Independent – Page 26 – PossibleThreat Articles

Russia Sends Cybersecurity CEO to Jail for 14 Years

July 26, 2023 0 Comments evil corp, Fancy Bear, financial times, group-ib, gru, ilya sachkov, kaspersky lab, maksim yakubets, max seddon, ruslan stoyanov, sergei mikhailov, The Coming Storm

Credit to Author: BrianKrebs| Date: Wed, 26 Jul 2023 17:29:40 +0000

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov, the former founder and CEO of one of Russia’s largest cybersecurity firms. Sachkov, 37, has been detained for nearly two years under charges that the Kremlin has kept classified and hidden from public view, and he joins a growing roster of former Russian cybercrime fighters who are now serving hard time for farcical treason convictions.

ComputerWorld Independent

Was Steve Jobs right about this?

July 26, 2023 0 Comments Apple, Artificial intelligence, Data privacy, education industry, Mobile, small and medium business

Perhaps Steve Jobs was right to limit the amount of time he let his children use iPhones and iPads — a tradition Apple maintains with its Screen Time tool, which lets parents set limits on device use. Now, an extensive UNESCO report suggests that letting kids spend too much time on these devices can be bad for them.

Baked in inequality and lack of social skills

That’s the headline claim, but there’s a lot more to the report in terms of exploring data privacy, misuse of tech, and failed digital transformation experiments.

To read this article in full, please click here

Independent Krebs Security

Who and What is Behind the Malware Proxy Service SocksEscort?

July 25, 2023 0 Comments A Little Sunshine, adrian crismaru, avrecon, black lotus labs, domaintools.com, intel471, internet of things (iot), lumen, riley kilmer, socksescort, spur.us, Web Fraud 2.0, wiremo

Credit to Author: BrianKrebs| Date: Tue, 25 Jul 2023 21:20:55 +0000

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort, which rents hacked residential and small business devices to cybercriminals looking to hide their true location online.

Independent Krebs Security

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

July 21, 2023 0 Comments A Little Sunshine, accenture, datos insights, ians, security maturity, tari schreider

Credit to Author: BrianKrebs| Date: Fri, 21 Jul 2023 19:11:16 +0000

Many things have changed since 2018, such as the names of the companies in the Fortune 100 list. But one aspect of that vaunted list that hasn’t shifted much since is that very few of these companies list any security professionals within their top executive ranks. The next time you receive a breach notification letter that invariably says a company you trusted places a top priority on customer security and privacy, consider this: Only four of the Fortune 100 companies currently list a security professional in the executive leadership pages of their websites. This is actually down from five of the Fortune 100 in 2018, the last time KrebsOnSecurity performed this analysis.

ComputerWorld Independent

Apple: Proposed UK law is a ‘serious, direct threat’ to security, privacy

July 21, 2023 0 Comments Apple, Data privacy, Government, messaging apps, Mobile, Privacy, Security, small and medium business

New UK government surveillance laws are so over-reaching that tech companies can’t possibly meet all of their requirements, according to Apple, which argues the measures will make the online world far less safe.

Apple, WhatsApp, Meta all threaten to quit UK messaging

The UK Home Office is pushing proposals to extend the Investigatory Powers Act (IPA) with a range of proposals that effectively require messaging providers such as Apple, WhatsApp, or Meta to install backdoors into their services. All three services are now threatening to withdraw messaging apps from the UK market if the changes move forward.

To read this article in full, please click here

ComputerWorld Independent

Medical data sharing: Are we there yet?

July 20, 2023 0 Comments Compliance, Data privacy, electronic health records, healthcare industry, hipaa

Fifteen years ago, if you entered an emergency room a thousand miles from home, the ER doctors would not have had access to potentially lifesaving information in your medical records, such as your allergies or a list of drugs you were taking. Only 10% of US hospitals had electronic health record (EHR) systems, and health record requests were typically sent in paper form by mail or fax machine. Then the federal government stepped in, providing billions of dollars in EHR incentives to help hospitals get online.

To read this article in full, please click here

ComputerWorld Independent

This is why personal encryption is vital to the future of business

July 18, 2023 0 Comments Apple, Data privacy, Mobile, Privacy, Security, small and medium business

Data encryption is threatened by government forces who haven’t yet recognized that without personal security, you cannot have enterprise security. Because attackers will exploit any available weakness to undermine protection — and if your people or your customers aren’t secure, neither is your business.

Get with the data

Attackers will always go where the money is. They will spend lots of it to mount attacks. They will delve deeper, and if they’re spending money, they also have the necessary resources to investigate absolutely anyone they can identify as a potential target.

To read this article in full, please click here

Independent Krebs Security

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

July 18, 2023 0 Comments A Little Sunshine, abusewithus, agentjags, ashley madison hack, ashleymadison.com, constella intelligence, Data Breaches, domaintools, eric malek, hulu, impact team, jordan evan bloom, leakedsource, Ne'er-Do-Well News, near-reality.com, noel biderman, ownagegaming1@gmail.com, pictrace, royal canadian mounted police, runescape, trevor sykes

Credit to Author: BrianKrebs| Date: Tue, 18 Jul 2023 14:57:04 +0000

[This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com.] In 2019, a Canadian company called Defiant Tech Inc. pleaded guilty to running LeakedSource[.]com, a service that sold access to billions of passwords and other data exposed in countless data breaches. KrebsOnSecurity has learned that the owner of Defiant Tech, a 32-year-old Ontario man named Jordan Evan Bloom, was hired in late 2014 as a developer for the marital infidelity site AshleyMadison.com. Bloom resigned from AshleyMadison citing health reasons in June 2015 — less than one month before unidentified hackers stole data on 37 million users — and launched LeakedSource three months later.

ComputerWorld Independent

Four zero-days make July 's Patch Tuesday a 'patch now' update

July 14, 2023 0 Comments Microsoft, Microsoft Office, Security, small and medium business, Windows

With this month’s Patch Tuesday update, Microsoft addressed 130 security vulnerabilities, published two advisories, and included four major CVE revisions. We also have four zero-days to manage for Windows (CVE-2023-32046, CVE-2023-32049, CVE-2023-36874 and CVE-2023-36884), bringing the Windows platform into a “patch now” schedule.

To read this article in full, please click here

Independent Krebs Security

SEO Expert Hired and Fired By Ashley Madison Turned on Company, Promising Revenge

July 13, 2023 0 Comments A Little Sunshine, ashley madison hack, Data Breaches, hulu, impact team, Ne'er-Do-Well News, william webster harrison

Credit to Author: BrianKrebs| Date: Thu, 13 Jul 2023 21:45:02 +0000

[This is Part II of a story published here last week on reporting that went into a new Hulu documentary series on the 2015 Ashley Madison hack.] It was around 9 p.m. on Sunday, July 19, when I received a message through the contact form on KrebsOnSecurity.com that the marital infidelity website AshleyMadison.com had been hacked. The message contained links to confidential Ashley Madison documents, and included a manifesto that said a hacker group calling itself the Impact Team was prepared to leak data on all 37 million users unless Ashley Madison and a sister property voluntarily closed down within 30 days.