Ripples of the Snowflake Breach
Ticketmaster and its parent corporation, Live Nation, are being particularly reticent on details surrounding a data breach against the live events giant. Aside from the allegations that it is a breach of massive proportions, and that a third-party vendor’s cloud database was compromised, not much is known. “On May 27, a criminal threat actor offered… Read More
Recent reports on the exploitation of cyber weaknesses
Vulnerability exploitation as a source of data security incidents is at a record high, according to the latest Verizon Data Breach Investigations Report (DBIR). Compared to 2022, vulnerability exploits nearly tripled last year. Of the over 30,000 security incidents and more than 10,000 breaches analyzed in the report, this accounts for 14% of the total. … Read More
Cyber Threats to Critical Infrastructure Persist
Cyberattacks against critical infrastructure is a subject you might often hear in the news as a potential risk of our connected, online world. Never has this been more the case than in the diffuse workforce of the post-Covid era. This remains an ongoing problem, as a recent tank overflow at a Texas water treatment plants… Read More
Forward Progress on America’s GDPR?
Congress is gradually approaching a new federal data privacy and protection standard for the US. Proposed in 2022, the American Data Privacy and Protection Act (ADPPA) was a bipartisan attempt at federal data privacy legislation, and the first to successfully pass committee markup. Now, after revisions to the initial bill, both House and Senate committees… Read More
From outages to data breaches for AT&T
Not even two months since a massive, nationwide outage left millions of their customers without cell service for hours, AT&T is again in the news for a major data breach. Over the weekend, the company revealed that over 73 million current and former customers had their data released on the dark web, though the origin… Read More
Fujitsu’s breach and Microsoft’s legacy security
Japanese IT firm Fujitsu has another data breach on its hands that has put customers at risk. After discovering malware on its corporate networks, the company conducted an internal investigation, which resulted in the discovery that sensitive personal data could be illegally exfiltrated. As Fujitsu is a firm with numerous customers among the Japanese government,… Read More
Are companies looking out for your safety?
Can you as a consumer trust organizations to look after your well-being? There is no shortage of examples of companies skirting into questionable behavior in order to get a leg up, whether or not it involves risking people’s physical (health), virtual (personal data), and cloud (environmental) safety. We only have to remember incidents like Volkswagen’s… Read More
Fighting back against automated attacks
Relying on automation – that is, tools using artificial intelligence and machine learning to perform repetitive tasks rapidly and process enormous volumes of data – has become a key strategy in a new campaign by hackers to steal your data. Hackers can likewise use it to launch countless attacks on system vulnerabilities. Many of these… Read More
The More You Know: Smart devices in the home can lead to a data breach
Smart technology has become ingrained in countless facets of everyday life. With the conveniences inherent in this come more and more cyber security risks. Wyze, a company that offers home cameras and other smart devices, recently experienced a data breach reportedly caused by the inability of Amazon Web Service (AWS) servers to handle an outage… Read More
Bank of America customers have data at risk
A Bank of America data breach is the newest major example of how vulnerabilities in third-party vendors can compromise cybersecurity via the supply chain. InfoSys McCamish Systems (IMS), a consultant and service provider for the bank, experienced a breach that in turn led to Bank of America customers being affected. Over 57,000 customers had their… Read More