Supply Chain Attacks Roll On The Accellion File Transfer Appliance vulnerabilities have been the source of many breach notifcations over the last several months. For whatever reason, they seem to be dribbling out. The newest one is Morgan Stanley. In this case, it was a Morgan Stanley VENDOR that was using Accellion, so instead of […]
Continue reading → [DISPLAY_ACURAX_ICONS]Freaking Ooops: Us Nuke Bunker Security Secrets On Public ‘Net Since 2013 Details of some US nuclear missile bunkers in Europe, including secret duress codewords have been exposed publicly on the Internet. Journalists discovered it by using simple search queries. The information was on training flashcards, which should not have been public. It includes “intricate […]
Continue reading → [DISPLAY_ACURAX_ICONS]Ubiquiti All But Confirms Breach Story As the stories about Ubiquiti’s really bad attempts to save their reputation after a breach earlier this year swirled, they were completely silent, other than a very short statement. Now they have posted a statement on their user forum that says that they have no evidence that customer information […]
Continue reading → [DISPLAY_ACURAX_ICONS]The media continues to report on the Microsoft Exchange hack, likely perpetrated by China. Reports are that at least 30,000 Exchange servers in the United States are impacted and some people say that number is likely way underestimated. On top of that, the number of servers worldwide is maybe ten times that number. Given all […]
Continue reading → [DISPLAY_ACURAX_ICONS]Last month, as Parler was being deplatformed by Amazon, it was hacked and many gigabytes of data were taken and later made public. In what seems like a sequel, right wing free speech social media platform Gab.com was hacked and, again, data was stolen and later published. It is reported that Gab is described as […]
Continue reading → [DISPLAY_ACURAX_ICONS]DoD Working on CMMC-Fedramp ‘Reciprocity’ by Year End CMMC, the DoD’s new cybersecurity standard is designed to measure security practices of companies and the servers in the computer rooms and data centers. But what about the stuff in the cloud. That is covered by another government standard called FedRAMP. But those two standards have different […]
Continue reading → [DISPLAY_ACURAX_ICONS]