Cyberattack Lessons for Companies and People

I am going to list various events and their lessons that we “should” learn from(my weekend reading): Home Depot hack from KrebsonSecurity Nov7 post: 56 million emails were harvested as well as the 53 million credit card numbers. “Home Depot said the crooks initially broke in using credentials stolen from a third-party vendor. The company … Read more

Mac malware 356k apps infected

Palo Alto Networks has found a Mac malware targeting the OS and iOS systems. It is only thte second known malware family. It is the first known malware to automate generation of malicious iOS apps. It is the first to install in-the-wild malware on non-jail-broken iOS devices through enterprise And the following is the most … Read more

Federal Government Needs a Digital “Smokey the Bear”

The conclusion of  The July 2014 Insurance Industry Working Session:   from the USDA.gov page Ok, I admit  the conference did not talk about Smokey the Bear for cyberspace  very much if at all. Specifically: “The Federal government may be in the best position to drive awareness and education about cyber risk and, by extension, … Read more

FireEye new report -APT28 coming from Russian government

FireEye report and what is in it: This report says what we knew – a major attack vector is coming from Russia. Russia  is attacking us and others  (East European interests) the first takeaway is the very targeted nature of an attack on the Georgian journalist covering the Caucasus. The email claimed to originate from … Read more

Staples now investigating breach

Brian Krebs broke the story again, since he reviews the bank fraud channels, as well as the crook channels in Russia and elsewhere at times. Tripwire  has a good video that explains how the cards are sold – it is a company which creates many IT security products. I have used Tripwire  File Integrity and … Read more