New Regulations for the Internet of Things?
Government-mandated standards and practices are on the verge of sweeping changes not perhaps seen since Europe’s GDPR. Reflecting this shift are incidents like last year’s bevy of state sponsored Chinese hackers targeting various industries and critical infrastructure, including such agencies as the US Treasury. In this case, a stolen API key from a third-party vendor… Read More
Last Minute Breach News of 2024
End of year for cybersecurity means planning annual budgets, evaluation, and last minute fines against violators of regulations. While healthcare has been an especially hard hit sector, people’s online activity on social media platforms continues to carry great risk to personal information. Ireland’s privacy regulator, the Data Protection Commission (DPC), has been particularly active in… Read More
NPD Shutters and Hackers Trending Younger
The average age of those arrested for cybercrime is trending younger and younger, currently in the teens. The latest report from Experian, predicting upcoming data security trends for the next year, foresees this trend increasing, with more young people participating in cybercrime and recruitment by veterans in the field. We discussed recently how hackers like… Read More
Still More Snowflake Data Breach Ripples
The breach of cloud provider Snowflake continues to have more ripples on multiple fronts. The US government has now accused a pair of culprits as responsible for the incident, particularly for using that attack to steal 50 billion customer call and text records from AT&T (that is, nearly all of them). This sum amounted to… Read More
Smells Like Teen Cybercrime
It’s been a staple trope of fiction for a while now, the shadowy, mysterious hacker who eludes all of law enforcement’s effort, until at last they’re revealed to be some teenager. Usually this is an isolated event, but over here in reality, it’s now becoming a more common trend. Leaders in the cybersecurity field point… Read More
Human Toll of Data Breaches
Social engineering has become such a prominent factor in data breaches – around two-thirds of them according to the latest Verizon Data Breach Investigations Report – that the Office for Civil Rights (OCR) has made it the focus of their October 2024 newsletter. Between phishing, smishing and new AI-powered methods like deepfake impersonation of authorized… Read More
Gmail Phishing Scam Fools Experts
Cyber criminals continue to eagerly exploit new AI capabilities to try robbing you of your data. Ever increasing their sophistication, the latest major news is a highly convincing Gmail AI scam that nearly fools even security experts. Phone numbers and emails that look authentic and seem to legitimately come from Google, as well as a… Read More
Spear Phishing and Comcast’s Data Breach
In the same week that Microsoft disrupted Russian spear phishing operations, telecom giant Comcast has had to notify around 238,000 current and former customers that ransomware has compromised their personal data at the debt agency Financial Business and Consumer Solutions (FBCS). How many steps forward versus back is that, I wonder? Starting with the former,… Read More
Streaming Security and Dark Web Markets
As if the burden of managing numerous streaming services, their rising costs, incessant ads and other consumer-unfriendly practices weren’t enough, people also have to consider cybersecurity threats interrupting their casual entertainment time. Most recently comes news about a new malware strain that has infected over a million TV streaming boxes using the Android Open Source… Read More
Data Breaches Beyond the National Public
A number of data breaches have made the news these last couple of weeks, managing to creep their way around the edges of the predominant National Public Data breach. Japanese automaker Toyota has admitted to a breach of its systems, to the tune of 240 GB of data. Customer and staff information, financial documents and… Read More