An article in the Times a week ago says that the Feds and States want banks and brokerage firms to close some gaping holes in their defenses. What is that gaping hole? OUTSIDE VENDORS! Many people are aware that the suspected source of the Target breach was a small HVAC contractor. They didn’t do anything […]
Continue reading → [DISPLAY_ACURAX_ICONS]I read an interesting article in USA Today recently. The FBI says that over 500 million financial records have been hacked in the last 12 months (given that the Chase hack accounts for over 80 million records alone, this number in itself is not surprising). Here are a few tidbits out of the article that […]
Continue reading → [DISPLAY_ACURAX_ICONS]With the Snapchat and Dropbox breaches this week, the attack surface just got raised a notch. In case you are not familiar with these two breaches, I will describe them at a high level what happened. With Snapchat, users assume that their pictures will disappear quickly on the other end after they are opened. However, […]
Continue reading → [DISPLAY_ACURAX_ICONS]According to an article on CNN.com and other places, the FCC has fined Marriott $600,000 for doing what I suspect other properties have been doing also but not (yet) caught at. According to CNN, Marriott, for reasons unknown, decided that they should be allowed to kill visitors Wi-Fi hot spots that were not connected to […]
Continue reading → [DISPLAY_ACURAX_ICONS]As Brian Krebs reported late last week, the Jimmy Johns breach has a larger impact than previously reported. In a nutshell, here are the details: The attack affected 216 Jimmy Johns stores nationwide The hackers compromised the username and password used for remote administration The POS or cash register software was created by Newtown, PA […]
Continue reading → [DISPLAY_ACURAX_ICONS]According to CNN, Oracle discovered an issue in 2012 that allowed hackers to compromise Oracle systems with this weakness. Some white hat hackers were wandering around the internet recently (in 2014) and discovered that some systems had not had this patch applied. These hackers were able to access children’s school records, arrest records, the real […]
Continue reading → [DISPLAY_ACURAX_ICONS]