Hot Topics

Capital One breach

cloud security

It’s in the Cloud, So it Secure . . . Maybe!

| | Capital One breach, cloud computing, Cloud Security, Cybersecurity, Network Security, shared security model
Since the introduction of cloud computing, more and more companies have been flocking to cloud computing, because it has proven to be cost effective and inherently more secure than on premise data ...
CCSI
apps public cloud security

Public Cloud Transformation: Keys to Data Security

| | Capital One breach, cloud migration, Data breach, MSP, MSSP, Penetration Testing, Public cloud
 Although it is early in the investigations into the recent Capital One breach, one can certainly draw some preliminary conclusions. Primary among these is the need for continuous attention to details when ...
Security Boulevard
What's Falling Out of Your Wallet: S3 Bucket Vulnerabilities & the CapitalOne Breach

IAM Root: AWS IAM Simulator Tutorial

| | Assessing Cloud Security, aws, , AWS Environment, AWS Remediation, Best Practices, Breach, Capital One breach, Cloud Security Assessment, Compromise, Data Loss Prevention, IAM policy, IAM policy simulator tutorial, IAM Policy Tutorial, IAM Roles, Infrastructure, Prevent data leak, S3, Security misconfiguration
If you needed yet another reason to be paranoid about your personal information being exposed, the recent Capital One breach should be sufficient nightmare fuel for you. This is even more supporting ...
Professionally Evil Insights

Cybersecurity is Failing—Time for a Reset?

| | Capital One breach, Cloud, CSO/CISO Perspectives, Equifax breach, Finn Partners, Foremski, General, Spotlight
When you read what’s happening in cybersecurity, you could cry. We are being bombarded with cybersecurity fails. Recent egregious examples are Equifax and Capital One. To quote an August 2, 2019 article ...
BlogInfoSec.com
What We Can Learn from the Capital One Hack

What We Can Learn from the Capital One Hack

| | A Little Sunshine, Apache, Capital One breach, CloudFlare, Data breaches, DisruptOps, Evan Johnson, metadata service, ModSecurity, Rich Mogull, Server Side Request Forgery, SSRF, The Coming Storm, waf, Web Application Firewall, William Bengston
On Monday, a former Amazon employee was arrested and charged with stealing more than 100 million consumer applications for credit from Capital One. Since then, many have speculated the breach was perhaps ...
Krebs on Security
Capital One Data Theft Impacts 106M People

Capital One Data Theft Impacts 106M People

| | Capital One breach, Data breaches, GitHub, Masergy, Ne'er-Do-Well News, Paige A. Thompson, Ray Watson, slack, Twitter
Federal prosecutors this week charged a Seattle woman with stealing data from more than 100 million credit applications made with Capital One Financial Corp. Incredibly, much of this breached played out publicly ...
Krebs on Security

Secure Guardrails