The North Korea-linked threat actor known as Kimsuky (aka Black Banshee, Emerald Sleet, or Springtail) has been observed shifting its tactics, leveraging Compiled HTML Help (CHM) files as vectors to deliver malware for harvesting sensitive data. Kimsuky, activ...
Read article →In this edition of Week in Review, we have big news on the latest Apple antitrust lawsuit. Microsoft’s AI ambitions dominated the news as well, so let’s dive right in.… Did someone forward this to you? Sign up here to receive the Week in Review newsletter in y...
Read article →The nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently bundled with Firefox that offers to remove users from hundreds of people-search sites. The m...
Read article →It’s not unusual for the data brokers behind people-search websites to use pseudonyms in their day-to-day lives (you would, too). Some of these personal data purveyors even try to reinvent their online identities in a bid to hide their conflicts of interest. B...
Read article →The data privacy company Onerep.com bills itself as a Virginia-based service for helping people remove their personal information from almost 200 people-search websites. However, an investigation into the history of onerep.com finds this company is operating o...
Read article →Apple and Microsoft recently released software updates to fix dozens of security holes in their operating systems. Microsoft today patched at least 60 vulnerabilities in its Windows OS. Meanwhile, Apple’s new macOS Sonoma addresses at least 68 security weaknes...
Read article →How To Build A Cloud-Only Business Based On Three Core Security Pillars In mid-March 2020, I had several office visits, all with the same fundamental questions. "Mark, are we ready?" "Ready for what?" "To close the office and work from home."...
Read article →Are SPF, DKIM and DMARC enough? I have been dealing with secure email delivery for most of my career, and I frequently find organizations not properly setting up Sender Policy Framework (SPF), Domain Keys Identified Mail (DKIM) and Domain-based Message Au...
Read article →Are your workloads using the latest Cloud technologies? Companies moving workloads to the Cloud often are doing so with a monolithic approach because that is the traditional mindset of IT architectures. Using this approach adds risk for availabil...
Read article →