CISA is warning businesses that SaaS providers are under attack as a way to steal their customers’ credentials. If you think about this, it makes sense. This came after Commvault, a cloud-based backup solution, was compromised using a zero-day. What is interesting is how they planned to exploit the vulnerability. Commvault claims that no customer data in […]
Continue reading → [DISPLAY_ACURAX_ICONS]Lazy Passwords Still Prevail A new study of over 19 billion newly exposed passwords manifests a widespread weak password reuse crisis. Lazy keyboard patterns, such as 123456, still reign supreme, and 94% of passwords are reused or duplicated, data leaks from 2024-2025 reveal. Names like Ana rank as the second most popular component. Only 6 […]
Continue reading → [DISPLAY_ACURAX_ICONS]Insider threat is a major problem and getting worse all the time. Coinbase, the largest US-based cryptocurrency exchange, has disclosed a major data breach involving bribed overseas customer support agents who stole sensitive customer information. The attackers demanded a $20 million ransom, which Coinbase refused to pay. Instead, the company has offered a $20 million reward […]
Continue reading → [DISPLAY_ACURAX_ICONS]With the feds planning to cut, maybe, 40 percent of CISA’s staff and a half billion dollars, the EU is making its own plans. Just last month CISA almost shut down the Mitre Common Vulnerabilities and Exposures database that the industry is dependent on. CISA only renewed the contract with one hour to space and […]
Continue reading → [DISPLAY_ACURAX_ICONS]Wrong Number Scam Text Messages This scam is becoming very popular. You get a text from a number that is not in your phone book trying to engage you. “How is your sore back?” “How are you?” “Sorry, I’m running late” Anything to engage you. Once you are engaged they figure you are invested in […]
Continue reading → [DISPLAY_ACURAX_ICONS]Well, I am not sure that anyone in DC is actually fiddling, but they certainly are not doing much to solve the problem. A panel of policymakers at the RSA Conference in San Francisco this week were very clear on the threat. Salt Typhoon, a China-backed threat group, is particularly scary, having demonstrated uncanny skill in […]
Continue reading → [DISPLAY_ACURAX_ICONS]