A quick Saturday digest of cybersecurity news articles from other sources.
12 Signs Your Identity Might Have Been Stolen
From Experian – Not sure whether your identity might have been stolen or not? Read to find out some of the signs that may indicate you’ve been a victim of ID theft.
Facebook data privacy scandal: A cheat sheet
Read about the saga of Facebook’s failures in ensuring privacy for user data, including how it relates to Cambridge Analytica, the GDPR, the Brexit campaign, and the 2016 US presidential election.
Hijackers Get Hijacked – Account Hijacking Forum OGusers Hacked
Ogusers[.]com — a forum popular among people involved in hijacking online accounts and conducting SIM swapping attacks to seize control over victims’ phone numbers — has itself been hacked, exposing the email addresses, hashed passwords, IP addresses and private messages for nearly 113,000 forum users.
And also reported on Sophos Naked Security
Oops! – Google recalls Titan Bluetooth keys after finding security flaw
Google had egg on its face this week after it had to recall some of its Titan hardware security keys for being insecure.
ST19-001: Best Practices for Securing Election Systems
Original release date: May 21, 2019
By adhering to cybersecurity best practices, election organizations—including state, local, tribal, and territorial (SLTT) governments—can improve the security of their election systems. The Cybersecurity and Infrastructure Security Agency (CISA) Hunt and Incident Response Team (HIRT) developed the best practices in this tip from lessons learned through engagements with SLTT governments, election stakeholders, and others. Organizations can implement these best practices, which harden enterprise networks and strengthen election infrastructure, at little or no cost.
Experian Nominated for 4 Cybersecurity Awards?
Seriously? Like for what – Hall of Shame? Dumbest cybersecurity department ever? Most clueless CEO on the planet? Aaargh! This is beyond bearable! These are the a-holes who lost all of our credit records, remember? Awards ceremony on June 19th. The nominations are for: Cyber Risk Pre-Breach Team of the Year, Cyber Risk Event Response Team of the Year, Cyber Risk Model of the Year, and Cyber Service Vendor of the Year. LOL, what a crock! Stay tuned for updates.
In related and contradictory news: Equifax just became the first company to have its outlook downgraded for a cyber attack Moody’s lowered Equifax’s outlook from stable to negative on Wednesday, as the credit monitoring company continues to suffer from the massive 2017 breach of consumer data.
Privacy Awareness Week
Original release date: May 22, 2019
The Federal Trade Commission (FTC) has released an announcement promoting Privacy Awareness Week (PAW). PAW is an annual event fostering awareness of privacy issues and the importance of protecting personal information. This year’s theme, “Protecting Privacy is Everyone’s Responsibility,” focuses on promoting privacy awareness for consumers and businesses.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages consumers and organizations to review FTC’s post and consider the following practices to protect privacy and safeguard data:
- Use and maintain anti-virus software and a firewall.
- Regularly scan your computer for spyware.
- Keep software up to date.
- Remove unused apps and software programs.
- Use strong passwords and encrypt sensitive files.
- Follow good security habits.
JUN
About the Author:
I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com