-
Google: Vendors Accelerate Bug Fixes to Just 52 Days
PRIVACY PRIVACY Google’s 90-day deadline exceeded only once in 2021 Read More
-
Trustpilot Sues Immigration Biz for Alleged Fake Reviews
PRIVACY PRIVACY Reviews site claims firm has ignored its enforcement action Read More
-
Friday Squid Blogging: Climate Change Causing “Squid Bloom” along Pacific Coast
PRIVACY PRIVACY The oceans are warmer, which means more squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Read More
-
New Magnet Forensics app automates, coordinates cybersecurity response
PRIVACY PRIVACY A slow response to a data breach or other cybersecurity incident can cost companies time and money, as well as damage to their reputation. To help companies accelerate their response to cybersecurity incidents, Magnet Forensics is offering a new application, Magnet Automate Enterprise, designed to automatically trigger investigations into security breaches and synchronize…
-
Prison for Nintendo Pirate
PRIVACY PRIVACY Games giant thanks US authorities for securing 3-year prison term for Team-Xecuter leader Read More
-
Marketing Firm Exposes Lead Data
PRIVACY PRIVACY Cybersecurity researchers find PII of millions of people in unsecured Amazon S3 Bucket Read More
-
Immediata Agrees $1.125m Data Breach Settlement
PRIVACY PRIVACY Software company agrees to settle class action lawsuit filed by victims of 2019 security breach Read More
-
Major SAP vulnerability requires urgent patch to prevent HTTP request smuggling attacks
PRIVACY PRIVACY Security researchers, enterprise software maker SAP, and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) have issued warnings over a critical vulnerability affecting Internet Communication Manager (ICM), a core component of SAP business applications that enables HTTPS communications. Tracked as CVE-2022-22536, the vulnerability allows attackers to use malformed packets to trick SAP servers…
-
On the Irish Health Services Executive Hack
PRIVACY PRIVACY A detailed report of the 2021 ransomware attack against Ireland’s Health Services Executive lists some really bad security practices: The report notes that: The HSE did not have a Chief Information Security Officer (CISO) or a “single responsible owner for cybersecurity at either senior executive or management level to provide leadership and direction.…
-
Half of Global Emails Were Spam in 2021
PRIVACY PRIVACY COVID-19 still looms large in corporate inboxes Read More