Identity and Access Management
GDPR FAIL: US Firm ‘Profiles Half the World’ — it’s Max Schrems Again
Richi Jennings | | Belgium, BICS, Data Privacy, EEA, eu, EU GDPR, EU Privacy Shield, EU-US Privacy Shield, Europe, Europe Regulation, European Compliance, European Court of Human Rights, European Digital Rights, European Union, European Union (EU), GDPR, GDPR compliance, gdpr eu, GDPR fine, GDPR violations, Privacy, Privacy Shield, Proximus, risk scoring, safe harbor, SB Blogwatch, Schrems, Schrems II, Scoring, social credit scores, TeleSign, Trans-Atlantic Data Privacy Framework
NYOB accuses TeleSign, Proximus and BICS of misusing phone users’ private data. Reputation scoring = privacy violation? ...
Security Boulevard
Apple Fixes 0-Days — Russia Says US Used for Spying
Richi Jennings | | Apple, CVE-2023-32434, CVE-2023-32439, FSB, imessage, ios, kaspersky, Kaspersky Lab, Kaspersky Security, nsa, Russia, Russian FSB, SB Blogwatch, TriangleDB, triangulation
Vulns unpatched for FOUR years: ‘Triangulation’ spyware said to use backdoor Apple gave to NSA ...
Security Boulevard
Reddit Ransomware Raid Redux: BlackCat/ALPHV Demands $4.5M
Richi Jennings | | ALPHV ransomware, Blackcat, BlackCat ransomware, Breach, Privacy, Ransomware, reddit, Reddit breach, SB Blogwatch
And now, this: John-Oliver-pics protest won’t change Reddit policy, but will ransom demand work? ...
Security Boulevard
CISA Warning: MOVEit Has Yet Another Zero-Day SQL Injection RCE Bug [updated]
Richi Jennings | | CL0P, Cl0p Ransomware, clop, clop-ransomware, CVE-2023-34362, CVE-2023-35036, CVE-2023-35708, MOVEit Cloud, MOVEit Transfer, MOVEit Transfer Zero Day, Progress Software, Ransomware, SB Blogwatch, sql injection, SQL injection attack, SQL injection attacks, sql injection prevention, SQL Injection Vulnerabilities, SQL injections
Once is happenstance. Twice is coincidence. Three times is sheer incompetence ...
Security Boulevard
Your Personal Data Sold to US Intelligence Agencies
Richi Jennings | | 4th Amendment, Data Brokers, Director of National Intelligence, Fourth Amendment, Information Brokers, ODNI, Privacy, SB Blogwatch
What Price 4th Amendment? Warrant not needed if info bought from brokers ...
Security Boulevard
COSMICENERGY: ‘Russian’ Threat to Power Grids ICS/OT
Richi Jennings | | COSMICENERGY, electric grid, electrical grid, Electrical grids, energy grid, grid cyber attack, ICS, IEC 60870-5-104, IEC-104, INCONTROLLER, Industroyer, Industroyer2, Malware, OT, power grid, Power-Grid Security, Red Team, Red team exercises, red team operations, red team testing, Red Teaming, Red Teams, red-team-tools, redteam, Russia, Russia Exodus, Russia power grid, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, russian, Russian Cyber War, SB Blogwatch, Solar Polygon, triton, TRITON ICS malware, Triton malware
Shouty name—dangerous game. Red-team tool ripe for misuse ...
Security Boulevard
Revolutionize Zero-Trust Security With a Converged Identity Platform
Faith Kilonzi | | Converged Identity Platform, converged security, Identity and Access Management (IAM), identity management, IGA, PAM
The world of cybersecurity is ever-evolving, and organizations are facing new and complex security challenges every day. The traditional approach to managing identities and access has been fragmented and siloed, with separate ...
Security Boulevard
‘BrutePrint’ Unlocks Android Phones — Chinese Researchers
Richi Jennings | | android, Authentication, authentication bypass, biometric, biometric authentication, biometric security, biometrics authentication, Biometrics-Based Authentication, BrutePrint, fingerprint, Fingerprint Scanners, fingerprint scanning, fingerprint sensors, fingerprints, iot, Man In The Middle, man in the middle attack, man in the middle attacks, mitm, MitM Attack, mitm attacks, SB Blogwatch, Trusted Execution Environment
Or, at least, OLDER phones: SPI/TEE MITM FAIL ...
Security Boulevard
Facebook Fined $1.3B — Zuckerberg Furious in GDPR Fight
Richi Jennings | | Data Privacy, EEA, eu, EU GDPR, EU Privacy Shield, EU-US Privacy Shield, Europe, Europe Regulation, European Compliance, European Court of Human Rights, European Digital Rights, European Union, European Union (EU), facebook, Facebook data, facebook fine, GDPR, GDPR compliance, gdpr eu, GDPR fine, GDPR violations, Meta, Privacy, Privacy Shield, safe harbor, Schrems, Schrems II, Trans-Atlantic Data Privacy Framework
GDPR Move for Mark’s Money: No legal way to move Europeans’ data to the US since 2015. Cloud industry better take note ...
Security Boulevard
Google Chrome 3rd Party Cookies Crumbling — Finally!
Richi Jennings | | Chrome, cookie, cookies, FLoC, google, omnomnomnomnomnomcookie, Privacy, Privacy Sandbox, SB Blogwatch, Topics, tracking cookies
Om Nom Nom Nom Nom: Privacy Sandbox inching towards reality. But concerns remain ...
Security Boulevard