It looks like the reason for the hack of JPMorgan is a basic hack. The routine check caught it, but did not find the problem in the first place. $250mil spent on cyber security but did not complete the actual update on one machine. Arstechnica says there was a missing two-factor authentication configuration on their … Read more
Fixvirus show December 23rd. cyberattackers are emboldened. the real story of the last few days. Get ready for the new year.
As we are devising new strategies and techniques so our businesses are not in the news, our business is not worth the time of the hackers etc. I want to ask the question is risk management as a methodology really serving us well? Sure we justify and enumerate how much money to spend on security … Read more
Have you had an inkling that cyber security is getting worse? remember this post from Black Hat2014 where I posted about a dilemma of management? It is as if this problem is so pervasive we can’t do anything about this. There seem to be more cyber breaches not less, we now expect to get hacked. … Read more
Checkpoint found a “Misfortune Cookie” vulnerability in various gateway devices for the home. This is the paper about how to protect one’s device: http://mis.fortunecook.ie/misfortune-cookie-tr069-protection-whitepaper.pdf thsi is especially disconcerting: Any user traffic destined for banking or financial sites was redirected to malicious servers under the attackers control or redirected through SSL proxies where the security of … Read more
