Mozilla Drops Onerep After CEO Admits to Running People-Search Networks Either Mozilla didn’t run much of a background check or Onerep’s CEO is great at hiding his other businesses. Mozilla hired him to provide identity protection services, but it turns out that he runs dozens of sites that provide dirt on people. Not exactly compatible […]
Continue reading → [DISPLAY_ACURAX_ICONS]Up until now, the longest undetected hacking operation that I was aware of was at Nortel Networks. It lasted 12 years and resulted in the company shutting down in bankruptcy and sold for scrap. This one beats that one. The DoJ unsealed indictments today for 7 Chinese nationals (note to these folks: do not travel […]
Continue reading → [DISPLAY_ACURAX_ICONS]If that headline doesn’t keep you up at night, I don’t know what will. The Government Accountability Office (GAO) says they have have found inefficiencies in CISA’s information sharing practices, in particular with critical infrastructure stakeholders. They also say that CISA is understaffed for handling OT incidents. Just to make sure everyone is on the […]
Continue reading → [DISPLAY_ACURAX_ICONS]Microsoft is often between a rock and a hard place. They would like to be more secure but not at the expense of offending their customers. Here is an example of that. Microsoft has announced that RSA keys shorter than 2048 bits will soon be deprecated in Windows Transport Layer Security (TLS) to provide increased […]
Continue reading → [DISPLAY_ACURAX_ICONS]The False Claims Act (FCA) is a Civil War era law that both penalizes companies for lying about their cybersecurity protections and rewarding whistleblowers for turning in fraudsters. In 2021 the Justice Department created a new initiative to stem civil-cyber fraud. One of the beneficiaries of that is the Defense Department which has been plagued […]
Continue reading → [DISPLAY_ACURAX_ICONS]The Houser LLP law firm specializes in taking care of high-profile financial institutions. Last May they were hacked. Ten months later they are finally notifying those high profile customers. They eventually were forced to disclose the breach to the Maine AG (among others). They said files were encrypted (AKA ransomware) and data was stolen. Data […]
Continue reading → [DISPLAY_ACURAX_ICONS]