W. Va. Hospital Breach Timeline – Way Too Long The Monongalia Health System was attacked recently and hackers had access to several email accounts, apparently belonging to contractors from May 10 to August 15 or about three months. It took them another 60 days to investigate. They are just not telling us about the breach […]
Continue reading → [DISPLAY_ACURAX_ICONS]Australia Proposes Law To Force Online Platforms to Disclose User Info Australia plans to introduce legislation that will force social media companies to either take down posts that people don’t like or hand over their user’s information. This isn’t law yet, but I can easily see how this will be gamed. This comes in the […]
Continue reading → [DISPLAY_ACURAX_ICONS]Security firm Black Kite says that 20 percent of America’s largest 100 defense contractors are highly susceptible to a ransomware attack. Why do they say this? Nearly 43% of federal defense contractors have out-of-date systems, giving them a D+ rating for patch management. 42% of contractors have had at least one credential compromised in the […]
Continue reading → [DISPLAY_ACURAX_ICONS]Feds Having Some Success In Going After Hackers The DoJ announced the arrest of a Ukrainian who is accused of deploying ransomware on behalf of the REvil ransomware gang. They also seized $6 million in cryptocurrency. The Ukrainian was arrested in Poland (crooks are not smart. If you are in the crosshairs of U.S. law […]
Continue reading → [DISPLAY_ACURAX_ICONS]Trump is Fighting a Mastodon Donald Trump’s not-yet-launched social media site, Truth, is already fighting a potential lawsuit. Although Trump has not said so, tech folks who have seen the site say that it is based on the open source social media code base called Mastodon. The license that comes with Mastodon requires that users […]
Continue reading → [DISPLAY_ACURAX_ICONS]Hackers are targeting the cloud. Why? To paraphrase Willie Sutton, because that is where the data is. Historically, penetration testers gain access to network devices through the “perimeter defense” and then they move around (the so-called east-west movement) trying to get access to data, wherever it lives inside the network perimeter. But in the cloud, […]
Continue reading → [DISPLAY_ACURAX_ICONS]