From the you-really-should-have-read-my-About-page dept: In today’s episode of “Shoot the Messenger,” a company in India that apparently didn’t want me reporting on their data leak got a court there to issue an injunction barring me from publishing. They also filed a criminal complaint against me and this blog based on what appears to be a…
Category: Commentaries and Analyses
AU: Top cyber security agency to brief universities
Shannon Jenkins reports: Australia’s vice-chancellors will receive a high-level cyber security briefing from the Australian Signals Directorate (ASD). The briefing will update universities on the latest security risks and ways to bolster their cyber security. Universities must have stronger defences in place, according to the Minister for Education, Dan Tehan. Read more on The Mandarin….
With warshipping, hackers ship their exploits directly to their target’s mail room
Zack Whittaker reports: Why break into a company’s network when you can just walk right in — literally? Gone could be the days of having to find a zero-day vulnerability in a target’s website, or having to scramble for breached usernames and passwords to break through a company’s login pages. And certainly there will be…
Amarin Pharma notifies patients of data leak discovered by vpnMentor
On June 20, vpnMentor reported on a leak they discovered involving data from patients interested in Vascepa. Reading their report, it seemed that they could see that Vascepa figured prominently in the data but they do not mention whether they ever contacted Vascepa’s manufacturer, Amarin Pharma — or if not, why not. On August 5,…
People: Do NOT Call This Site About the AMCA Breach
Folks — I know a lot of you may be receiving mail — some of it incorrect — about the AMCA breach, but do not call me about it. Call the party that sent you the notification or Google their name to find out more. I cannot help you. If they sent something to your…
One Misconfig (JIRA) to Leak Them All- Including NASA and Hundreds of Fortune 500 Companies!
Avinash Jain writes: Some months back, I published an article on “Exposed JIRA server leaks NASA staff and project data” in which I was able to find NASA staff details, their username, their email ids along with their internal project details which were getting leaked by one of their tools — JIRA which is an…