Data breach at Russian ISP impacts 8.7 million customers
Wow. This happened 2 years ago. It’s fortunate for Beeline that these are not European ‘natural persons’ otherwise the full wrath of GDPR would be upon them…: […] Beeline, a […]
ZDNET
Microsoft: MFA bypass attacks are so rare we don’t have good statistics on them
A few years ago I attempted to turn on MFA for Office 365 accounts in one business I support. Half of the users were unable to use it or, more […]
Malindo Air identifies employees of e-commerce contractor behind data breach
I’d be interested to see what security controls were in place to detect rogue activity. Remembering the GDPR distinction between ‘Data Owner’ and ‘Data Processor’; irrespective of who actually stole […]
Dear network operators, please use the existing tools to fix security
Using the public internet for mission-critical workloads? Time to make sure plan B is in place…: […] The BGP standard includes so-called Resource Public Key Infrastructure (RPKI) Route Origin Authorisations […]
Microsoft pushes back end of support for Exchange Server 2010 by nine months
If you’re running workloads on (very) old versions of Windows platforms, there’s a little bit of pressure relief in this announcement. Microsoft would very much like you to move to […]
Pen test goes pear-shaped: cybersecurity firm staff arrested over courthouse burglary
If you’re conducting a penetration test (which you should do regularly), make sure you sort out the terms of engagement BEFORE the test starts…: When State court administration (SCA) asked […]
Apple has let down every iPhone user
Just because you’re an Apple aficionado, don’t believe that you’re somehow immune to nastiness. This, plus the news that Android exploits now attract a premium over iOS shows that Apple’s […]
Google and YouTube part with $170 million to settle alleged violations of kid’s privacy
GDPR has become accepted best practise. Time to put COPPA into your framework as well…: Google and YouTube will pay $170 million to settle a case with the US Federal […]
ACCC seek changes to data privacy laws for loyalty scheme customers
Running a loyalty scheme? Article 6 of GDPR states: Processing shall be lawful only if and to the extent that at least one of the following applies: the data subject […]
How MuleSoft patched a critical security flaw and avoided a disaster
Is this the example we would like all software vendors to follow?…: […] When ZDNet reached out to MuleSoft for comment, we were almost immediately pulled into a phone conference with […]