-
iPhone counterfeiting case highlights risks of supply/support chain manipulation
PRIVACY PRIVACY The sentencing of Haiteng Wu on February 2, 2022, for his participation in a three-plus-year conspiracy to defraud Apple out of just over $1.5 million shines the light on criminals who operate in the margins of warranty fulfillment of consumer products, such as the iPhone. All in, the criminals were able to garner…
-
Vulnerabilities don’t count
PRIVACY PRIVACY I had a lovely chat with one of my favorite CISOs the other day, helping them think through the security metrics that they report upwards. Front and center, as I see in almost every security metrics presentation, was a pair of my least favorite monthly measurements: average age of open vulnerabilities, and total…
-
FBI: SIM Swapping Attacks Have Surged Five-Fold
PRIVACY PRIVACY Feds warn crypto investors not to boast of assets online Read More
-
New Ransomware Warning for Critical Infrastructure Providers
PRIVACY PRIVACY US, UK and Australian agencies claim mid-sized firms are increasingly targeted Read More
-
Russian Govt. Continues Carding Shop Crackdown
PRIVACY PRIVACY Russian authorities have arrested six men accused of operating some of the most active online bazaars for selling stolen payment card data. The crackdown — the second closure of major card fraud shops by Russian authorities in as many weeks — comes closely behind Russia’s arrest of 14 alleged affiliates of the REvil…
-
Maryland Cyber Nonprofit to Create Centers of Excellence
PRIVACY PRIVACY Cybersecurity Association of Maryland to establish new centers for cyber talent, cyber resilience and business growth Read More
-
Fifth of Young Women in UK Were Cyber-Flashed in Past Year
PRIVACY PRIVACY Charity behind cyber-flashing study says virtual abuse is having “devastating impact” Read More
-
Rapper and Husband Allegedly Laundered Stolen Bitcoin Worth $4.5bn
PRIVACY PRIVACY New York couple charged in biggest-ever cryptocurrency theft case Read More
-
CVE-2022-22536: SAP Patches Internet Communication Manager Advanced Desync (ICMAD) Vulnerabilities
PRIVACY PRIVACY SAP and Onapsis Research Labs collaborate to disclose three critical vulnerabilities impacting SAP NetWeaver Application Servers. The most severe of the three could lead to full system takeover. Background On February 8, SAP disclosed several vulnerabilities in the Internet Communication Manager (ICM), a critical component of its NetWeaver Application Servers in coordination with…
-
How to Secure Your Digital Wallet
PRIVACY PRIVACY The convenience of tapping your phone at the cash register instead of fumbling for loose change in your physical wallet is undeniable. Nearly 40% of Canadians used their mobile wallets more often in 2020 because of the perceived safety of contactless payment, according to one report.1 While digital wallets and tap to pay…