Wired reported that some Hospira drug infusion pumps are vulnerable to a number of attacks. The article also says that Hospira was not receptive to the news when told of the problem and it took DHS a year to issue an alert – only after someone made the facts public. In fact, Hospira initially refused […]
Continue reading → [DISPLAY_ACURAX_ICONS]According to Veracode, the government isn’t very good at fixing software flaws. In fact, of 7 vertical segments, they rank last. The financial and manufacturing sectors do best at fixing vulnerabilities. Healthcare organizations don’t do well and cloud vendors (SaaS) fail the OWASP top 10 almost 75% of the time. Given this, it is not […]
Continue reading → [DISPLAY_ACURAX_ICONS]Dell SecureWorks, the counter threat service that Dell bought in 2011, is reporting on a new outbreak of the malware family STEGOLOADER, which has a different M.O., making it hard to detect. All that persists on the machine in a small loader that downloads the core module. This can be changed easily and might even […]
Continue reading → [DISPLAY_ACURAX_ICONS]The common wisdom these days is that consumers are numb to data breaches, but Stax Consulting asked a thousand people and the results show that is not the case. This is just one more reason why avoiding being breached is still in your interest. For those of you who are concerned, I will make a […]
Continue reading → [DISPLAY_ACURAX_ICONS]The SEC is investigating reports of a slightly different form of hacking – get insider trading information and use it yourself. Insider trading, of course, has been around as long as there is trading. But, what if, the insider trading was occurring from half way around the globe and no insiders were involved? FireEye, as […]
Continue reading → [DISPLAY_ACURAX_ICONS]IAPP published a summary of the hearings on Capitol Hill regarding the OPM breaches. The revelations certainly explain the mess, but also continues to raise the question about where Congress has been over the last 6 years. It is certainly OK to beat up OPM management, but I don’t see Congress taking any of the […]
Continue reading → [DISPLAY_ACURAX_ICONS]