Cyber insider threat is a significant issue. It comes in multiple flavors – accidental and malicious and can be caused by IT or by general users. While relatively rare compared to ransomware, it is more common than you might think. Learn about the problem here. Audio Video
This week’s news includes: Sophos auto-patches firewall bug being exploited in the wild Apple removes pig butchering apps from the App Store Brands review privacy policies after California fines Sephora $1.2 million 15 banks agree to over $1 Bil in fines over recordkeeping failures Morgan Stanley to pay $35 million for astonishing customer data disposal…
This week’s news includes: CISA says Dataprobe’s PDUs used in critical infrastructure vulnerable Unpatched 15 year old Python bug allows code injection in 350,000 projects HP failed to patch firmware for a year Industrial control systems have joined the general computer world in their own patch Tuesday mess NSA and CISA release Control system defense:…
MFA Fatigue is a relatively new attack method and is a way to try and get around MFA security. Learn what it is and how to protect yourself and your company against it, here. Audio Video
This week’s news includes: Not a great week for Uber – lying about an old breach, investigating a new breach Major WFH/WFA risk to businesses – employees viewing pirated contents CISA warns of water tank management system attack FBI warns of risks of using unpatched medical devices It’s 10 PM, do you know where your…
The dark web is where most of the content is illegal and most of the traffic is about how to do illegal deeds. It is also where, for example, credentials to the Los Angeles School District network were available for sale prior to the ransomware attack on the district’s network earlier this month. Likely the…
This week’s security news: Millions of Arris routers are vulnerable to attack Cloudflare dumps KiwiFarms Watchguard patches pre-authentication critical bug Court protects some vendor lists Cybersecurity radio KeyBank says hackers stole mortgage data – for a third party service provider IRS data breach exposes data on 120,000 LA Unified School District hit by cyberattack Mass…
This week’s security news includes: Yet another spyware gets caught in the act Hackers are hiding malware in James Webb telescope images New background check restrictions in 2022 Duck, Duck, Go expands beta of private email to everyone WordPress 6.0.2 Apple backports patch to older devices 2023 NDAA bill bans feds from buying insecure software…
This week’s security news includes: Google fends off 46 million packet per second denial of service attack Early draft of California privacy regulations The O.MG USB cable Federal privacy legislation Oracle sued over privacy violations Colorado’s Mesa County election deputy pleads guilty to tampering, agrees to testify against her boss, Tina Peters North Korea hackers…
This week’s security news includes: Epic Intel Chip Bug meet SQUIP AMD chip bug Update on UEFI secure boot bypass bug – much bigger than thought iOS 16 Lockdown Mode Microsoft fixes some EUFI bootloader vulnerabilities Apple patches fifth zero-day so far this year Chrome keeps up with Apple – also patches fifth zero-day of…
