I think it would be hard to argue with the statement that when it comes to mobile (phone) security, Apple has it all over Google. For the most part, other than for the Google branded phones, that is because they have to work through the handset manufacturers and wireless carriers. Apparently, not any more. For […]
Continue reading → [DISPLAY_ACURAX_ICONS]This time the attack is against an eCommerce platform, PrismWeb, that is used by College bookstores. The attack is similar to other attacks, in the the hackers somehow got into the company’s system and inserted a tiny bit of Javascript that steals credit card data – very similar to Magecart that is affecting sites from […]
Continue reading → [DISPLAY_ACURAX_ICONS]U.S. Trains UAE Spies to Spy on Americans Reuters has written an expose on how the State Department granted a U.S. Company an ITAR license to train UAE spies on hacking. The plan, which got out of control, what to constraint the UAE spies, but once they were trained, they fired their U.S. trainers and […]
Continue reading → [DISPLAY_ACURAX_ICONS]One good thing about breach notification laws – we tend to find out more information about what actually happened. Last month Citrix announced that hackers broke into their network and stole documents – corporate secrets. They said they found out when the FBI came to tell them (that probably was not fun to admit). Security […]
Continue reading → [DISPLAY_ACURAX_ICONS]Stories – and only stories – abound about whether the Ruskies have infiltrated the US power grid – years ago. The government is not going to tell the truth for fear of scaring the crap out of people. On March 5th a “cyber event” interrupted the power grid in parts of the western United States. […]
Continue reading → [DISPLAY_ACURAX_ICONS]The fourth annual benchmark on cyber resilience authored by Larry Ponemon and paid for by IBM shows that 77% of the organizations surveyed do not have a cybersecurity incident response program applied consistently across the organization. Does your organization have an effective, trained and tested cybersecurity incident response program (CSISP) that works across all parts […]
Continue reading → [DISPLAY_ACURAX_ICONS]