GAO Tells Treasury: Track Cyber Risk in Financial Sector The GAO told Treasury to work with Homeland Security to better track cyber risk in the financial sector. The GAO says that Treasury does not track efforts or prioritize them. The “sector specific” security plan was last updated in 2016 and, of course, most of the […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
SalesForce Gives Users Access To All of Your Company’s Data In what can only be called an Oops, SalesForce deployed a script last Friday that gave users of certain parts of SalesForce access to all of the data that a company had on the system. The good news is that it didn’t show you anyone […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
U.S. Trains UAE Spies to Spy on Americans Reuters has written an expose on how the State Department granted a U.S. Company an ITAR license to train UAE spies on hacking. The plan, which got out of control, what to constraint the UAE spies, but once they were trained, they fired their U.S. trainers and […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Patches This Week Adobe’s December patch list fixed 87 separate bugs in Acrobat and Acrobat Reader. 39 of these are rated critical. Last week they patched a critical zero day in Flash (Details here). More Spy Cams The other day I reported the the DEA was buying spy camera enclosures to hide inside of street […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Follow on to Google+ Breach and Notification I recently reported about Google getting in trouble for hiding a breach discovered in March. The first thing to point out is that it is unlikely that Google broke any laws. The current breach notifications laws in the U.S. give a company the wiggle room not to disclose […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
China Using Fake Linkedin Profiles to Recruit Americans as Spies US intelligence officials are warning LinkedIn users that China is being “super aggressive” at recruiting Americans with access to government and commeACrcial secrets. The Chinese are creating fake LinkedIn profiles, friending people and trolling to see if they would be valuable if flipped or conned […]
Continue reading →
[DISPLAY_ACURAX_ICONS]