One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 807799 |
| Date de publication | 2018-09-14 13:00:00 (vue: 2018-09-14 16:01:00) |
| Titre | Things I Hearted this Week, 14th September 2018 |
| Texte |
With everything that keeps going on in the world of security, and the world at large, most eyes were focused on Tim Cook as he and his merry men took to the stage and announce the latest and greatest in Apple technology.
There didn’t seem to be anything totally mind-blowing on the phone end. Just looked to be more bigger, faster, and powerful versions of the iPhones at eye-watering prices.
The Apple watch now has a built-in FDA-approved ECG heart monitor. Which is pretty cool as an early-warning system that a stroke is imminent - I assume to allow you to take some smart HDR selfies, apply the correct filters, and post to Instagram before you collapse.
But enough about that, let’s get down to business.
British Airways Breached
BA suffered a rather large breach which included payment information (including CVV) and personal details.
While the investigation is ongoing, some security experts believe the breach was caused due to malicious code being injected into one of the external scripts in its payment systems.
British Airways hack: Infosec experts finger third-party scripts on payment pages | The Register
As an affected customer, I accept that companies get breached. But the advice seemed pretty poor.
British Airways breached | J4vv4D
Boards need to get more technical - NCSC
The government is calling on business leaders to take responsibility for their organisations’ cyber security, as the threat from nation state hackers and cyber criminal gangs continues to rise. Ciaran Martin, head of NCSC believes that cybersecurity is a mainstream business risk and that corporate leaders need to understand what threats are out there, and what are the most effective ways of managing the risks. They need to understand cyber risk in the same way they understand financial risk, or health and safety risk.
NCSC issues new advice for business leaders as Ciaran Martin admits previous guidance was “unhelpful” | New Statesman
Hunting in O365 logs
Cloud is great, but sometimes making sense of the logs can be a pain. If you’re struggling with O365 logs, then this document could be really useful.
Detailed properties in the Office 365 audit log | Microsoft
GCHQ data collection violated human rights, Strasbourg court rules
GCHQ’s methods in carrying out bulk interception of online communications violated privacy and failed to provide sufficient surveillance safeguards, the European court of human rights has ruled in a test case judgment.
But the Strasbourg court found that GCHQ’s regime for sharing sensitive digital intelligence with foreign governments was not illegal.
It is the first major challenge to the legality of UK intelligence agencies intercepting private communications in bulk, following Edward Snowden’s whistleblowing revelations.
GCHQ data collection violated human rights, Strasbourg court r |
| Envoyé | Oui |
| Condensat | $600 “so 14th 2018 365 about accept access administration admits advice affected after agencies agency agency's airways albeit all allow allowing amazon ample announce announced anything apple apply approach approved are aren’t assessments associated assume audit authentication away bad been before being believe believes better bigger bleeping blog blogger blowing boards book breach breached british browser built bulk business but calling can car carry carrying case caused challenge chrome ciaran cloning cloud code collapse collection communications companies company compromised computation computer constructive continues cook cool corporate correct could court credentials criminal cryptocurrency cryptographic customer cvv cyber cybersecurity data department detailed details device devices didn’t digital document don’t down drug due early ecg edward effective effectiveness end enough entry equipment european everything examples experts extension external eye eyes factor failed far faster favourite fda feel filters financial finger first fixed fob fob’s focused following food foreign found from gain gangs gchq gchq’s general's get github gizmondo going good google government governments great greatest guardian guidance hack hack: hacked hackers hacking had has have hdr head health heart hearted his human hunt hunting i’ve idea illegal imminent included including increase information infosec injected inspector instagram installed institutes integrate intelligence intercepting interception investigation iphones issues it’s its j4vv4d jon judgment just keeps key keyless large latest leaders legality less let’s like log login logins logs looked mainstream major making malicious managing marketed martin may medical mega men merry method methods microsoft mind misunderstanding mobs model monitor more most nation ncsc nearby need networked new not now o365 off office one ongoing online organisations’ otherwise out over owner’s pages pain party passwords payment personal personally phone pitchforks poor possible post powerful premarket pretty previous prices privacy private processes properties prove provide publicly ramp rather read really recommend recommendations recommends reconsider regime register report report's researchers responsibility revelations review rights rise risk risks ronson ruled rules safeguards safety same says scientific scripts scrutiny seconds security seem seemed selfies sense sensitive september service services' shamed shamed” shaming shares sharing should show signals simple smart snowden’s some sometimes stage state statesman steal steer storage store strasbourg stroke struggling suffered sufficient surveillance system systems take talking technical technology tended tesla tesla’s test than theft then there’s these they're things third threat threats tim time today too took topic totally trace troy turn two under understand uploaded useful user’s users version versions very violated warning watch watchdog watering way ways web week what when which whistleblowing will wired wirelessly without world worth would yields you’re you’ve |
| Tags | Data Breach Threat Guideline |
| Stories | Tesla |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.