AstraZeneca Learns About Cloud Security – As Should You Apparently, AstraZeneca left credentials to an internal server on GitHub for over a year. The credentials granted access to a test SalesForce environment that contained patient data. Once TechCrunch told them about it, they made the repository private. Who found that repo, who found the credentials, […]
Continue reading → [DISPLAY_ACURAX_ICONS]Cyber insurance premiums are rising and coverage is being limited. Some organizations just can’t find insurance at all at an affordable price. Law firm Akin Gump says that some of their clients reported a 300% increase in premiums and carriers are pulling back coverage. The federal government is very concerned because critical infrastructure might not […]
Continue reading → [DISPLAY_ACURAX_ICONS]If you have customers in the EU this is important to you but even if you don’t, you may get involved. We recently heard of a case where a small company was sent a threatening letter of non-compliance with EU law, even though they don’t do business in the EU. Turns out that doesn’t matter. […]
Continue reading → [DISPLAY_ACURAX_ICONS]Dropbox says it was phished – simple as that. As a result, the attacker had access to 130 of its code repositories and downloaded a wide range of information. Dropbox has been very transparent about this, but it is both embarrassing and damaging to the company. The hackers socially engineered an employee to give up […]
Continue reading → [DISPLAY_ACURAX_ICONS]This is just one example. Fallout from the hack of Australian health insurer Medibank continues to get worse as the company has “widened” the group of people affected by the breach. Again! Remember, this is not a mom-and-pop corner sandwich shop. This is the largest private health insurer in Australia. Last week they admitted that […]
Continue reading → [DISPLAY_ACURAX_ICONS]New White Paper on the Global Cyberwar and Societal Response We have just released a new white paper and are looking for feedback on this non-technical paper titled The Global Cyberwar and Societal Response. The target audience for this white paper is business and IT pros who want to be knowledgeable about managing company risk […]
Continue reading → [DISPLAY_ACURAX_ICONS]