720-891-1663

A Third of Compromised API Keys Still Active

API Keys are an alternative to passwords for connecting to a computer or web service. Typically, API Keys are used by software applications to talk to other applications and are considered more secure than using userids and passwords to authenticate. Unfortunately, too many developers don’t treat APIkKeys like the security risk they are. API keys […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for Week Ending July 26, 2024

Google Rolls back Decision to Kill Third Party Cookies Firefox and Safari, along with some other smaller browsers already block third party cookies by default. Google said that they would do the same. Google now says that phasing out third party cookies will hurt their revenue stream, uh, will impact online advertising, so they are […]

Continue reading → [DISPLAY_ACURAX_ICONS]

The CrowdStrike Meltdown – The Rest of the Story

CrowdStrike is a major vendor of user workstation security software used by many Fortune 500 companies and government agencies. On Friday, they caused a major meltdown of Windows workstations across the globe. CrowdStrike insists that this was simply a software update gone wrong and maybe that is true. But there are plenty of conspiracy theorists […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for Week Ending July 19, 2024

AT&T is First Company To Evade SEC’s 4 Day Breach Disclosure No, they are not badasses, they asked for permission. The SEC rules that went into effect last year have a carve out from the disclosure rule – actually it is not an exception, just a delay. It is not clear who asked whom, but […]

Continue reading → [DISPLAY_ACURAX_ICONS]

The Risk of Using Cloud Apps

I have been tempted, from time to time, to use cloud apps to do things like convert PDFs to Word documents or reformat videos and the like. To date, I have successfully resisted that urge. Apparently, there is some merit to that restraint. That does not mean that the cloud is evil. What it does […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for Week Ending July 12, 2024

Cyber Insurance Prices Trending Down After insurance rates soared between 2020 and 2022, prices went down a little bit (15 percent) in 2023 due to increased competition, better vetting on the part of insurance companies and better company cybersecurity practices. It will be interesting to see where this trend goes, but we will take this […]

Continue reading → [DISPLAY_ACURAX_ICONS]