AppSec ‘Spaghetti on the Wall’ Tool Strategy Undermining Security
This chimes with my anecdotal evidence from CISO conversations recently. How about a simple rule: “You can only have a new shiny toy if you get rid of at least […]
Author: peterglock
iTunes Zero-Day Exploited to Deliver BitPaymer
Mildly ironic that Apple has dropped iTunes from the MacOS platform. Update now…: The ransomware operators targeted an “unquoted path” vulnerability in iTunes for Windows to evade detection and install […]
DCH Hospitals seeing all patients following cyber attack
Unfortunately, crime does pay…: TUSCALOOSA, Ala. (WBRC) -The COO of West Alabama’s DCH Health system says all three hospitals are now accepting more than just patients in need of critical […]
Rent-a-troll: Researchers pit disinformation farmers against each other
If you watched the last series of ‘Homeland‘, this will come as no surprise…: The same sorts of organizations that once made their money performing “black SEO”—using fraudulent means to […]
Imperva Details Response to Customer Database Exposure
This is an easy mistake to make. Developer often copy the ‘real’ database and don’t always have the same security controls as production systems. Take a look at your own […]
Human Rights Activist Allegedly Targeted With NSO Malware Says His Life Is ‘Hellish’
If a nation state decides to target your phone, they’re going to get you…: Hackers likely working for a government targeted two Moroccan human rights activists with malware made by […]
Deloitte drafts AI into the back office, and other tech stories you may have missed
Accountants may have a less than exciting image but they have embraced AI to remove some of the most boring parts of the job…: ConnectMe — an artificial intelligence-supported system […]
Patching as a social responsibility
Microsoft and NIST have ongoing research into the behaviours around keeping systems up to date. I’m in the ‘update everything all the time and deal with breakages as they occur’ […]
“Disconnected” CISOs struggling to assert security’s relevance to the business
I have a different perception of the CISO/CSO struggle. Information security and, especially, privacy are seen as a ‘cost of doing business’ rather than an integral part of the value […]
Twitter transgression proves why its flawed 2FA system is such a privacy trap
I have friends (you know who you are) who refuse to sign up to any service that asks for their mobile number. This doesn’t help matters…: If ever there was […]