I know I keep beating the Ransonware 2.0 drum, but there is a reason for it. There is not a good response to it other than to stop it from happening. According to media reports, Maze ransomware hackers have attacked 5 law firms in the last 30 days and 3 law firms in the last […]
Continue reading → [DISPLAY_ACURAX_ICONS]I am going to try and make this non-political. We will see if I succeed. Customs and Border Patrol detained a U.S. Citizen active duty Army solider as he went through a U.S. airport as part of his directed orders. The soldier, who is an American citizen, was born in Iran. A leaked Border Patrol […]
Continue reading → [DISPLAY_ACURAX_ICONS]UK Proposes Weak Security Law for IoT Devices; Calls it Strong The UK is proposing a law similiar to California’s existing IoT law and calls it strong security. What makes it strong is that they call it strong, maybe? The bill requires that default passwords on IoT devices be unique (likely part of the serial […]
Continue reading → [DISPLAY_ACURAX_ICONS]Electronic Warfare Associates (EWA), a well known defense contractor in DC, was hit by a ransomware attack. The tagline on the homepage of their website says that they are enabling a more secure future. A Google search last week for the company brought up these results: The researcher who discovered the problem said it seems […]
Continue reading → [DISPLAY_ACURAX_ICONS]Medical devices have never been subjected to much security testing – a fact that the FDA may argue with, but which is visibly accurate. This time it is GE’s CIC Pro, a workstation that hospital staff uses to manage multiple GE patient devices on a ward. They can use the device to monitor patients or […]
Continue reading → [DISPLAY_ACURAX_ICONS]Maybe this is the NEW AND IMPROVED NSA. From the NSA document: This document divides cloud vulnerabilities into four classes (misconfiguration, poor access control, shared tenancy vulnerabilities, and supply chain vulnerabilities) that encompass the vast majority of known vulnerabilities. Cloud customers have a critical role in mitigating misconfiguration and poor access control, but can also […]
Continue reading → [DISPLAY_ACURAX_ICONS]