Bitstamp, a European bitcoin exchange, suffered a breach on January 4th of this year. According to a breach report apparently prepared for Bitstamp, the breach was a result of a determined adversary and a very typical but rookie mistake on the part of a Bitstamp administrator. The breach cost Bitstamp 18,997 bitcoins worth a little over […]
Continue reading → [DISPLAY_ACURAX_ICONS]BBC is reporting that several of the Trump hotels point of sale systems likely have been hacked. Trump’s initial response to questions was to decline to comment. Later, after the news of the breach was published, Eric Trump, Donald’s son, said that like “virtually every other company these days” they had been alerted to suspicious […]
Continue reading → [DISPLAY_ACURAX_ICONS]Apple released patches to fix a family of security flaws called Masque the other day in iOS release 8.4 . Researchers then came up with a new variant of the flaw that the patch doesn’t fix. Apple had fixed earlier variants of the Masque attack in iOS 8.1.3 , Anyone see a theme here. Unfortunately, […]
Continue reading → [DISPLAY_ACURAX_ICONS]In March I wrote about Max Schrems one man war against Facebook and their privacy-stealing policy (see post here). He originally went to the Irish data protection commissioner but withdrew that complaint after it became clear that nothing would get resolved in that venue for years. Then he went to the Vienna District Court saying […]
Continue reading → [DISPLAY_ACURAX_ICONS]Wired reported that some Hospira drug infusion pumps are vulnerable to a number of attacks. The article also says that Hospira was not receptive to the news when told of the problem and it took DHS a year to issue an alert – only after someone made the facts public. In fact, Hospira initially refused […]
Continue reading → [DISPLAY_ACURAX_ICONS]According to Veracode, the government isn’t very good at fixing software flaws. In fact, of 7 vertical segments, they rank last. The financial and manufacturing sectors do best at fixing vulnerabilities. Healthcare organizations don’t do well and cloud vendors (SaaS) fail the OWASP top 10 almost 75% of the time. Given this, it is not […]
Continue reading → [DISPLAY_ACURAX_ICONS]