A quick Saturday digest of cybersecurity news articles from other sources.
Privacy Law Update: Colorado Privacy Bill Becomes Law: How Does it Stack Up Against California and Virginia?
By Alysa Zeltzer Hutnik, Aaron Burstein & Lauren Myers on July 8, 2021
The Colorado Legislature recently passed the Colorado Privacy Act (“ColoPA”), joining Virginia and California as states with comprehensive privacy legislation. Colorado Governor Jared Polis signed the bill (SB 21-190) into law on July 7, and ColoPA will go into effect on July 1, 2023. How does the measure stack up against the VCDPA and the CCPA (as amended by CPRA)? The good news is that, in broad terms, ColoPA generally does not impose significant new requirements that aren’t addressed under the CCPA or VCDPA, but there are a few distinctions to note.. Read more…
Coming soon to Minnesota?
Excel is still a security headache after 30 years because of this one feature
Threat researcher explains why it’s tricky to tell the difference between legitimate Excel Macros and ones that deliver malware.
Video surveillance network hacked by researchers to hijack footage
Home automation. Internet of Things. Cloud management. And a security bug that could let other people watch you online…
WordPress Malware Camouflaged as Code
Wordfence Detects Malware That Looks Safe to Humans
A few minutes ago we published an analysis of a malware variant that looks safe to a human analyst examining the code. Wordfence has detected this malware since 2019, although it may be missed by many security analysts on inspection of the code. You can find out what this malware looks like and how to identify it on the Wordfence blog…
About the Author:I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com