Security News Update for the Week Ending October 23, 2022
Topics this week include:
- Intel’s Alder Lake BIOS/UEFI code has been stolen and leaked
- CISA releases SCuBA documentation
- Microsoft implements Windows 11 feature to slow down hackers
- Social media impacts both your privacy and your safety
- US Army Major and his wife charged with trying to sell info to Russia
- Hackers target eager homebuyers with a dumb scam that keeps working
- Breach phase 2 – retailer Shein fined $1.9 million for breach cover-up
- Microsoft admits it leaked (not hacked) 2.4 gig of B to B data
- Australia’s Medibank goes from hero to zero in a week and loses 200 gig of patient data
- Wholesale giant METRO hit by cyberattack
- CISA says track your assets and vulnerabilities
- Be careful how you use tracking points
- Biometric laws vs. big tech – the battle
- Security news bites for the week ending October 21st, 2022: few election offices use .Gov domain. LinkedIn working secretly to eliminate fake profiles. Chip makers tell auto industry to pay up if they want chips. Gen Z, millennials protect their data more than company data. Customs vendor says they leaked 11,000 license plates, but reality is 1.38 million.
Are you doing a good job of educating your customers about cyber fraud? You might not be legally responsible for their losses (although you may get sued anyway), but you will get a lot of negative publicity. Are you doing everything you should? Contact us if you need assistance.
You can find a printed version of the newsletter at https://cybercecurity-mitch-tanenbaum-blog.com/snu/ .