Software Integrity Blog

Archive for the 'Data Breach Security' Category

 

Equifax breach: Catastrophic, but no game changer yet

The Equifax breach generated plenty of sound and fury. Has the government responded with stricter regulation? Have companies stepped up their security game?

Continue Reading...

Posted in Data Breach Security | Comments Off on Equifax breach: Catastrophic, but no game changer yet

 

Fixing the CVE program, your personal data checking out and taking flight

Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup. What’s in this week’s Security Mashup, you ask? Fixing the CVE program, your personal data has already “checked out,” and it even “may potentially” have taken flight. Watch this week’s episode below to see why these stories are trending or read the transcript below.

Continue Reading...

Posted in Data Breach Security, Mobile App Security | Comments Off on Fixing the CVE program, your personal data checking out and taking flight

 

These hacks brought to you by ‘leaky’ APIs

Leaky APIs expose customer data for free to anyone who knows the URL. What are you doing to protect your customers from hackers targeting your APIs?

Continue Reading...

Posted in Data Breach Security, Web Application Security | Comments Off on These hacks brought to you by ‘leaky’ APIs

 

A test hack, don’t let Ghostscript haunt you, and a helpful hacker

Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup. What’s in this week’s Security Mashup, you ask? Not a real hack, but maybe a test hack, don’t let Ghostscript haunt you, and a helpful hacker. Watch this week’s episode below:

Continue Reading...

Posted in Data Breach Security, Open Source Security | Comments Off on A test hack, don’t let Ghostscript haunt you, and a helpful hacker

 

Facing off with Google, Snap out of it, and Password protection

Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup. What’s in this week’s Security Mashup, you ask? Facing off with Google, Snap out of it, and Password protection. Watch this week’s episode taped live at Black Hat USA 2018.

Continue Reading...

Posted in Data Breach Security, Open Source Security | Comments Off on Facing off with Google, Snap out of it, and Password protection

 

SingHealth hit with ‘unprecedented’ cyber attack

After the SingHealth cyber attack, it took a week for attackers to steal the personal data of 1.5 million people—about a quarter of the city-state’s population.

Continue Reading...

Posted in Data Breach Security, Healthcare Security & Privacy | Comments Off on SingHealth hit with ‘unprecedented’ cyber attack

 

GDPR raises the stakes on data breaches

Another week, another list of data breaches resulting from vulnerabilities in third-party contractors for high-profile companies.

Continue Reading...

Posted in Data Breach Security, Software Compliance, Quality & Standards | Comments Off on GDPR raises the stakes on data breaches

 

Timehop breach provides GDPR response template

The Timehop breach disclosed 21 million individuals’ account information. And now we know what public disclosure of a breach might look like under GDPR.

Continue Reading...

Posted in Data Breach Security, Software Compliance, Quality & Standards | Comments Off on Timehop breach provides GDPR response template

 

Ex-CIA employee insider threat, FlightTrader24 hack, and RedHat licenses

Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup episode. What’s in this week’s Security Mashup episode, you ask? Ex-CIA employee insider threat and how he was outed, insight into the FlightTrader24 hack, and what you need to know about the RedHat open source license copyright conundrum. Watch and learn more:

Continue Reading...

Posted in Data Breach Security, Mergers & Acquisitions, Open Source Security | Comments Off on Ex-CIA employee insider threat, FlightTrader24 hack, and RedHat licenses

 

World Cup device hacking dangers, Apple malware, and VPNFilter updates

Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup episode. What’s in this week’s Security Mashup episode, you ask? The FIFA World Cup overfloweth—with hackers, forgeries take a bite out of Apple security, and routing us to “Hackerville” (a VPNFilter update). Watch this episode here:

Continue Reading...

Posted in Data Breach Security | Comments Off on World Cup device hacking dangers, Apple malware, and VPNFilter updates