Two more insurance companies, Premera Blue Cross and Lifewise, joined the club that no one wants to be a member of and announced that they were both breached (see here and here). Premera said that 11 million records were hacked and Lifewise lost 250,000. Both said the breaches started in May of last year […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
PC World is reporting that researchers, looking for servers that were susceptible to the FREAK attack, found that some manufacturers have taken a shortcut when it comes to security. First, FREAK is an attack that allows attackers to force a encryption session between a user and a server to use a very weak 512 bit […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Dark Reading is reporting that due to the success of Ransomware, the sophistication of the attacks is growing. As a reminder, ransomware infects a computer and encrypts the files on it. If you pay the ransom, the attacker will usually give you the key to decrypt your files. Ransonware is not very particular and can […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
When I wrote a couple of weeks ago about the issues with Apple Pay security problems (see post), I didn’t really understand the scope of what I was writing about. Thanks to Brian Krebs (see his post), I now understand the problem is bigger than I thought. Let’s assume that you are a crook and […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
CNN is reporting a tax scam which, while quite old, is apparently still way too effective. The IRS is reporting that they are getting complaints at the rate of 10,000 to 12,000 new complaints a week. The scam goes like this. Someone calls you with a Washington, DC phone number and says you are under […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Dark Reading reported on Verizon’s PCI compliance assessment and I think the numbers are interesting, but not terribly unexpected (see article). The actual report, all 84 pages, is available here. Most of the time (maybe always), when a business has an assessment done by a third party assessor, that company will do an interim assessment […]
Continue reading →
[DISPLAY_ACURAX_ICONS]