You are here
Home > Author: Peter Glock

Bomb Threat, Sextortion Spammers Abused Weakness at

Oh dear. I use GoDaddy for some of the domains I manage. Brian Krebs says that leaves me open....: Two of the most disruptive and widely-received spam email campaigns over the past few months — including an ongoing sextortion email scam and a bomb threat hoax that shut down dozens of schools, businesses and government buildings late last year — were made possible thanks to an authentication weakness at, the world’s largest domain name registrar, KrebsOnSecurity h

Cybersecurity must focus on deploying emerging technologies

I'm going to disagree with the esteemed chap from Unisys (below). What the vast majority of organisations should do is get the basics of risk identification and risk management in place before any attempt to deploy new technology. When an organisation has an appropriate set of controls, then, and only then, should they look at implementing technology. The other major point is that most of the innovation in cybersecurity aimed at combating new and emerging threats comes out

Google fine launches new era in privacy enforcement

I thought it was going to be Spain that moved first, but France was faster out of the blocks...: [...] Eight months after Europe imposed sweeping new privacy rules, France has opened a new chapter in data protection — one of sanctions, fines and tough enforcement. Not only has France’s CNIL data watchdog issued the largest ever financial penalty for a privacy breach in Europe — €50 million — it also chose the biggest possible target for enforcement — a Silicon Valley gian

Name and shame firms with poor cyber security, government told

I can see potential attackers mining this information for targets...: In the light of the fact that four in 10 businesses experienced a cyber security breach or attack in 2017-18 according to the government’s 2018 data breach survey, the public should be able to see what steps firms are taking to keep users safe online, a report says. The report, from the Cyber Security Research Group and the Policy Institute at King’s College London, argues that naming companies with poo

Corporate Culture, Cyber Risk Are Top of Mind for D&O Underwriters

Most firms have cover in place for General Liability and Directors & Officers (D&O) but that probably isn't enough...: [...] High profile data breaches have spawned multiple lawsuits and have begun to impact boards, panelists said. In January, Yahoo settled a securities lawsuit stemming from two 2016 data breaches for $80 million. “Today, cyber risk is D&O risk,” said Padalino. “It’s not just an issue of…breaches against the organization and the IT department.

Achieving cyber resilience in the telco industry – Accenture

A view from Accenture in Asia-Pacific. The message is "must do better" so not much change from usual. The interesting news is that telcos have begun to share intelligence .  : [...] With growing demands to protect consumers, cybersecurity has been a major challenge for the telecommunication industry in the past twelve months. In response to this challenge, four telco groups - Singtel, SoftBank, Etisalat, and Telefónica – have recently partnered to create the Global Telco

Would You Like To Rent Out Your Facebook Account In Exchange For Monetary Gifts or Laptop?

Can anyone think why this might be a bad idea?...: [...] The ‘spammy’ Facebook account holders who have been blocked from advertising on the popular social media site have come up with a new way to run their campaigns by asking legitimate account holders to ‘rent’ out their accounts. With rented accounts, an illegitimate person can create a new page and quickly begin running ads. And even if Facebook gets hold of these accounts and bans them, the ad launderer can move to

Hacked Customer Data From World Leading Cryptocurrency Exchanges For Sale On The Dark Web?

If anyone comes across a picture of me, holding my passport, it's probably from this hack. There's not much I can do about it, just be extra vigilant about fraudulent transactions...: On a darknet market called “Dread,” a vendor going by “ExploitDOT” is attempting to sell user data from the know-your-customer (KYC) data top cryptocurrency exchanges ask for, required by most jurisdictions. According to data shared with CCN, the hacker has an ad that has been online since J

Apple CEO Demands Federal Data Privacy Legislation

Yes please...: [...] “In 2019, it’s time to stand up for the right to privacy—yours, mine, all of ours,” said Cook in a Wednesday op-ed in Time. “Consumers shouldn’t have to tolerate another year of companies irresponsibly amassing huge user profiles, data breaches that seem out of control and the vanishing ability to control our own digital lives.” The Apple exec, for his part, called on the Federal Trade Commission (FTC) to develop a “data-broker clearinghouse” where co