Creating a Security Culture & Solving the Human Problem

Posted on January 30th, 2019 by Responsible Cyber

People are the biggest weakness to security breaches; people can also be your organization’s biggest defense. Through nearly a dozen years of experience at the FBI and now at Qualtrics, I’ve seen that many of the most successful hackers no longer first look for software vulnerabilities. They’re coming after your people. The reason is simple: […]

Read More

Thieves’ names and descriptions made public on B&Q database

Posted on January 30th, 2019 by Responsible Cyber

by Danny Bradbury When people find unsecured Elasticsearch databases online, they often contain sensitive customer information. Not so with UK-based DIY giant B&Q, which reportedly suffered its own breach this week. Instead of customer data, an exposed Elasticsearch instance gave up information on around 70,000 shoplifters, according to Australian security researcher Lee Johnstone. The exposed […]

Read More

Apple Phone Phishing Scams Getting Better — Krebs on Security

Posted on January 30th, 2019 by Responsible Cyber

A new phone-based phishing scam that spoofs Apple Inc. is likely to fool quite a few people. It starts with an automated call that display’s Apple’s logo, address and real phone number, warning about a data breach at the company. The scary part is that if the recipient is an iPhone user who then requests […]

Read More

Courts Hand Down Hard Jail Time for DDoS — Krebs on Security

Posted on January 30th, 2019 by Responsible Cyber

Seldom do people responsible for launching crippling cyberattacks face justice, but increasingly courts around the world are making examples of the few who do get busted for such crimes. On Friday, a 34-year-old Connecticut man received a whopping 10-year prison sentence for carrying out distributed denial-of-service (DDoS) attacks against a number of hospitals in 2014. […]

Read More