Third Party Risk – You Can Ignore it, But It Won’t Ignore You DataBreaches.net is reporting that a hacker claimed to have hacked an HVAC vendor and remotely accessed systems at the vendor’s customers. One of those customers is reported to be Boston Children’s Hospital. The HVAC vendor is reported to be ENE Systems in […]
Continue reading → [DISPLAY_ACURAX_ICONS]Android Trojan Hits 140 Countries, 10,000 Victims Via Social Media Hijack Security company Zimperium says they have found a new trojan they call Flytrap that has been around since March and compromises users’ phones who side load apps from third party app stores. Once the malicious app is on the user’s phone, it uses that […]
Continue reading → [DISPLAY_ACURAX_ICONS]Cyber Insurance Company Coalition Says Claims Payment Down From Last Year Cyber insurer Coalition says that it’s clients’ average claims for losses for ransomware attacks was $184,000 for the first half of this year, down 45% from the second half of last year. This, they say, is because they are doing better at negotiating ransoms. […]
Continue reading → [DISPLAY_ACURAX_ICONS]Supply Chain Attacks Roll On The Accellion File Transfer Appliance vulnerabilities have been the source of many breach notifcations over the last several months. For whatever reason, they seem to be dribbling out. The newest one is Morgan Stanley. In this case, it was a Morgan Stanley VENDOR that was using Accellion, so instead of […]
Continue reading → [DISPLAY_ACURAX_ICONS]Freaking Ooops: Us Nuke Bunker Security Secrets On Public ‘Net Since 2013 Details of some US nuclear missile bunkers in Europe, including secret duress codewords have been exposed publicly on the Internet. Journalists discovered it by using simple search queries. The information was on training flashcards, which should not have been public. It includes “intricate […]
Continue reading → [DISPLAY_ACURAX_ICONS]Ubiquiti All But Confirms Breach Story As the stories about Ubiquiti’s really bad attempts to save their reputation after a breach earlier this year swirled, they were completely silent, other than a very short statement. Now they have posted a statement on their user forum that says that they have no evidence that customer information […]
Continue reading → [DISPLAY_ACURAX_ICONS]