720-891-1663

14 Year Long Chinese Hacking Ring Identified

Up until now, the longest undetected hacking operation that I was aware of was at Nortel Networks. It lasted 12 years and resulted in the company shutting down in bankruptcy and sold for scrap. This one beats that one. The DoJ unsealed indictments today for 7 Chinese nationals (note to these folks: do not travel […]

Continue reading → [DISPLAY_ACURAX_ICONS]

People Are Increasingly Concerned About Personal Data Safety

In its latest report, Aleo, a privacy oriented blockchain startup says that people are increasingly concerned about who controls their personal data. They say that 67 percent are WILLING TO switch to a product that protects their privacy. That is different than they will switch. They also say that people are more aware of privacy […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News for the Week Ending March 22, 2024

Like Everyone Else, Reddit Plans to Sell User Content to AI Model Devs Seeing dollar signs in their future, Reddit decided to “license” their user created content to AI developers to train their models. The FTC is investigating in light of Reddit’s planned IPO. Reddit says it isn’t breaking the law to sell their user’s […]

Continue reading → [DISPLAY_ACURAX_ICONS]

DoD Contractors: Will You Have to Replace Your MSP?

If you are a defense contractor, then over the next few years you will likely have to be compliant and maybe certified for CMMC, either at level one or level two. Level one has about 17 controls and 59 assessment objectives; level two has 110 controls and about 315 assessment objectives. Assessment objectives are the […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Feds Say CISA Not Prepared to Defend OT

If that headline doesn’t keep you up at night, I don’t know what will. The Government Accountability Office (GAO) says they have have found inefficiencies in CISA’s information sharing practices, in particular with critical infrastructure stakeholders. They also say that CISA is understaffed for handling OT incidents. Just to make sure everyone is on the […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Microsoft Plans to Deprecate 1024 Bit RSA Keys

Microsoft is often between a rock and a hard place. They would like to be more secure but not at the expense of offending their customers. Here is an example of that. Microsoft has announced that RSA keys shorter than 2048 bits will soon be deprecated in Windows Transport Layer Security (TLS) to provide increased […]

Continue reading → [DISPLAY_ACURAX_ICONS]