Maybe this is the NEW AND IMPROVED NSA. From the NSA document: This document divides cloud vulnerabilities into four classes (misconfiguration, poor access control, shared tenancy vulnerabilities, and supply chain vulnerabilities) that encompass the vast majority of known vulnerabilities. Cloud customers have a critical role in mitigating misconfiguration and poor access control, but can also […]
Continue reading → [DISPLAY_ACURAX_ICONS]Breaches Gone Wild – Very Wild Since EU’s GDPR went into effect on May 25, 2018 – about 18 months ago – 160,000 Breaches have been reported to EU authorities. A calculator will tell you that means that people are reporting between 250 and 300 security incidents A DAY! If you think that magically, 18 […]
Continue reading → [DISPLAY_ACURAX_ICONS]Swatting, the very illegal and sometimes deadly practice of making a prank call to 911 in attempt to get SWAT police to storm a building is apparently on the rise. The premise is often that someone is holding a hostage or threatening to murder someone which puts the cops in a no win situation. If […]
Continue reading → [DISPLAY_ACURAX_ICONS]As we get closer to the January 31st deadline for the UK to sort of kind of leave the EU, the bill that the PM’s side so carefully drafted may or may not hold together. Over the last two days, the House of Lords voted against Johnson 5 times, forcing the bill back to the […]
Continue reading → [DISPLAY_ACURAX_ICONS]Warning: Sorry, this post is way more technical than most of my posts. If you are an executive reading this, you may want to show this to your security or IT folks and ask “how are we handling this?”. They should be able to explain that to you in English. Incident response is all about […]
Continue reading → [DISPLAY_ACURAX_ICONS]Orphaned Data in the Cloud Researchers at security firm vpnMentor found an unsecured S3 bucket with passport, tax forms, background checks, job applications and other sensitive data for thousands of employees of British consultancies. Many of the firms involved are no longer in business. The researchers reported this to Amazon and the UK’s Computer Emergency […]
Continue reading → [DISPLAY_ACURAX_ICONS]