720-891-1663

FCC Releases Voluntary CYBER TRUST MARK for IoT

The program allows manufacturers to put a new “U.S Cyber Trust Mark” on devices that comply with cybersecurity standards developed by the National Institute of Standards and Technology (NIST), including what the White House described last year as “unique and strong default passwords, data protection, software updates, and incident detection capabilities.” FCC commissioners voted unanimously for it. […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Your Carmaker May Be Selling Your Driving Data to Your Insurance Company

One thing about a country that has no federal privacy law – There are very few limits on what someone can do with data that they have legally collected. The legal part is that you agreed to allowi your “smart car” to collect your driving data. That data may include things like your speed and […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Feds Fine Boeing $51 Million for ITAR Violations

For decades the DoJ seemed to be ignoring cybersecurity failures on the part of even large companies. That has changed. DoJ has started up an entire bureau for going after companies that ignore the rules. Recently they fined Booz $335 million for False Claims Act violations. Last week they announced they are going after Georgia […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News for the Week Ending March 8, 2024

Hacking and Stealing Your Car From the Outside Through Your Headlight Apparently this is real. Crooks can pop off the headlight trim on some cars and get access to the cables to your “smart” headlights. From there they have access to the data bus called the CAN bus and from there they can unlock and […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Justice Department Going After Cybersecurity Fraud

The False Claims Act (FCA) is a Civil War era law that both penalizes companies for lying about their cybersecurity protections and rewarding whistleblowers for turning in fraudsters. In 2021 the Justice Department created a new initiative to stem civil-cyber fraud. One of the beneficiaries of that is the Defense Department which has been plagued […]

Continue reading → [DISPLAY_ACURAX_ICONS]

The Impact of Supply Chain Cyberattacks

I talk all the time about third-party or supply chain breaches and there is serious impact to them. Here is one example going on now. Change Health is a healthcare payment facilitator among other services. They are used by doctors, pharmacies and hospitals to get paid. Change is owned by Optum Health which, in turn, […]

Continue reading → [DISPLAY_ACURAX_ICONS]