Do Not Track Act Would Give Users More Power
The Do Not Track Act introduced by Sen. Josh Hawley would establish a single, enforceable mechanism for people to prevent data collection and online tracking.
SEARCH
Stack Overflow Updates Breach Advisory With More Details
Kudos to Stack Overflow, for promptly notifying users as soon as it identified a breach and posting an update with more details...
Google Stored Some G Suite Passwords in Plain Text
Some Google G Suite customers' passwords were stored in plain text on the company's network since 2005.
Security Basics Prove Highly Effective at Stopping Account Takeovers
New Google research on account takeovers found that basic account hygiene can defeat the vast majority of attacks.
New Bills Would Require Warrants for Border Device Searches
Bills in the House and Senate would prevent warrantless searches of Americans' devices at the border.
Attackers Are Signing Malware With Valid Certificates
There used to be a time when malware signed with a legitimate certificate was the mark of a sophisticated, nation-state-backed...
Moody’s Revises Equifax Outlook Post-Breach
Data breaches can be costly, both in terms of recovery, lost productivity, and regulatory fines. Moody’s revising its outlook...
Code Repository Companies Pledge to Share Attack Data
Atlassian, GitHub, and GitLab pledged to continue the information sharing relationship they started while investigating the...
Microsoft Patches Legacy Windows to Prevent Worms
End-of-life doesn’t mean no longer a threat. Microsoft decided to release security updates for no longer supported Windows 2003...
Dennis Has Some Questions About…Passwords
People love to hate passwords and most of us aren't very good at creating and remembering them. But we still need them so...
Attackers Are Signing Malware With Valid Certificates
There used to be a time when malware signed with a legitimate certificate was the mark of a sophisticated, nation-state-backed...
FIN7 Attackers Still in the Water
The FIN7 attack group is still alive and well, despite arrests of some alleged members and intense attention from researchers...
DNSpionage Attackers Deploying New Karkoff Backdoor
The DNSpionage attack group is now using a new backdoor called Karkoff, which may have ties to the OilRig leaks as well.
