-
Password manager LastPass reveals intrusion into development system
PRIVACY PRIVACY LastPass, maker of a popular password management application, revealed Thursday that an unauthorized party gained access to its development environment through a compromised developer account and stole some source code and proprietary technical information. An initial probe of the incident has revealed no evidence that customer data or encrypted password vaults were accessed…
-
Iran-Based MuddyWater Targets Log4j 2 Vulnerabilities in SysAid Apps in Israel
PRIVACY PRIVACY It is the first campaign in which the hacker group exploits SysAid apps as a vector for initial access Read More
-
TeamTNT Targeted Cloud Instances and Containerized Environments For Two Years
PRIVACY PRIVACY The hacking group most likely originates from Germany Read More
-
LastPass hackers steal source code, no evidence of users’ passwords compromised
PRIVACY PRIVACY LastPass, the popular password manager trusted by millions of people around the world, has announced that it suffered a security breach two weeks ago that saw hackers break into its systems and steal information. Read more in my article on the Tripwire State of Security blog. Read More
-
0ktapus Phishing Campaign Targets Okta Identity Credentials
PRIVACY PRIVACY Despite using low-skill methods, the campaign compromised a large number of well-known companies Read More
-
Security and Cheap Complexity
PRIVACY PRIVACY I’ve been saying that complexity is the worst enemy of security for a long time now. (Here’s me in 1999.) And it’s been true for a long time. In 2018, Thomas Dullien of Google’s Project Zero talked about “cheap complexity.” Andrew Appel summarizes: The anomaly of cheap complexity. For most of human history,…
-
Cybersecurity Snapshot: 6 Things That Matter Right Now
PRIVACY PRIVACY Topics that are top of mind for the week ending Aug. 26 | The “platformization” of hybrid cloud security. Budgeting guidance for CISOs. Tackling IT/OT cybersecurity challenges. Tips for complying with HIPAA’s cybersecurity rule. A roundup of patches, trends and incidents to keep an eye on. And much more! 1 – IDC sees…
-
Cloud Data Management Capabilities (CDMC) framework: the challenges & best practices
PRIVACY PRIVACY This blog was written by an independent guest blogger. Cloud adoption has gained solid momentum over the past few years. The technology has been helping organizations revolutionize their businesses and optimize their processes for increased productivity, reduced cost, and better scalability. But as organizations pour their entire focus on improving their businesses, they…
-
Cosmetics Giant Sephora to Pay $1m+ Privacy Settlement
PRIVACY PRIVACY California’s data protection law bares its teeth Read More
-
Block Faces Class Action Suit After 2021 Breach
PRIVACY PRIVACY Plaintiffs argue firm’s security posture was ineffective Read More