720-891-1663

Security News Update for September 27, 2024

The Department of Commerce on Monday announced it is proposing a rule which would ban the sale or import of connected vehicles containing specific software and hardware produced by China or Russia or with a “sufficient nexus” to them. While it has national security implications, it is also a strong favor – even just the shot across the bow – to US electric vehicle makers, including Tesla and the big three. Credit: The Record

It is amazing what throwing your CEO in jail and charging him with aiding terrorism can do for cooperation. Telegram now says it will share phone numbers and IP addresses of bad guys. The new “policy” says they share the information of users who violate Telegram’s rules. Credit: The Record

Meta has been fined 91 million Euros for storing hundreds of millions of passwords in plaintext instead of encrypting them. This “mistake” dates back to 2019 and Meta said they would notify all of the hundreds of millions of password owners. They also said the data was only exposed internally. It ONLY took the EU FIVE YEARS to decide what the fine should be. I am not sure which is worse – that Meta stored the passwords unencrypted or that it took the EU five years to investigate. If it takes five years to investigate a breach, GDPR is completely useless. Credit: The Record

Who would have thunk? Russia is exercising naval activity near the undersea cables that are critical to Internet traffic around the world. While sabotaging them would not affect Internet service within the US, it would impact US international Internet traffic as these cables carry 95% of international Internet traffic. Undersea cables also carry electric power between European countries. What might go wrong here? Credit: The Register

Researchers investigated the remote access exposure of 50,000 ICS/IIoT/OT (different names for the same thing) devices and discovered that some companies are using as many as 16 different remote access tools. They are being “slapped together” and used by everyone from employees to partners. 79 percent, the researchers say, don’t meet basic enterprise cybersecurity standards. If you need help cleaning your world up, please contact us. Credit: Dark Reading

Facebooktwitterredditlinkedinmailby feather

Leave a Reply

Your email address will not be published. Required fields are marked *