In what may be the first of its kind event, the FDA recalled a pacemaker from St Jude, now owned by Abbott Labs. Researchers discovered the flaws prior to Abbott’s acquisition of St. Jude and reported them to both the FDA and St. Jude. Both decided to do nothing about it until the researchers went […]
Continue reading → [DISPLAY_ACURAX_ICONS]One of the things that has always been a barrier for people who’s data was compromised during a breach is what lawyers call “Standing”. Standing derives from Article III of the U.S. Constitution. The courts have said that there are three requirements for “standing” to bring an action against another – Injury in fact, causation […]
Continue reading → [DISPLAY_ACURAX_ICONS]Researchers at Bitdefender say that they have uncovered two vulnerabilities in low cost Chinese cameras. One of the cameras is used in the iDoorbell – which represents a software supply chain issue on top of it. The cameras come from Shenzen Neo Electronics. Researchers suspect that other cameras are affected as well. Using the search […]
Continue reading → [DISPLAY_ACURAX_ICONS]General Keith Alexander, former director of the National Security Agency, said that cyber espionage is the greatest transfer of wealth in history. In 2012 when he made that statement, the the value of cyber industrial espionage on an annual basis was $338 billion. Per year. 5 years later I am sure that number is greater. […]
Continue reading → [DISPLAY_ACURAX_ICONS]Business email compromise (BEC) attacks are relentlessly attacking businesses with no let-up in sight. BEC attacks have traditionally used CEOs and CFOs as their foils, pretending to be them and getting people to wire money to the hackers. The oil and gas industry was targeted by a single individual using old generic malware readily […]
Continue reading → [DISPLAY_ACURAX_ICONS]A report presented this month at the 2017 Usenix Workshop on Offensive Technologies was pretty offensive – and not in the way they meant in the workshop title. Offensive security is what spies do – go out and attack a system. The report demonstrated a proof of concept attack that would work if someone took […]
Continue reading → [DISPLAY_ACURAX_ICONS]