Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


“Ghosting” is making the hiring process harder.

You found the perfect candidate and are ready to make an offer, then your “purple unicorn” stops responding to phone calls, texts, and emails.  What gives?  Not a tech issue, but more an HR issue.  Still, if you can’t find qualified technical staff, this might be an issue.


So long! ‘The internet’s most inept criminal’ goes to jail

The FBI took six months to track him down – what they found was a disturbed hacker with “no skills”.


Money-eating cash machine RAT gobbles $17,500

“You dirty rat!”  RAT may be short for Remote Access Trojan, but the word also refers to a well-known type of rodent…Cash machine robbed by an actual rat.  The fuzzy kind.


US legislators put industrial control system security on the map

After a spate of attacks on industrial control systems (ICS), the US this week officially recognized the need to secure them with a new bill.  Legislation can’t stop hackers any more than it can stop bullets, but its a step in the right direction.


Twitter introduces another way for you to better secure your account

Twitter has added the ability to authenticate to the service using hardware tokens such as Yubico’s YubiKey.


WPA3 is here but how will it make Wi-Fi more secure?

New Wi-Fi security standards don’t come along very often but the Wi-Fi Alliance has just formally launched one, Wi-Fi Protected Access 3, or WPA3.


Apple Releases Multiple Security Updates

07/09/2018 07:29 PM EDT  Original release date: July 09, 2018

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.


 

0

About the Author:

Cybersecurity analyst, pen-tester, trainer, and speaker. Serving small business owners in the St Paul, Minneapolis, and western Wisconsin area since 2001. Cybersecurity and hacking have been a passion of mine since I entered the computer and networking business in 2000. I hold several cybersecurity certifications including Certified Information Systems Security Professional (CISSP), Certified Advanced Security Pratitioner (CASP), and Certified Ethical Hacker (CEH). Other computer industry certifications include A+, Network+ and Microsoft Certified System Engineer (MCSE). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of security on their computers, networks, and websites. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. We also provide Cybersecurity Awareness Training for clients and their employees. I am a frequent speakers at cybersecurity conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference, the (ISC)2 World Congress, and the ISSA International Conference, and many local community organizations, Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2008.
  Related Posts

Add a Comment


This site uses Akismet to reduce spam. Learn how your comment data is processed.