Apple Mum on 128 Million Users Hack

September 21, 2015, happened to be a big day for Apple. Not because they had to launch a new product. It was because they had to choose if they wanted to announce 128 million Apple users were hacked or be silent about it. According to Ars Technica, res… Continue reading Apple Mum on 128 Million Users Hack

Experian API Leaked Credit Scores

After Experian fixed a weakness at a partner website that let anyone view credit scores for nearly every American by just inputting a name and address, questions remain about whether the same problem exists with other partners, and how widespread the … Continue reading Experian API Leaked Credit Scores

Data Breaches vs. Data Leaks, FBI Exchange Server Controversy

This week Tom and Kevin are back with an all new episode! Data breaches vs. recent data leaks, and the controversy over the FBI operation conducted to remove web shells from compromised Microsoft Exchange servers. ** Links mentioned on the show ** Face… Continue reading Data Breaches vs. Data Leaks, FBI Exchange Server Controversy

Using memory encryption in web applications to help reduce the risk of Spectre attacks

There’s nothing quite like an actual proof-of-concept to make everyone listen. I was pleased by the PoC released by Google security engineers Stephen Röttger and Artur Janc earlier this month – in a nutshell, they showed how the Spectre vulnerabi… Continue reading Using memory encryption in web applications to help reduce the risk of Spectre attacks

Open-source tool BlobHunter helps pinpoint public Azure blobs that might contain sensitive files

CyberArk researchers have released BlobHunter, an open-source tool organizations can use to discover Azure blobs containing sensitive files they have inadvertently made public. The cloud storage misconfiguration problem The many advantages of using the… Continue reading Open-source tool BlobHunter helps pinpoint public Azure blobs that might contain sensitive files

Only 30% prepared to secure a complete shift to remote work

The biggest security concerns facing businesses are data leaking through endpoints (27%), loss of visibility of user activity (25%) and maintaining compliance with regulatory requirements (24%), DTEX Systems reveals. These concerns are followed by acce… Continue reading Only 30% prepared to secure a complete shift to remote work

Stress levels are rising, but that doesn’t have to mean more security incidents

For those working remotely during the pandemic, changes to how work is done have significantly increased stress levels – and when we’re stressed, we’re more likely to make mistakes that result in sensitive data being inadvertently put at risk. Our 2020… Continue reading Stress levels are rising, but that doesn’t have to mean more security incidents

45 Million Medical Images Left Exposed Online

A six-month investigation by CybelAngel discovered unsecured sensitive patient data available for third parties to access for blackmail, fraud or other nefarious purposes. Continue reading 45 Million Medical Images Left Exposed Online

RansomExx Ransomware Gang Dumps Stolen Embraer Data: Report

The group published files stolen from the Brazilian aircraft manufacturer in a ransomware attack last month. Continue reading RansomExx Ransomware Gang Dumps Stolen Embraer Data: Report