
   • It’s advisable to keep your old email address active for as long as possible to ensure you don’t miss any important communications during the transition.
2. Selecting a New Email Provider
   • Choose a new email provider that offers nationwide or global access, ensuring you won’t lose your email address if you move or change internet services 2. Providers like Gmail or Outlook.com are popular choices due to their stability and feature sets.
3. Email Forwarding and Importing Contacts
   • Forward emails from your old account to your new one to maintain continuity. Import your contacts to the new email address to keep your network intact.
4. Notify Your Contacts
   • Inform your contacts about your new email address to ensure future communications are directed correctly.
5. Secure Your New Account
   • Create a complex password for your new account and enable two-factor authentication to enhance security.
6. Update Online Accounts
   • Inventory and update all locations where your old email is used, such as online accounts and subscriptions.
7. Email Migration Considerations
   • Consider the reasons for email migration, such as improved performance, increased storage, and better security 11. Utilize an email migration tool to prevent data loss and chaos.
8. Email Migration Methods
   • Choose between various migration methods like provider-to-provider, cloud-to-cloud, or using an email client.
9. Performing the Migration
   • Get credentials for both old and new email addresses, start the migration, and wait for completion. Verify data and test email functionality after migration.
10. Modern Authentication for Email Clients

• For users of Outlook 2013 and later, enable Modern Authentication to ensure a secure connection to the email server.

11. Final Steps After Migration

• After a successful migration, sync mailboxes, update email settings, and remove or cancel the old account.

Conclusion

Transitioning from an old, outdated email account to a new one requires careful planning and execution. By selecting a reliable new provider, forwarding emails, updating contacts, securing the new account, and using proper migration tools and methods, users can ensure a seamless switch. It’s important to keep the old account active during the transition and to notify contacts and update online accounts with the new email address. Modern authentication should be enabled for email clients to maintain security. After the migration, verify the data, test functionality, and then you can safely remove the old account.

Welcome to the comprehensive guide on understanding and mastering search engines, the powerful tools at the heart of our digital lives. This isn’t just about learning to use these tools; it’s about mastering them to enhance our online experiences. Let’s break down the complexities into something more tangible and efficient for our daily digital interactions.

Understanding the Mechanics: The Inner Workings of Search Engines

At their core, search engines are like ultra-efficient librarians of the digital world. They sift through millions of web pages using algorithms – sets of rules and formulas – to find and rank the most relevant results for your query. When you hit ‘search,’ these algorithms consider your words, match them with indexed content, and factor in aspects like site quality and relevance to present you with a neatly organized list of results.

The Right Tool for the Right Job: Choosing Your Search Engine

While Google might dominate the scene, other search engines like Bing and DuckDuckGo each have unique offerings. Bing is known for its image search capabilities and integration with Microsoft products, while DuckDuckGo appeals to those seeking privacy. Depending on what you’re looking for, different engines can yield different results and experiences. Being aware of and occasionally switching search engines based on your specific needs can lead to better, more tailored outcomes.

Crafting Effective Queries: The First Step to Better Results

The queries you input significantly influence the quality of results you get back. Be specific and deliberate with your words. For instance, instead of a generic “weather,” a more detailed “weather forecast New York September 2024” would yield more precise information. Utilize quotation marks to search for exact phrases, dramatically focusing your search and filtering out the noise.

Advanced Search Techniques: Elevating Your Search Game

To further refine your searches, familiarize yourself with a few advanced operators:

• Excluding terms with “-“: If you want coffee makers but are not interested in a particular brand, “coffee makers -brandX” omits that brand from the results.
• Searching within a site using “site:”: For specific inquiries like finding climate change articles on a particular news site, “climate change site:trustednewssite.com” directs the search engine accordingly.
• Using “*” as a wildcard: This operator is helpful when you’re unsure of the exact phrase or want to broaden your search, like “best * for cold weather.”

Conclusion: Your Path to Search Engine Mastery

Understanding and effectively utilizing search engines is about more than just finding information; it’s about ensuring that the information you find is relevant, useful, and trustworthy. As you become more familiar with how these digital librarians work, how to speak their language through precise queries, and how to utilize advanced techniques, you’ll find your searches becoming more efficient and productive.

Stay tuned as we continue to explore and build upon these foundational skills in subsequent articles. With practice and these tips, you’ll become more adept at navigating the vast digital landscape, turning every search into a successful quest for knowledge.

And now, dear readers, we arrive at the final curtain of our tale of trickery. When last we met, our protagonist, driven by fear and false promises, stood on the precipice of folly, about to purchase gift cards in the vain hope of averting a crisis as real as a mirage in the desert. Let us now see how this grand deception reaches its denouement.

