Scott E. Rupp reports: The Department of Homeland Security (DHS) says that some of the Siemens medical imaging devices that run Windows 7 software are vulnerable to cyberattack. If hacked, these specific Siemens devices allow for the ability to “remotely execute arbitrary code,” DHS says. The alert from DHS’s Industrial Control Systems Cyber Emergency Response…
Category: Commentaries and Analyses
Day after doctor’s murder, accused still on the run
Another reminder of the need to revoke access – physical and digital – if you are terminating an employee or student’s position with your organization: Summary: The main accused, suspected to be another postgraduate student working in the radiology department, is still on the run. Sushant Pandey was found with his throat slit inside the…
Leak of >1,700 valid passwords could make the IoT mess much worse
Dan Goodin reports: Security researchers have unearthed a sprawling list of login credentials that allows anyone on the Internet to take over home routers and more than 1,700 “Internet of things” devices and make them part of a destructive botnet. The list of telnet-accessible devices, currently posted at this Pastebin address, was first posted in…
Uber Settles With FTC Over Allegedly Deceptive Privacy And Data Security Practices
As I reported earlier this month on PogoWasRight.org, Uber settled privacy and data security charges levied by the Federal Trade Commission. Laura Jehl of BakerHostetler recaps the controversy: Uber, the ride-hailing giant, agreed this week to implement a comprehensive privacy program and to undergo 20 years of privacy and data security audits in order to…
Aadhaar data leak: Govt deny claims by WikiLeaks
ZeeBiz Web Team reports: Days after a foreign media report which quoted WikiLeaks saying that the company which provides devices to record biometric data for Aadhaar may have compromised the sensitive data, now, the Indian government has “declined” the claims. The government officials said that claims which said that the data has been “leaked” is…
Defray Ransomware Seen Targeting Education, Healthcare Industry
Sure… go after the verticals that have the poorest protection. Makes perfect sense. Chris Brook reports: Researchers observed a new, albeit small and selective ransomware campaign earlier this month targeting both education and healthcare verticals. The ransomware, dubbed Defray, comes hidden in rigged Microsoft Word document attachments, sent via email. Researchers with Proofpoint, who spotted…