As you are probably aware by now, somewhere upwards of 100 celebrities have had private pictures of themselves posted on 4Chan and many other sites yesterday. Earlier today Reddit was going crazy with comments and pictures. Some of the celebrities who have confirmed that the posted pictures are of them include Jennifer Lawrence, Kate Upton […]
Continue reading → [DISPLAY_ACURAX_ICONS]After my last post, a new article came out about the Backoff malware. The article, quoting the US Department of Homeland Security, said that over a thousand small, medium and enterprise U.S. businesses have been compromised by the Backoff malware package. Backoff is fairly new – first seen last year – and scrapes the memory […]
Continue reading → [DISPLAY_ACURAX_ICONS]An article in Venturebeat the other day suggested 7 reasons why we are going to continue to see credit card breaches at retailers. First I will share their list, then I will add my own. Their list includes: The PCI standard is failing to protect merchants from breaches Merchants are not implementing P2PE Retailers introduce […]
Continue reading → [DISPLAY_ACURAX_ICONS]I just read a white paper on a security vendor’s (Prevoty.com) web site and I think they really understand the problem. I have not had a chance to review their products, so I make no claims about them, but I do recommend reading the article. First a quote from the paper: Traditional security is like […]
Continue reading → [DISPLAY_ACURAX_ICONS]In an August 12, 2014 post on Pymnts.com, the information security executive at Urban Outfitters, Dawn-Marie Hutchinson, argued against disclosure of breaches. In fact, the company’s policy is to notify their lawyers first so that they can use attorney-client privilege. While I sort of understand the concept of not disclosing things too soon (like before […]
Continue reading → [DISPLAY_ACURAX_ICONS]It has been reported in the NY Times, among other places, that a Russian crime gang has amassed 1.2 BILLION userid/password combinations, along with 500 million email addresses. Even to me, that is a large number. The passwords represent data stolen from 420,000 web sites, including both large and small companies. The bad news is […]
Continue reading → [DISPLAY_ACURAX_ICONS]