LATEST POST
Microsoft to delete 1 billion weak passwords
If you’re still using default passwords or easy-to-brute-force passwords, your days are numbered. Boing Boing reports: Read more at BoingBoing.
Getting new devices for the holidays? Do you know how to delete data from the old ones?
The U.K.’s Information Commissioner’s Office (ICO) has some interesting findings about how many consumers either do not know how to protect their information when they are getting rid of old devices or aren’t concerned enough: New figures reveal that three in 10 UK adults (29%) don’t know how to wipe their personal information from an […]
Hacker IntelBroker Leaked 2.9GB of Data Stolen From Cisco DevHub Instance
Cisco should have a bit of a professional red face or black eye this week after hackers leaked data acquired from them due, in part, to a mistake. Cybersecurity News reports: The notorious hacker IntelBroker has leaked 2.9GB of data allegedly stolen from Cisco’s DevHub environment. This partial leak, disclosed on December 16, 2024, is […]
CISA orders federal agencies to secure Microsoft cloud systems after ‘recent’ intrusions
For a while, it was just a recommendation. Now it’s mandatory. Federal civilian agencies were ordered to secure their Microsoft cloud systems after several recent cyber incidents. The Cybersecurity and Infrastructure Security Agency (CISA) issued a binding directive on Tuesday giving federal agencies a series of deadlines to identify cloud systems, implement assessment tools and abide by […]
Nebraska AG files lawsuit against Change Healthcare
It is the first lawsuit filed by a state attorney general against Change Healthcare over the February breach that affected 100,000 Americans. From the state’s December 16 press release: Download the court filing.
Texas Tech University System data breach impacts 1.4 million patients
Another major US hospital system recently suffered a cyberattack. Bleeping Computer reported: The Texas Tech University Health Sciences Center and its El Paso counterpart suffered a cyberattack that disrupted computer systems and applications, potentially exposing the data of 1.4 million patients. The organization is a public, academic health institution that is part of the Texas Tech […]
Irish Data Protection Commission fines Meta €251 Million
A press release from the DPC explains the penalty:
SEC Charges Flagstar for Misleading Investors About Cyber Breach
ADMINISTRATIVE PROCEEDINGFile No. 3-22360 December 16, 2024 – The Securities and Exchange Commission today filed settled charges against Flagstar Bancorp, Inc. (now known as “Flagstar Financial, Inc.”), for making materially misleading statements regarding a cybersecurity attack on Flagstar’s network in late 2021 (the “Citrix Breach”). The SEC’s order finds that Flagstar negligently made materially misleading statements […]