With the victim ensnared in their web of lies, our cunning scammer waits with bated breath as gift cards are procured. The instructions are clear: buy these tokens of commerce, scratch off the silver panel to reveal their hidden worth, and relay the numbers back to the scammer. It is a task performed with a sense of urgency and dread, under the false belief that it will bring resolution to the crisis at hand.

But here, dear readers, is where the illusion crumbles. For once those numbers are passed along, the scammer vanishes into the ether, as elusive as the wind on a hot summer’s day. The victim is left clutching worthless pieces of plastic, their value siphoned off by the faceless charlatan. The realization dawns, bitter and hard to swallow: they have been duped, their trust exploited, their coffers plundered.

This, then, is the harsh truth of the gift card scam – a modern-day confidence trick that preys upon the gullible and the trusting. It is a stark reminder of the perils that lurk in the shadows of our interconnected world, where scammers ply their trade with impunity, shielded by anonymity and distance.

So, how does one steer clear of these treacherous waters? Vigilance, dear readers, is the watchword. Be wary of unsolicited calls or messages that speak of crises and demand hasty solutions. Remember that no legitimate enterprise or government agency will ever ask for payment in the form of gift cards. Verify the authenticity of such claims by reaching out directly to the purported institutions through official channels.

Above all, guard your personal information zealously. Do not be quick to part with your name, your number, or the sanctity of your social security. In this age of information, knowledge is power, and the wise are those who do not offer it up lightly.

And so, we draw the curtain on our tale, wiser for having journeyed through its twists and turns. May these words serve as a beacon, guiding you safely through the fog of deceit. For in a world where the truth is often stranger than fiction, the greatest folly is to think oneself immune to the machinations of the unscrupulous.

The Road of Digital Deception

In a wood, forked and deep,
Where choices weigh and sorrows seep,
I ponder paths both wide and narrow,
Under the watchful eye of a sparrow.

A traveler in this digital age,
I come upon a deceptive stage,
Where roads diverge in a cyber wood,

And I stand where a weary traveler stood.

The gift card scam, a path so worn,
By feet of those who’ve been forlorn,
A trail of deceit and cunning lies,

Hidden beneath the virtual skies.

With promises of ease and gain,
They lure the unsuspecting in vain,
To purchase cards, a treacherous deed,

Believing it’s all they’ll ever need.

But once the numbers are relayed,
The path grows dark, the colors fade,
The journey ends, the truth revealed,

In the forest, the fate is sealed.

The money spent, now gone astray,
In the woods of scam, forever to stay,
A lesson learned in the hardest way,

In the forest where shadows play.

So now I choose with cautious heart,
From this deceptive path to depart,
For in the wood where choices lie,
The road less traveled catches my eye.

In the voice of Frost, I share this tale,
Of a path fraught with a sorrowful wail,
Choose your road with wisdom and care,
In the forest of the internet, be ever aware.

In this concluding part, the style of Samuel Clemens is continued to bring the series to a close. The narrative completes the story of the gift card scam, emphasizing the climax and providing readers with advice on how to avoid such scams. The series ends with a reflection on the importance of vigilance and the protection of personal information in the digital age.

Welcome back, dear readers, to our ongoing saga of skullduggery and deception in the age of Robocalls and outer space telescopes. When last we parted, our tale had reached a critical juncture, with our unsuspecting protagonist poised on the edge of the scammer’s trap. Let us now turn the page to the next chapter, where the plot thickens and the air grows heavy with the scent of duplicity.

In this act of our drama, the scoundrel, having woven a web of credibility, begins to stir the pot of urgency. They craft a crisis with the skill of a playwright, painting a picture of impending doom that would turn the stoutest of hearts to jelly. This emergency, mind you, is as real as the fabled riches of El Dorado, yet presented with such conviction that it might as well be knocking at your front door.

The scammer, now in full control of the narrative, plays upon the strings of human emotion with the dexterity of a seasoned puppeteer. They speak of calamities that would make Job’s trials seem a walk in the park – tales of compromised security, legal entanglements, or financial ruin. The objective? To drown reason in a sea of panic, urging immediate action lest the imaginary axe fall.

But what, you might wonder, is the solution to this fabricated fiasco? Here, dear reader, is where the scam takes a curious turn. Our villain, ever the helpful soul, suggests a resolution so bizarre, it would make a cat laugh. They propose the purchase of gift cards – yes, those colorful tokens of commerce, more fitting for a birthday gift than the settling of serious matters.

This suggestion, absurd as it may seem, is presented as a lifeline, the only means to avert disaster. The scammer assures our harried hero that these gift cards are the key to salvation, spinning a tale of their untraceability and ease of transfer as virtues in this hour of need.

