Korea JoongAng Daily reports: LG U+ was hit with 21.6 million won ($20,000) in government fines for a failure to secure customer data, which led to a massive breach and unauthorized sharing of sensitive information. The Personal Information Protection Commission (PIPC) announced Wednesday that it imposed a total of 75 million won in fines on…
Category: Commentaries and Analyses
Bitter war of words erupts between UK cops and web security expert over alleged flaws in Cyberalarm monitoring tool
Gareth Corfield reports: A war of words has erupted between the National Police Chiefs’ Council (NPCC) and a British web security pro after a senior cop declared it would be “a waste of public money” to keep discussing security flaws in the body’s Cyberalarm product. Paul Moore says he uncovered what he described as a…
In Battle Against Hackers, Companies Try to Deceive the Deceivers
Heidi Mitchell reports: An increasing number of companies are looking at an innovative approach to deal with hackers that break into their computer networks. They lure cybercriminals into thinking they’re getting close to the good stuff—and then they trap them. That’s what Land O’Lakes, the suburban Minneapolis agricultural giant, is doing. Read more on WSJ.
A dying man, a therapist and the ransom raid that shook the world
William Ralston reminds us how devastating the Vastaamo breach and ransom incident has been: Jukka-Pekka Puro will never forget 2017. Facing the heartbreak of a divorce, Puro, a university lecturer in Turku, southwestern Finland, found himself tussling with depression. This spiralled into suicidal ideations when doctors told him he had aggressive kidney cancer, and no…
Easy Way In? 5 Ransomware Victims Had Their Pulse Secure VPN Credentials Leaked
Victoria Kivilevich writes: Rising ransomware attacks around the world, together with the recent lists of exposed Pulse Secure VPN credentials set the backdrop for KELA’s latest research. While not all ransomware attacks used CVE-2019-11510 (a vulnerability of unpatched Pulse Secure VPN servers) or the previously shared credentials to the compromised corporate networks, it does add another layer…
The Legal Industry Has Finally Created a Data Security Standard of its Own
Kenya Parrish-Dixon of Empire Technologies Risk Management Group writes: The Association of Corporate Counsel is a professional organization comprised of in-house counsel serving the needs of in-house counsel. It has been in existence, in various forms, since 1983 and is currently an international organization with 45,000 members. After the Federal Trade Commission’s litigation support infrastructure…