While the details of this are interesting, what is more important is thinking about all of the contracts that you sign. This is a legal battle that goes back several years. In one corner is Fiserv, the Fortune 200 +/- financial services software behemouth. In the other corner is Bessemer System Federal Credit Union, a […]
Continue reading → [DISPLAY_ACURAX_ICONS]IBM’s security arm, X-Force, released their latest Cloud Security Threat Landscape report for Q2 2020 to Q2 2021. They said that two out of three breached cloud environments observed by them would likely have been prevented by more robust hardening of systems, such as better software security practices (called policies) and better patching. They also […]
Continue reading → [DISPLAY_ACURAX_ICONS]Security company Imperva says that almost all companies have internal databases with known vulnerabilities. The average vulnerable database has 26 publicly disclosed flaws. More than half of them are rated Critical or high severity. They collected this data over the past FIVE YEARS. While being internal does make it slightly harder for the hackers to […]
Continue reading → [DISPLAY_ACURAX_ICONS]Why care? Hackers often lurk inside networks for weeks or months. During this time they gather a lot of information about how the network works, what it looks like and even how it is secured. With people working from home, often on poorly maintained — scratch that — unmaintained networks, that job just became a […]
Continue reading → [DISPLAY_ACURAX_ICONS]In what has to be called a really bad oopsy, the Dallas Police Department, during a data migration effort back in March, lost 22 TB of data. This includes data from at least one murder case. The Dallas DA said that the city of Dallas (as opposed to the DA) discovered the problem on April […]
Continue reading → [DISPLAY_ACURAX_ICONS]While many executive orders are a waste of good space in the Federal Register, so far executive branch agencies seem to be taking the Executive Order on Improving Cybersecurity seriously. The most recent result is that the Office of Management and Budget has ordered federal agencies to start documenting software that is identified as critical. […]
Continue reading → [DISPLAY_ACURAX_ICONS]