Blog
-
Even At The FBI, Bureaucratic Data Handling Snafus Can Expose Storage Media to Outside Access
The FBI is revamping its data handling practices after storage media containing sensitive and classified information was left sitting on open pallets for as long as two years at a time.
-
UN Cybercrime Convention Moves Forward With Treaty, But Will It Hold Up?
In spite of an absolute load of criticism from many different quarters, the UN’s cybercrime convention is moving forward and is now likely to see nations ratifying it in the coming months.
-
How Much of the National Public Data Breach Consists of New Information?
The breach of National Public Data was a major mainstream news item recently. While 2.9 billion records are included in the data breach, but deep dives by Troy Hunt (of HaveIBeenPwned) and others indicate that a great deal of this is duplicate information.
-
Another Texas AG Consumer Privacy Suit as GM Under Fire for Selling Driver Data
The Texas Attorney General’s office has already taken aim at Google and Meta, and it appears General Motors (GM) is the next company in its crosshairs. A consumer privacy lawsuit will test the boundaries of what the AG’s office calls “surveillance devices on wheels” as GM is being taken to task for surreptitiously collecting driver…
-
Post-Quantum Encryption Plans Can Move Forward as NIST Releases Standards
The NIST post-quantum encryption project has been a global effort, and these new standards are very likely to see global adoption going forward. The agency has encouraged organizations to immediately begin adopting the primary standards as there is no expectation that they will be replaced by “something better” down the line.
-
FBI Investigating Iranian Election Interference as Trump Campaign Reports Breach by Foreign Agents
It is still not completely clear who hacked the Trump campaign, but strong signs from several different sources are pointing to an Iranian election interference campaign that has also targeted the Biden and Harris campaigns since at least June.
-
New Information on 8-Hour Microsoft Azure Outage: DDoS Attack Confirmed
The Azure outage that took out numerous services on July 30 has been confirmed to be due to a DDoS attack. The twist to the story is that a failure in Microsoft’s defense implementation seems to have actually helped the attackers, making the situation worse than it normally would have been.
-
IBM Cost of Data Breach 2024 Shows Costs Rising, But AI and Law Enforcement Involvement Bringing Relief
The average cost of data breach spiked 10% to $4.88 million, and that number jumps to $5.17 million when stolen data was found in public cloud storage.
-
Rampage of Hospital Ransomware Attacks by North Korean Hacker Used to Fund Espionage Missions
US federal grand jury has indicted Rim Jong Hyok of North Korea in connection with a 2022 campaign that saw the North Korean Hacker first conduct ransomware attacks against hospitals for profit, then turn those funds to conduct data theft attacks against the US Air Force, NASA and assorted defense contractors.
-
Update to MediSecure Data Breach Finds 12.9 Million Records Exposed; One of Australia’s Largest Breaches
The MediSecure data breach does include potentially sensitive details of pharmacy prescriptions, but an apparent lack of structure to the stolen database means that these health details might not be directly linked with the leaked names.