Mandiant, a division of FireEye, has reported that it has discovered a vulnerability in a software protocol that enables hackers to gain access to audio and visual data on smart devices including baby monitors and web...more
8/19/2021
/ Baby Products ,
Connected Items ,
Data Privacy ,
Hackers ,
Information Security ,
Information Technology ,
Internet of Things ,
Popular ,
Risk Management ,
Smart Devices ,
Software ,
Vulnerability Assessments
CYBERSECURITY -
Cryptoheister(s) Return Stolen Booty -
Cryptocurrency platform Poly Network, which allows users to swap different types of digital tokens, was the victim of a cryptoheist that resulted in the thief...more
8/13/2021
/ Agribusiness ,
COPPA ,
Cryptocurrency ,
Cyber Crimes ,
Cybersecurity ,
Dark Web ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
Federal Trade Commission (FTC) ,
Hackers ,
Personally Identifiable Information ,
Popular ,
Ransomware
CYBERSECURITY -
CISA Issues Alert on Top Exploited Vulnerabilities -
On July 28, 2021, the Cybersecurity & Infrastructure Security Agency (CISA) issued a cybersecurity alert entitled “Top Routinely Exploited...more
7/30/2021
/ Apple ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Malware ,
Popular ,
Vulnerability Assessments
CYBERSECURITY -
Second Security Directive Issued by TSA to Pipeline Operators -
The U.S. Transportation Security Administration (TSA) issued its second Security Directive to the pipeline industry on July 20, 2021,...more
7/23/2021
/ Customs and Border Protection ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
FBI ,
Hackers ,
Infrastructure ,
Location Data ,
NASA ,
Olympics ,
Pipelines ,
Ransomware ,
TSA
CYBERSECURITY -
White House Focused on Combating Ransomware -
Ransomware attacks are frequent and escalating as we speak. Double extortion scams are hitting companies at a dizzying pace, and catching companies, large...more
7/16/2021
/ Article III ,
Biden Administration ,
Canon ,
COPPA ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Drones ,
Federal Aviation Administration (FAA) ,
Hackers ,
Ransomware ,
Smart Devices ,
Standing ,
Telemarketing ,
Text Messages
CYBERSECURITY -
Microsoft Issues Emergency Software Update for PrintNightmare Zero Day Vulnerability -
Following the release of a U.S. Cybersecurity & Infrastructure Security Agency (US-CERT) Coordination Center...more
7/9/2021
/ Bitcoin Mining ,
British Airways ,
Cryptocurrency ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
Microsoft ,
Mobile Apps ,
Personal Data ,
Ransomware ,
Software ,
Vulnerability Assessments
In a rare move, the Department of Health and Human Services (HHS) has issued a warning to hospitals and health systems to prioritize the patching of a two-year-old vulnerability in picture archive communication systems...more
7/9/2021
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
Hackers ,
Health Care Providers ,
Hospitals ,
Popular ,
Risk Management ,
Security Risk Assessments ,
Vulnerability Assessments
CYBERSECURITY -
Law Enforcement Takes Down DoubleVPN -
I love seeing another win for law enforcement in the cyber context. Servers and web domains owned by DoubleVPN, a virtual private network, were seized recently...more
7/2/2021
/ Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Microsoft ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Scams ,
Volkswagen
Although a security researcher has confirmed that LinkedIn users’ data, including full names, gender, email addresses, telephone numbers, and industry information is for sale on RaidForums by a hacker self-dubbed “GOD User...more
7/1/2021
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Hackers ,
Information Technology ,
LinkedIn ,
Personally Identifiable Information ,
Phishing Scams
CYBERSECURITY -
Fertility Clinic in Georgia Notifies Patients of Data Breach -
Reproductive Biology Associates, LLC (RBA) and its affiliate, MyEggBank, notified approximately 38,000 patients that a data breach...more
If you live in Utah, you have many things to be grateful for, including the majestic mountains. Utah is one of my favorite places to ski. And now it ranks as one of my favorite states for data privacy....more
I know I sound like a vinyl record that has a scratch in it, but I write it as I see it. And right now, I am seeing that the companies hit with cyber-attacks, ransomware attacks, double extortion attacks, and data theft are...more
6/17/2021
/ Cyber Attacks ,
Cyber Crimes ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
Incident Response Plans ,
Ransomware
CYBERSECURTY -
U.S. CISA + Cyber Command Warns of Critical Flaw in VMware -
