ICS-CERT releases mitigation advice
MongoDB Ransom Victims Had No Account Passwords
Database provider tries to improve customers’ security awareness
Toolsmith Tidbit: Windows Auditing with WINspect
WINSpect recently hit the toolsmith radar screen via Twitter, and the author, Amine Mehdaoui, just posted an update a couple of days ago, so no time like the present to give you a walk-through. WINSpect is a Powershell-based Windows Security Audit…
Equifax Breach, Affecting 45% of US Population, Raises Big Questions
Questions abound as to the company’s governance and stewardship of citizen data.
Bug Exposed .UK Domains to Hijacking Risk for Months
Registrar Enom has now fixed the issue
Equifax Reports 143 Million Records Breached
US-based credit monitoring service Equifax has reported a data breach of 143 million records.
Mexican VAT Refund Giant Exposes Half-Million Passports, Credit Cards Online
MoneyBack left a misconfigured database open, with passport info, credit card numbers, travel tickets and other credentials.
SMBs Largely Unprepared for IoT, Ransomware Attacks
Nearly half of them would pay a ransom on connected things to reclaim their data.
Dragonfly 2.0 Attackers Probe Energy Sector
Determined group may already have access to operational systems, warns Symantec
Lenovo Slapped with $3.5M Fine over Superfish
32 states have won a multimillion dollar settlement to resolve violations of state consumer protection laws.