And so, the trap is sprung. The victim, driven by fear and a misplaced trust in the voice of authority, is led down the garden path to the nearest purveyor of these plastic panaceas. Little do they realize that each step takes them further from safety and closer to the jaws of ruin.

But hold, dear readers, for our tale is not yet complete. The final act awaits, where we shall witness the climax of this elaborate charade and glean wisdom from the unraveling of our cautionary tale. Join me next time, as we conclude our journey through the shadowed alleys of the gift card scam and emerge, hopefully, wiser and warier.

In our last convivial gathering, I introduced you to the wily world of the gift card scam, a modern-day swindle that would make even the most seasoned riverboat gambler blush. Today, let us embark on the next chapter of our tale, where we explore the genesis of this cunning deceit.¹

Picture this, if you will: a day like any other, with the sun climbing its usual path across the sky. You are at ease, perhaps enjoying a cup of coffee or perusing the day’s news. It is then that our story takes a curious turn, with the arrival of an unexpected electronic missive or, for those still favoring the spoken word, a telephone call. This is no ordinary communication, but rather the opening gambit in a game of deception.²

The voice on the other end, or the words on the screen, claim lineage from some reputable establishment – maybe the tax collectors, or a company whose name is as familiar as the stars in the sky. They speak with authority, their words carefully chosen to project an air of legitimacy and urgency.³

Now, these scoundrels are clever, I’ll give them that. They spin a yarn that would make a novelist proud, peppering their speech with just enough truth to season the lie. Perhaps they claim your computing machine has been besieged by bandits of the digital kind, or that Uncle Sam himself is knocking at your door, hat in hand, seeking unpaid dues.

As our tale unfolds, the scammer weaves their narrative, turning the screw of urgency tighter and tighter. They talk of dire consequences, of impending doom that could befall you should you tarry. Their words are designed to cloud your judgment, to rush you headlong into a decision without the luxury of thought or counsel.

And so, the stage is set. Our unwitting protagonist, armed with nothing but trust in their fellow man, stands on the precipice of a decision. Little do they know that the person on the other end of that line, or the author of that electronic letter, is nothing but a modern-day brigand.

But what, you ask, is the endgame of this sordid affair? How does our charlatan convince their mark to part with their hard-earned wealth? Ah, that, my dear readers, is a tale for our next meeting, where we shall explore the heart of this deception – the moment the scammer plays their ace.⁴

Join me next time, as we delve into the murky waters of the scammer’s strategy, where urgency and fear conspire to loosen the strings of the purse and the bonds of common sense.

Echoes of the Digital Monster

In a world of shadowed screens and whispered lies,
Where modern Prometheus in darkness thrives,
Lies a tale of woe and treachery profound,
A scam most vile, where heartache is found.
In the depths of the digital ether’s embrace,
Monsters are born, wearing a human’s face,
Crafting their schemes with a sinister plan,
The gift card scam, a curse upon man.
They speak in tongues smooth and sly,
Promising safety under a virtual sky,
“Quick, buy these cards,” they deceitfully claim,
“To save your soul from financial flame.”
Unsuspecting hearts, pure and true,
Fall prey to this unholy crew,
Venturing forth in the dead of night,
To purchase cards, their only light.
The stores, like crypts, hold secrets untold,
Where plastic cards are bought and sold,
Their numbers, like secrets, whispered in haste,
To fiends unseen, in the cybernetic waste. 
But as dawn breaks, the horror reveals,
The truth behind these nefarious deals,
Empty wallets, dreams turned to dust,
In the digital monsters we blindly trust.
Oh, the tears that fall like rain,
From victims of this infernal pain,
For in the gift card’s deceptive glow,
Lies a darkness, a malevolent woe.
So heed this tale, a cautionary verse,
Of a cyber monster, a modern curse,
Guard well your trust, your fortune, your name,
Lest you fall victim to this monstrous game.
In Mary Shelley’s voice, we recount this plight,
A tale of techno-horror, of cybernetic blight,
Remember, in the world’s digital part,
Lurks the shadowed peril of the gift card scam’s heart.

In this second part, following the style of Samuel Clemens, the narrative delves into the initial stages of the gift card scam, setting the scene for the scammer’s manipulative tactics. The storytelling aims to engage the reader with a mix of humor and critical observation, typical of Twain’s writing. The cliffhanger at the end paves the way for the next installment. Followed with a poem in the style of Mary Shelley.

¹https://www.reddit.com/r/instacart/comments/12kenl6/gift_cards_scam/?rdt=59530    

 ²https://www.youtube.com/watch?v=z96n80IQjUM   

 ³https://www.fdacs.gov/Consumer-Resources/Scams-and-Fraud/Gift-Card-Scams   urgency

 ⁴https://www.cnbc.com/select/gift-card-scam-money-back/