720-891-1663

Update on Los Angeles School District Massive Data Breach

Earlier this month the Los Angeles Unified School District (LAUSD) was hit by a cyber attack. The breach affected 24 million students and about 50,000 teachers. Now we are learning more about it. For students, the data includes: For teachers, similar data was breached but more teacher specific data. Part of the problem is that […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Microsoft Didn’t Patch Bug for Years, Leaving Gov Systems Exposed Because It Could Hurt Sales

I don’t even know where to go with this other than to say, unfortunately, I am not surprised. Likely not patching a known bug is probably not illegal, as is not disclosing it. Roll back almost a decade, in 2016, whistleblower and security expert Andrew Harris was working for Microsoft. He was investigating a breach […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News Update for the Week Ending June 7, 2024

Trump Decides to Join TikTok Instead of Banning It I know that politicians are hypocritical; it just comes with the game. When Trump was president, he attempted to ban TikTok via an executive order that he signed because it was a national security risk. This year Congress passed a law that would ban TikTok as […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Most Orgs Not Ready For New CISA Security Rules

CISA’s SECURE SOFTWARE DEVELOPMENT ATTESTATION FORM rule comes into effect next week. It requires that companies that produce software and sell it to the government adhere to key security practices. It also requires that those developers attest to their practices. In writing. Signed by an executive of the company. It applies to companies that do […]

Continue reading → [DISPLAY_ACURAX_ICONS]

US Water, Other Utilities Under Attack

Unfortunately, other than the very large water and other utilities, most utilities do not have the money, manpower or desire to secure their networks. We continue to hear more stories of successful attacks. In April a Russia-linked hacking group, the Cyber Army of Russia, claimed responsibility for an attack on a water and wastewater system […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Senator Claims UnitedHealth’s CEO, Board Appointed Unqualified CISO

Senator Ron Wyden, who is possibly the biggest advocate on Capitol Hill for cybersecurity and privacy, laid into UnitedHealth Group’s CEO for their cybersecurity practices. Their practices led to a breach that affected possibly one third of the adults in the US who have health insurance. Senator Wyden also asked the FTC and SEC to […]

Continue reading → [DISPLAY_ACURAX_ICONS]