As is often the case, humans and process represent the biggest failure window. Microsoft, to its credit, is being public about its own failures and pretty quickly. The Chinese hackers, Storm-0558, obtained a “golden cryptographic key” which allowed them to generate tokens so that they could masquerade as other users. I don’t know why you […]
Continue reading → [DISPLAY_ACURAX_ICONS]Want a .US Domain? Just Lie About It. The .US top level domains are a hotbed for phishing attacks. Apparently, this is due to lax oversight. In theory, the .US is managed by the US government, but the government outsources that to GoDaddy – who doesn’t have a stellar cybersecurity reputation to be polite. See […]
Continue reading → [DISPLAY_ACURAX_ICONS]The California Privacy Protection Agency, the government agency that enforces the California Privacy Rights Act, has released two DRAFT documents recently. They are going to discuss the drafts at their meeting tomorrow but they have not yet started the rulemaking process. The two regulations are the cybersecurity audit regulations and the cyber risk assessment regulations. […]
Continue reading → [DISPLAY_ACURAX_ICONS]That question is the basis of a FIVE BILLION DOLLAR lawsuit. Google’s Chrome incognito mode is the tool of choice for people who want to keep their web activity private. The use of it is often called private browsing or porn mode, depending on who you talk to. There are legitimate reasons to use incognito […]
Continue reading → [DISPLAY_ACURAX_ICONS]In light of one of the largest breaches in recent history – the MOVEit supply chain attack – it is possible new case law may be developed. The typical lawsuits that come out of breaches are damage claims from victims who say that the breach of their data caused them pain and suffering. Except that […]
Continue reading → [DISPLAY_ACURAX_ICONS]Web scraping is a time honored tradition. Everyone does it. Just not at the scale that companies like Google, Facebook and Microsoft do it. Some people say that data is the new oil. If true, that means if you have more data than the other team, you will win. AI for example, needs to train […]
Continue reading → [DISPLAY_ACURAX_ICONS]