Although a patch has been available by VMware since May 25, 2021, the Department of Homeland Security’s Cybersecurity and Infrastructure...more
6/11/2021
/ Cryptocurrency ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Financial Transactions ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Microsoft ,
Ransomware
When I conduct employee education sessions on data privacy and cybersecurity, I am often surprised that employees are unaware that their employers are legally able to monitor their use of company assets, and that employers...more
CYBERSECURITY -
Tulsa, OK Refuses to Pay Ransom to Attackers -
The City of Tulsa, Oklahoma, announced on May 9, 2021, that it had been hit with a ransomware attack, but the Mayor is resolute in not paying the demanded...more
CYBERSECURITY -
Verizon 2021 Data Breach Investigations Report Released -
If you have been following Verizon’s annual data breach investigation reports like I have over the years, you get excited when the new one comes out....more
CYBERSECURITY -
Coveware Q1 2021 Report Shows Increase in Ransomware Payments Over Q4 2020 Coveware issued its Q1 2021 -
Ransomware Report on April 26, 2021, which concludes that “[D]ata exfiltration extortion continues...more
5/7/2021
/ Apple ,
Contact Tracing ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Drones ,
Girl Scouts ,
Kroger ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware
CYBERSECURITY -
Eversource Energy Notifies Customers of Data Breach -
Eversource Energy, which is the largest energy supplier in New England with 4.3 million customers in Connecticut, Massachusetts, and New...more
4/30/2021
/ Apple ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
iPhone ,
NYDFS ,
Personally Identifiable Information ,
Ransomware ,
SolarWinds
Once again, Apple is leading the pack on privacy and implementing new privacy controls, starting next week. What does this mean for you?...more
CYBERSECURITY -
NSA Issues New Warning About Four Critical Patches to Microsoft Exchange Servers -
The National Security Agency (NSA) recently issued a warning to private industry about four zero-day vulnerabilities in...more
4/23/2021
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Facebook Inc v Duguid ,
Hackers ,
National Security Agency (NSA) ,
NBA ,
NYDFS ,
Personally Identifiable Information ,
Ransomware ,
SCOTUS
CYBERSECURITY -
Cisco/Talos Researchers Find Attackers Using Slack and Discord to Distribute Malware -
Another example of the resiliency and creativity of cyber-attackers is outlined in a new blog by Cisco/Talos...more
4/16/2021
/ Automatic License Plate Readers ,
Biometric Information ,
Cisco ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Microsoft ,
Mobile Apps ,
NAIC ,
Personal Data ,
Personally Identifiable Information
Many individuals already use facial recognition technology to authenticate and authorize payment through their smartphone. According to Jupiter Research, by 2025 (only four years away), 95 percent of smartphones will have...more
4/15/2021
/ Biometric Information ,
Data Collection ,
Data Privacy ,
Facial Recognition Technology ,
Financial Services Industry ,
Fingerprints ,
Fraud ,
Mobile Apps ,
Mobile Payments ,
Personal Data ,
Personally Identifiable Information ,
Privacy Policy ,
Smartphones ,
Spotify ,
Terms of Use
CYBERSECURITY -
FBI and DHS/CISA Issue Joint Alert on Mamba Ransomware -
The Federal Bureau of Investigations (FBI) recently issued a joint alert with the Department of Homeland Security/Cybersecurity Infrastructure and...more
4/9/2021
/ California Consumer Privacy Act (CCPA) ,
Cyber Crimes ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Department of Homeland Security (DHS) ,
DMV ,
FBI ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Malware ,
Personally Identifiable Information ,
Ransomware
CYBERSECURITY -
GAO Report Identifies Need for DOE to Address Risks to Electrical Distribution System -
The United States Government Accountability Office (GAO) recently completed and published a study on electricity...more
4/2/2021
/ California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
Email ,
FBI ,
GAO ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Infrastructure ,
OCR ,
Personal Data ,
Personally Identifiable Information ,
Right of Access ,
Vulnerability Assessments ,
Wal-Mart
Many people continue to be unaware of how their data are collected, stored, used, disclosed, retained, or destroyed. As technology explodes it is hard to stay current, and educating individuals on their privacy rights has...more