Posted in best practices hacks online security Paranoid Peeps systemic risk

WordPress wants sites to eat their (patching) vegetables

Apparently. over a third of the web sites on the Internet (including this one) run the WordPress content management software…

Posted in best practices CSO deep thoughts hacks risk systemic risk

So your third party has been breached…

Another day, another third party security compromise story… this time it is Indian outsourcing giant Wipro. The firm has confirmed…

Posted in hacks insider threat Paranoid Peeps politics social engineering

Grindr and US national security

Here’s an interesting development…the US federal agency which reviews foreign investments in US companies has ordered a Chinese firm to…

Posted in hacks online security privacy worst practices

Bad biometrics: Samsung’s new S10 phone

When biometrics work properly, they can provide you with an easy to use security solution with a reasonable level of…

Posted in hacks malware online security

The (not paranoid enough) Android

The train wreck that is Android security continues… A new strain of malware by security firm Wandera found in China…

Posted in authentication cloud computing hacks online security

Beware of mobile number port out scams!

I spend a lot of time telling people to use two factor authentication on their important web accounts.  This may…

Posted in hacks online security social engineering

The ultimate outsider threat?

I know I have been blathering on about insider threats lately, so let’s go to the other extreme – the…

Posted in best practices hacks insider threat law online security

Insiders on the outside

Homeland Security Magazine has a very interesting case study on an insider threat case involving DirecTV.  In this case, the…

Posted in best practices CSO hacks online security

Leaky buckets and acquisition best practices

There are three interesting things for CSOs to think about in this story on a leak of passport and other…

Posted in hacks online security social engineering worst practices

The other big hack of 2016?

According to CSO Online, someone is offering for sale what they claim is a 6GB file of “data enrichment” information…