From Security Weekly WikiJump to navigationJump to search
, 22:54, 12 December 2019
#[https://securityboulevard.com/2019/12/web-hosting-firm-11-hit-by-almost-10-million-gdpr-fine-over-poor-security-at-call-centre/ Web-hosting firm 1&1 hit by almost €10 million GDPR fine over poor security at call centre] Largest GDPR fine so far. Fine being appealed, security approved, initially too easy to obtain other customer data.
#[https://www.technadu.com/ipr-software-exposed-thousands-via-corporate-data-leak/87161/ iPR Software Exposed Thousands via a Humongous Corporate Data Leak] Marketing firm iPR Software exposed thousands of customer records for a month through protected S3 bucket. Organizations affected include General Electric, Dunkin Donuts, CenturyLink, Xerox, Nasdaq, California Courts and Mercury Public Affairs. Bucket open 10/15-11/26/19.
#[http://www.homelandsecuritynewswire.com/dr20191206-mobile-devices-blur-work-and-personal-privacy-increasing-cyber-risks Mobile Devices Blur Work and Personal Privacy Increasing Cyber Risks] Queensland University of Technology released study organizations are not reacting quickly enough to mitigate risks associated with workspace personal device use, particularly BYOD.#[https://www.cyberscoop.com/fbi-russian-apps-counterintelligence-faceapp-schumer/ FBI assesses Russian apps may be counterintelligence threat] Particular concerns over FaceApp and Russian laws which permit government access to device and user data.
== Tyler's Stories ==