720-891-1663

Security News Update for August 24, 2024

The city admitted that data was stolen including information in prosecutor’s database. The city says that they will help victims who are now being victimized again and whose lives may be in danger due to the city’s poor security practices. The mayor said that Columbus is one of 50 cities that have been hacked this year – as that is a good defense, I guess. Credit: The Record

According to Brian Krebs, an NPD sister property, RecordsCheck.Net, hosted an archive that included the usernames and passwords for the site’s administrators. Krebs said that he looked before publishing the story and did, in fact, find the usernames and passwords for different parts of the site. The two sites are “visually similar” and feature identical login pages. They claim that they are shutting down in a week or two and the passwords are old. Sure. We can go with that story. Credit: Brian Krebs

Because, after all, it would not be great if the plane you were flying in was hacked. The FAA is trying to be nimble because hackers move a wee bit faster than bloated government agencies. The FAA doesn’t call them hacks; they refer to them as IUEIs or Intentional Unauthorized Electronic Interactions. That sounds less scary than hacks, I guess. Credit: The Record

First question is how does a Kansas bank CEO (Heartland Tri-State Bank) become a CEO and still fall for such a well known scam. I guess he was very greedy. The loss of the money caused the bank to fail and close, costing investors $10 million. The CEO caused employees to circumvent internal controls to issue the wire transfers. I guess he will have a lot of time to think about it since he pleaded guilty. He faces up to 30 years in prison, a $1 million fine and up to $60.5 million in restitution. Credit: Cybernews

I guess there is no news here, just some serious concerns. The report says that they found over 40,000 Industrial Control devices – like those that control water systems and sewage systems – are exposed to the Internet in the U.S. alone. A significant number of the Human Interfaces of these systems can be manipulated without any userid and password. The report highlighted that it is hard to notify the owners in many cases because the devices are on commercial Internet providers networks like Verizon or on cell networks. This will be fixed but likely not before a major security event, unfortunately. Credit: Hackread

Facebooktwitterredditlinkedinmailby feather

Leave a Reply

Your email address will not be published. Required fields are marked *