At least according to Peter Singer, Director of the Center for 21st Century Security and Intelligence at the Brookings Institution. Writing in Fortune, Singer says many things that won’t make him very popular. A sampling: 97% of the Fortune 500 companies have been hacked and likely the other 3% too, they just don’t know it. […]
Continue reading → [DISPLAY_ACURAX_ICONS]PC World is reporting that researchers, looking for servers that were susceptible to the FREAK attack, found that some manufacturers have taken a shortcut when it comes to security. First, FREAK is an attack that allows attackers to force a encryption session between a user and a server to use a very weak 512 bit […]
Continue reading → [DISPLAY_ACURAX_ICONS]Dark Reading is reporting that due to the success of Ransomware, the sophistication of the attacks is growing. As a reminder, ransomware infects a computer and encrypts the files on it. If you pay the ransom, the attacker will usually give you the key to decrypt your files. Ransonware is not very particular and can […]
Continue reading → [DISPLAY_ACURAX_ICONS]Dark Reading reported on Verizon’s PCI compliance assessment and I think the numbers are interesting, but not terribly unexpected (see article). The actual report, all 84 pages, is available here. Most of the time (maybe always), when a business has an assessment done by a third party assessor, that company will do an interim assessment […]
Continue reading → [DISPLAY_ACURAX_ICONS]Trend Micro has identified a new piece of malware (see article) that attempts to connect to your home router using default userids and passwords for a number of home router vendors. It tries userids like admin, guest, root and user and passwords like admin, password and 12345678. The malware, named VICEPASS, scans for devices and […]
Continue reading → [DISPLAY_ACURAX_ICONS]While tips and tricks won’t make your organization bulletproof, it will help make you bullet resistant. Here is a list from Boston Business News that is simple and right on. 1. IT Risk Assessment. You MUST start with a risk assessment and if you are up for it, I would recommend a business risk assessment. […]
Continue reading → [DISPLAY_ACURAX_ICONS]