720-891-1663

Alerts, Legal, News Bites, Privacy, Security Practices

Security News for the Week Ending March 29, 2024

Leave a comment

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Either Mozilla didn’t run much of a background check or Onerep’s CEO is great at hiding his other businesses. Mozilla hired him to provide identity protection services, but it turns out that he runs dozens of sites that provide dirt on people. Not exactly compatible except if you pay them to remove you, they will remove you from their sites. Credit: Brian Krebs

DoD Reiterates Whistleblower Rights in DoD Contracts

DoD has sent out a memo to the world (Army, Navy, Air Force, SOCOM, Transcom +) reminding them of an existing DFARS, 252-203-7002 that requires contractors to notify employees of their whistleblower rights. The memo tells the components to make sure the required DFARS clause is included in all contracts and if not, to add it and then to monitor whether companies are actually doing it. Whether this is due to two high profile whistleblower False Claims Act lawsuits (U Penn and Georgia Institute of Technology) is not clear, but it seems like the feds are encouraging people to tattle if their employers are bending the rules beyond reasonableness.

Insurance for your Car

No, this is not insurance in case your car is stolen or in an accident. This is in case your car is hacked and data is stolen. Of course, with everyone selling your car data, maybe that is not a big deal, but there is data in your car which you want to keep private, maybe. Munich RE, who is the largest reinsurer in the world (an insurance company that insures insurance companies) is offering it. Credit: The Record

NIST-Run Vulnerability Database May Be In Peril

Unfortunately, we are only speculating here. NIST runs a database called the National Vulnerability Database or NVD. This is where vendors and researchers “register” bugs to folks to learn about them. Among the important consumers of this data is security tools. Last month the database basically went dark. NIST says they are implementing improved tools and methods. NIST is not saying what is going on, but hopefully, they have a plan for something new and improved. Sometime. Credit: Dark Reading

Facebooktwitterredditlinkedinmailby feather

Leave a Reply

Your email address will not be published. Required fields are marked *

Copyright © 2024 CyberCecurity, All rights reserved. Privacy Policy