We definitely live in interesting times. The virus is surging and at the same time morphing. Two different vaccines have been approved for emergency use. More are on the way. The country is discovering that actually getting vaccines in people’s arms is harder than talking about it. AND, there is talk of you having to […]
Continue reading → [DISPLAY_ACURAX_ICONS]Privileged accounts represent a major vulnerability for all networks and systems. If a hacker can compromise a privileged account they can do a lot more damage than if a regular account is compromised. So what do you need to do to protect those accounts? Note that privileged accounts exist at the operating system level (Windows, […]
Continue reading → [DISPLAY_ACURAX_ICONS]As is often the case when the feds do something, there is probably at least one thing that is good in this notice of proposed rulemaking and probably others that are less good. The HIPAA privacy rule is designed to protect the privacy of patient data, but other than stopping providers from selling your health […]
Continue reading → [DISPLAY_ACURAX_ICONS]So you have been hacked and the hackers stole your customers’ data. You try to do the right thing and notify them. By email. Because that might be the only address you have for them. But many times that email never makes to your customer. Blocked by the customer’s email service provider or spam filter. […]
Continue reading → [DISPLAY_ACURAX_ICONS]As millions upon millions of IoT and Industrial IoT devices get deployed every month, we seem to have forgotten what we learned the hard way about our computers: if we don’t patch them, the hackers will invade. #1: A set of bugs called Urgent/11 affected a network module that has been around since the 90s […]
Continue reading → [DISPLAY_ACURAX_ICONS]I have been ranting about Software Bills of Material or SBoM for a while. This week I have two examples of why this is important – even critical. The first story is about a TCP/IP network stack and the vulnerability is called Amnesia:33. It impacts four open source libraries – uIP, FNET, picoTCP and Nut/Net. […]
Continue reading → [DISPLAY_ACURAX_ICONS]