Chicago IT Support & Cyber Security | Forward Technologies

Chicago-based Forward Technologies delivers IT support and cyber security to businesses in the Chicago area and nationwide.

  • Home
  • Services
    • Outsourced IT Support
    • DMARC Email Security
    • Development
      • Web Development & Facelifts
      • CustomView: Plugin for WordPress
    • Data Recovery Service
    • PPC Marketing Services
    • SEO Services
  • Email Security
    • SPF Basics
    • DKIM Basics
    • DMARC Basics
    • Email Security Consulting
  • Data Recovery Service
  • Blog
  • Contact Us

Malicious CAPTCHA Redirects Turn WordPress Sites into Malware Launchpads

August 28, 2025 by Edward Silha

A sinister campaign known as ShadowCaptcha is using over 100 compromised WordPress sites as unwitting hosts, redirecting visitors to fake CAPTCHA pages. These deceptive pages trigger malware delivery ranging from credential stealers to ransomware and cryptocurrency miners.

Researchers from Israel’s National Digital Agency revealed that ShadowCaptcha merges social engineering with living-off-the-land tactics. Attackers aim to steal credentials, exfiltrate browser information, deploy cryptomining software, or trigger ransomware—depending on the route the victim takes. [Read more…]

Filed Under: Blog, Cybersecurity, WebDev Tagged With: browser exploit, ClickFix attack, compromised WordPress plugins, crypto miners, cybersecurity, cybersecurity news, fake CAPTCHA, Help TDS, HTA payload, info stealers, infostealer, JavaScript injection, malware campaigns, mshta.exe, phishing redirect, ransomware, ShadowCaptcha, web application firewall, WinRing0x64.sys, WooCommerce plugin threat, WooCommerce_inputs, WordPress security, XMRig

Federal Court Cyberattacks Are a National Security Crisis, Wyden Warns

August 25, 2025 by Edward Silha

Cartoon-style illustration of a courthouse with digital security lock overlay, representing federal court cybersecurity risks.Cyberattacks on U.S. federal courts are no longer just IT problems. They now pose a national security threat.

That is Senator Ron Wyden’s warning in a blunt letter to Chief Justice John Roberts this week, urging the Supreme Court to address repeated breaches of the judiciary’s document filing and email systems. Wyden called the hacks “unacceptable” and said weak practices have left the courts “an inviting target” for foreign adversaries. [Read more…]

Filed Under: Blog, Cybersecurity Tagged With: AI governance, AI risk management, APT29, CM/ECF, court breach, cybersecurity, data security, digital defenses, federal court cybersecurity, federal judiciary, hacking, identity-first security, multi‑factor authentication, national security, outdated IT infrastructure, oversight, PACER, PACER hack, post-quantum cryptography, quantum threats, Russian hackers, Senator Ron Wyden, sen‑ron‑wyden, shadow AI, supreme court, U.S. judiciary, zero trust, zero trust security

When Hidden AI Meets Quantum Doom: The New Enterprise Security Crossroads

August 14, 2025 by Edward Silha

Abstract graphic of AI code streams merging with digital locks, symbolizing AI governance and quantum-safe encryptionWhy Shadow AI Slips Past Security

Shadow AI is already inside. The tools sit in browsers and sidebars. Employees paste snippets of code, customer notes, even legal language into chatbots that were never vetted. The answers look helpful. The risk hides in the copy and paste. Data leaves the building without a ticket. Logs do not show it. Policies never saw it. By the time a leak becomes visible, the trail is cold.

IT leaders keep asking the same question. How do you govern what you cannot see? You start by naming it. Shadow AI covers any AI use that bypasses purchase, security review, or monitoring. That includes SaaS chat tools, browser extensions, model endpoints wired into internal scripts, and clever “personal assistants” someone installed on a work laptop. Each of those entry points can move sensitive information to third parties. Some keep prompts. Others store outputs. Many train on uploaded files. You cannot make a clean audit if you do not control any of that. [Read more…]

Filed Under: AI, Blog, Cybersecurity Tagged With: AI governance, AI risk management, data leakage, data security, harvest-now decrypt-later, hybrid key exchange, identity-first security, least privilege, MFA, post-quantum cryptography, PQC, quantum computing, quantum threats, shadow AI, SSO, TLS, zero trust

Hacked and Harassed: When Debt Collectors Buy Your Stolen Digital Life

July 21, 2025 by Edward Silha

Digital profile data being handed to a suited figure with shadowy background and legal documents in handA startup called Farnsworth & Co. has found a niche in the dark overlap between surveillance, malware, and civil litigation. Their product? Personal data stolen from infected computers—now available for purchase by debt collectors, divorce lawyers, and anyone with a grudge and a budget.

The company’s entire business hinges on access to data siphoned off by infostealer malware. This kind of software quietly grabs login credentials, browsing histories, cookies, emails, and contact lists from unsuspecting users. It then bundles the stolen data into searchable profiles. Farnsworth, for its part, packages this information and sells it as “intelligence services.” [Read more…]

Filed Under: Blog, Cybersecurity, Tech In General Tagged With: cybercrime, data breach, data brokers, digital profiling, Farnsworth & Co., infostealer, malware data, privacy invasion

Hackers Hide Malware in DNS Records to Evade Detection

July 16, 2025 by Edward Silha

An endpoint computer receiving a DNS response, which reassembles into a malicious script, shown as puzzle pieces forming a bug icon at the user’s terminal.A new cybersecurity threat is emerging as attackers use DNS records—the very system that directs internet traffic—to hide malware. Instead of relying on email attachments or suspicious downloads, bad actors are embedding malicious payloads into DNS TXT records. This method sneaks malicious code past traditional defenses because security tools often ignore DNS traffic.

DNS, or Domain Name System, acts like the internet’s phonebook, translating domain names into IP addresses. It is so fundamental and routine that most security systems allow it without scrutiny. That makes it a perfect hiding place. According to researchers at Infoblox, attackers are disguising shellcode—malicious binary instructions—inside base64-encoded TXT records. These look like harmless text but are reassembled and executed by compromised devices once fetched.  [Read more…]

Filed Under: Blog, Cybersecurity Tagged With: Cobalt Strike, cybersecurity, cybersecurity threats, data exfiltration, DNS blind spot, DNS malware, DNS security, DNS tunneling, DNS TXT records, DNS-based attacks, DomainTools, Infoblox, TXT records, zero trust

  • 1
  • 2
  • 3
  • 4
  • Next Page »

Social Media

  • Facebook
  • GitHub
  • LinkedIn
  • Periscope
  • Twitter

Forward Technologies
747 N LaSalle
STE 500B
Chicago, IL 60654
(312) 715-7806

Copyright © 2025 — Forward Technologies • All rights reserved. • Privacy Policy •