Ever try to cancel a subscription online? Or even figure out when the subscription is due to be renewed? That difficulty is intentional and is now against the law in many states and countries. If you operate an online presence, it is important for you to understand what you are allowed to do and what…
This week’s security news includes: When is your iPhone really off? SF police use autonomous cars for surveillance Two business grade Netgear routers are vulnerable and can’t be fixed Home title fraud monitoring And now we have five – zero-days for Apple so far this year Microsoft end-of-life’s Windows Server 20H2 Judge okays first cryptocurrency…
If you have tried to get cyber risk insurance recently, you know that it is a whole new world. After years of collecting premiums, insurance companies have had to write checks. A lot of checks. They don’t like that so much. As a result, premiums have gone up, coverage has gone down, underwriting has become…
For those of you who are DoD contractors (and even if you are not), here is one thing that you can do that will improve your security program and, if you are a DoD contractor, will add 20 or more points to your NIST SP 800-171 SPRS Score. Audio Video
This week’s security news includes: College closes after 157 years after ransomware attack A really bad idea Ya can’t tell the players without a scorecard Microsoft to offer human-based security services This month’s patch Tuesday NIST plans to ask for comments on updates to Controlled Unclassified Information publications UK Sanctions Russian chip makers Prince Charles…
This week’s security news includes: White House releases orders to deploy quantum computing resistant encryption CISA releases secure cloud business applications (SCBA) technical reference architecture And now there are five – Connecticut joins the club Dark patterns – continued SEC doubles the size of its cryptocurrency fraud unit President signs better cybercrime metrics act NIST…
This week’s security news includes: French fiber cables cut in acts of sabotage Apple launches self-service repair store Google Play Store adds App Data Safety section Microsoft Announces Edge Secure Network Google will now let you remove some PII from their search results Breach reporting: 30 days? 4 days? 6 hours? get ready CFPB to…
Do you have to comply with CMMC? Here is an update with the current status of things – along with a little history – as of today. Audio Video
This week’s security news includes: Lakeview Loan Servicing reports breach Police pull over driverless vehicle – not sure what comes next Hackers are exploiting Spring4Shell to spread Mirai NIST plans to update the NIST Cybersecurty Frameword Cisco patches wireless controller login bypass Apache says Struts 2 patch – well not really patched Login.gov to hold…
This week’s security news includes: ATMs and medical devices at risk due to Access:7 bugs NSA says OpenSSL vulnerability can ‘definitely be weaponized’ Windows Autopatch coming this summer PHP package manager PEAR had critical flaw undiscovered for 15 years VMWare patches Spring4Shell RCE flaw in multiple products Senate confirms Maj. Gen. Maria Barrett as head…
