720-891-1663

Security News Update for Week Ending July 19, 2024

AT&T is First Company To Evade SEC’s 4 Day Breach Disclosure No, they are not badasses, they asked for permission. The SEC rules that went into effect last year have a carve out from the disclosure rule – actually it is not an exception, just a delay. It is not clear who asked whom, but […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Microsoft Didn’t Patch Bug for Years, Leaving Gov Systems Exposed Because It Could Hurt Sales

I don’t even know where to go with this other than to say, unfortunately, I am not surprised. Likely not patching a known bug is probably not illegal, as is not disclosing it. Roll back almost a decade, in 2016, whistleblower and security expert Andrew Harris was working for Microsoft. He was investigating a breach […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for the Week Ending May 24, 2024

DocuFakes on the Rise Hackers have figured out that anything that you do on autopilot is fertile ground for using to hack you. Case in point is Docusign. For some people, they sign so many docusign documents that they operate on autopilot when they see one. The hackers have really good templates, so that helps. […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Are We About to See Another Log4j?

This one is called LINGUISTIC LUMBERJACK. Fluent Bit is a very widely used open source logging package in the cloud. It is used by all major cloud providers. It has been downloaded over 3 billion times just in 2022. Fluent Bit is described as “a lightweight, open-source data collector and processor” which collecting and processing […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for the Week Ending May 10, 2024

TikTok Sues US Government; Vows to Prevail No surprise here and without taking a side pro or con; ByteDance and TikTok have filed suit in federal court arguing the law violates the US Constitution. TikTok’s CEO Shou Zi Chew says the company expects to win a legal challenge to block the new law. He says […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for the Week Ending May 3, 2024

Cyberattack Ramifications: Chain Closes ALL STORES to Contain Attack Canadian pharmacy chain London Drugs has closed all stores to contain a cyberattack. While many stores stop accepting online orders or credit cards after a cyberattack, it is very rare to see a company stop doing business until further notice. However, they have not notified authorities […]

Continue reading → [DISPLAY_ACURAX_ICONS]