March 2023 Tech News Update | Managed Resources

LastPass Hacked

While already dealing with a recent breach, LastPass now says the same attacker hacked an employee’s home computer and obtained access to a decrypted vault.

The unknown threat actor stole valid credentials from a senior DevOps engineer in order to access contents of the vault. The vault, which is only available to a small number of employees, gives access to data, including a shared cloud-storage environment containing the encryption keys for customer vault backups stored in Amazon S3 buckets. This means the hacker could copy the customer vault backup data from the encrypted storage container; the backup data also contains unencrypted data, like website URLs, website usernames and passwords, secure notes, and more.

The tactics, techniques, and procedures used in the first incident were different from this second incident, making it harder for investigators to determine if the two attacks were directly related. As was previously advised, LastPass users should change their master passwords and all passwords stored in their vaults as a precaution, since it is currently unknown if the threat actor has access. Learn more details about the breach here.

iOS 16 Features

While Apple’s iOS operating system for the iPhone has always been security and privacy focused, iOS 16 has added many new features to aid in protecting your digital life.

While the option to hide private photos in a “hidden” folder already exists, your iPhone will now protect these photos, as well as anything in the Recently Deleted folder, with Face ID by default. This means that even if someone has physical access to your phone, they won’t be able to see your private photos. Face ID or Touch ID can now also be used to lock private notes. Previously, you were able to lock notes, but would need a passcode to gain access; the new feature is more convenient and again keeps notes private even if someone has physical access to your phone.

Even if someone doesn’t have physical access to your device, you may have previously shared data with friends or family, like your location, or photos. The new Safety Check feature allows you to perform a privacy audit and show you who can see what; this also allows the option to change permissions and revoke access. This can be done manually, one by one, or with the use of an Emergency Reset, you can instantly revoke all access to your iPhone’s data from any people, apps, or data who previously had permission.

There are new security settings in place around your clipboard – if an app tries to copy the contents, a pop-up will ask if you grant permission each time before allowing the app access or denying it. Since all of these updates are focused on extra security, iOS 16 is making future security updates more readily available. Rather than waiting for a large update that can take time to download and install, small security patches can be sent out to install automatically, keeping your phone more safe and secure.

To learn more about each feature, including Lockdown Mode and other bonus features, visit here.

Moving to Quickbooks

For various reasons you may be thinking of moving your accounting software to the cloud. Better backups, more flexible access, no need for local programs. If you are a current Quickbooks desktop user, read the information here and feel free to contact MCG to assist with this decision.

March 2023

iOS 16 Features

Moving to Quickbooks

Related posts