Hot Topics

Cyberlaw

The Evolving Triad of Cyber Threats: BEC, Ransomware, and Supply Chain Attacks

The Evolving Triad of Cyber Threats: BEC, Ransomware, and Supply Chain Attacks

| | cyberattack, cybercrime, Cybersecurity
Historically, cybercriminals have been happy to stick with proven tactics for as long as possible. After all, it's a business to them—if it ain't broke, why fix it? However, this is not ...
Cimcor Blog
Reimagined “Just a bill” of Schoolhouse Rock fame

Here Comes the US GDPR: APRA, the American Privacy Rights Act

| | American Data Privacy and Protection Act, APRA (American Privacy Rights Act), Cathy McMorris Rodgers, Consumer privacy rights, customer privacy, EU GDPR, GDPR, GDPR (General Data Protection Regulation), gdpr legislation, Maria Cantwell, Privacy, SB Blogwatch
Enter the lobbyists: A draft federal privacy act has Washington DC buzzing. But it’s just a bill—and it’s a long, long journey before it becomes a law ...
Security Boulevard
An old-school telephone, the like of which Millenials have never seen. Also: Get off my lawn.

FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

| | Big Telecom, carrier, Carriers, Diameter, digital telecom, fcc, FCC Failures, FCC Follies, FCC privacy rules, Federal Communications Commission, Federal Government, Location, location access risks, location data, Location data privacy, location history, location intelligence, location privacy, location sharing location tracking, location tracking, mobile carrier, mobile carrier vulnerability, Mobile carriers, Mobile Location Tracking, Mobile Tracking, Phone Carrier, RADIUS, roaming, Ron Wyden, SB Blogwatch, Sen. Ron Wyden, Smartphone Location Tracking, ss7, telco, Telecom, Telecom Cybersecurity, Telecom Industry, Telecom Industry Vulnerabilities, telecommunications, Telecommunications Security, telephone, telephones, U.S. Federal Communications Commission, wireless carrier
Fast enough for government work: The Federal Communications Commission is finally minded to do something about decades-old vulnerabilities ...
Security Boulevard
The Change Healthcare Cyberattack

The Change Healthcare Cyberattack

| | cyberattack, cybercrime, Podcast
In a recent podcast interview with Cybercrime Magazine's Host, Heather Engel, Scott Schober, Cyber Expert, Author, and CEO of Berkeley Varitronics Systems, discusses the cyberattack that recently hit Change Healthcare. The podcast ...
Cimcor Blog
A single, juicy raspberry on a plain, white background

Biden Review Board Gives Microsoft a Big, Fat Raspberry

| | Active Directory, Authentication, azure, Azure Active Directory, Azure AD, Azure security, cisa, CISA.gov, CSRB, Cyber Safety Review Board, Cybersecurity Infrastructure Security Administration, Entra ID, Exchange, Microsoft, Microsoft Azure, Microsoft Azure Active Directory, Microsoft Azure Security, Outlook.com, SB Blogwatch, Storm-0558
Storm-0558 forecast: Last year’s Chinese hack of federal agencies’ email is still a mystery, and “should never have occurred,” says CISA ...
Security Boulevard
David Boies, founding partner and chairman of Boies Schiller Flexner, LLP

Chrome’s Incognito Mode Isn’t as Private as You Think — but Google’s Not Sorry

| | adtech, Advertising, Advertising and AdTech, adverts, breach of privacy, browser, browser abuse, Chrome, cookie, Cookie Consent, cookieconsent, cookies, customer privacy, Data Privacy, FLEDGE, FLoC, GOOG, google, Google Ad, Google AdSense, Google advertising, Google Chrome, Google Chrome Security, Incognito, Incognito Mode, Link History, Privacy, Privacy Sandbox, SB Blogwatch, Topics, tracking cookies, web cookie
Short term gain for long term pain? Class action attorney David Boies asked for $5,000 per user, but got nothing—except some assurances Google will delete data it no longer needs ...
Security Boulevard

LockBit Hacker Sentenced To 4 Years Jail Plus Fined $860K

| | cryptocurrency, cyber extortion, Cyber Terrorism, cybercrime, Cybercrime Trends, Cybersecurity, Cybersecurity News, Data breach, Hacker Sentencing, International Cooperation, Justice System, law enforcement, Legal Proceedings, Lockbit, money laundering, Ransomware
Recent reports about legal proceedings, a 34-year-old Russian-Canadian national, Mikhail Vasiliev, has been handed a sentence of almost four years in Canadian prison. Vasiliev’s involvement in the global ransomware scheme known as ...
TuxCare
Multiple, unskippable notifications

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

| | 2fa, 2FA bypass, 2FA Flaws, 2FA phishing, 2FA solution, 2FA/MFA, Apple, apple bug, Apple Data Security, apple hack, apple hacker, Apple iCloud, Apple ID, Apple ID failure, Apple iOS, Apple iPad, Apple iPhone, bypass 2FA, MFA, MFA Bombing, mfa fatigue, MFA hacks, mfa protection, mfasecurity, Multi-Factor Authentication (MFA), OTP, OTP circumvention bot, OTP interception bot, phishing-resistant MFA, push otp, SB Blogwatch, TOTP, two-factor-authentication.2fa
Rethink different: First, fatigue frightened users with multiple modal nighttime notifications. Next, call and pretend to be Apple support ...
Security Boulevard
Smokey Bear / This-is-fine crossover

Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data

| | Brian J. Dunne, class action, class action lawsuit, DeleteFacebook, facebook, facebook fine, free vpn app, Ghostbusters, IAPP, Man In The Middle, man in the middle attack, man in the middle attacks, Mark Zuckerberg, Meta, mitm, MitM Attack, mitm attacks, mitm tool, mitm tools, Onavo, Onavo VPN, SB Blogwatch, Snapchat, SSL Bump, VPN
Meta MITM IAAP SSL bump: Zuck ordered “Project Ghostbusters”—with criminal consequences, says class action lawsuit ...
Security Boulevard
Scary skeletons

Telegram Privacy Nightmare: Don’t Opt In to P2PL

| | 2-step verification, 2fa, 2FA apps, 2FA bypass, 2FA Flaws, 2FA/MFA, Access control and Identity Management, Cloud MFA, digital identity verification, iam, ID verification, MFA, , mfasecurity, Multi-Factor Authentication (MFA), P2P, SB Blogwatch, SMS, SMS messages, SMS Toll Fraud, Telegram, Telegram app, two-factor-authentication.2fa, Verify 2FA
Scary SMS shenanigans: Avoid Telegram’s new “Peer-To-Peer Login” program if you value your privacy or your cellular service ...
Security Boulevard
Load more