The Daily Swig

Web security digest

January 2018
Social Security – w/e 19 Jan ‘Systems can’t be exploited if intruders can’t get in’ | 19 January 2018 | 04:16 Hong Kong business council issues warning over surge in cyber-attacks Businesses must reassess their security posture, says HKPC. | 19 January 2018 | 11:05 Google rolls out security dashboard for G Suite Enterprise admins will be able to access the new Security Center over the coming days. | 18 January 2018 | 04:19 ‘Security is not just an application, it’s a lifestyle’ Allen Dillon, vice president of CyberNB, discusses the launch of the Cyber Essentials Canada certification program. | 18 January 2018 | 02:27 Flaw patched in VR porn app that left 20,000 user details exposed Researchers discovered API vulnerability using Burp Suite. | 18 January 2018 | 12:17 BlackBerry races to market with automotive cybersecurity solution Jarvis scans for software vulnerabilities in connected and autonomous vehicles. | 17 January 2018 | 11:22 Addressing cyber risk in 2018 Enterprise-wide changes are in store for businesses around the world. | 16 January 2018 | 03:41 The social network Facebook’s Bug Bounty program paid out $880,000 in 2017. | 16 January 2018 | 11:45 New legislation seeks to hold credit rating firms accountable for data breaches The Data Breach Prevention and Compensation Act would impose a base penalty of $100 for every consumer whose details are compromised. But will it ever see the light of day? | 12 January 2018 | 04:01 Handy Password users: It might be time to look for a new password manager. | 12 January 2018 | 09:01 UK Data Protection Bill amended to protect ethical hackers New clause will allow researchers to test integrity of anonymized datasets without fear of reprisal. | 11 January 2018 | 11:47 Intel to issue Meltdown, Spectre patches within a week CEO Brian Krzanich admits that performance will be affected. | 10 January 2018 | 03:20 WiFi security: WPA3 will deliver ‘robust protection’ to users New security features will strengthen privacy – even when simple network passwords are picked. | 10 January 2018 | 11:42 Network error? IoT offers a ‘new pathway’ for malicious actors to take down critical systems DHS intelligence analyst Charles Covel drills down into the risks posed by IoT devices and systems. | 09 January 2018 | 02:41 Medicaid raid: Phishing attack exposes 30,000 patient files Social engineering scam underlines importance of opsec training. | 08 January 2018 | 04:28 Duolingo patches RCE vulnerability in flashcard app Nightwatch becomes first security team to reap rewards of Google Play bug bounty. | 08 January 2018 | 02:32 Social Security – w/e 5 Jan ‘I think somebody inside of Intel needs to take a long hard look at their CPUs and actually admit that they have issues’ | 05 January 2018 | 03:24 Oncology group to pay $2.3m following patient data breaches Corrective action plan will ensure 21st Century Oncology is HIPAA compliant. | 04 January 2018 | 04:11 Flip the script Decade-old browser flaw allows third parties to track online behavior. | 04 January 2018 | 12:41 AMD shares soar amid Intel chip vulnerability rumors OS-level fix may lead to sharp reduction in CPU performance. | 03 January 2018 | 03:37 Fashion victim: Forever 21 confirms POS system hack Malware harvested customer payment details for seven months last year. | 03 January 2018 | 11:26 Former SSM employee implicated in privacy breach Prescription snooper accessed thousands of patient records. | 02 January 2018 | 03:29 Vietnam counts the cost of malware in 2017 Insufficient protection comes with a $540 million price tag. | 02 January 2018 | 12:18