Okay, so you did a Penetration Test and all you found was an insecure printer right? The fun things that you can find on Multi-function Printing devices and how it might affect compliance… Printers, scanners, copiers, and fax machines have become more and more complex over the years. I find that this is largely due to a […]
You are probably familiar with the classic security assessments: internal and external penetration testing, security risk assessments, and PCI gap assessments. You may not be as familiar with, or even aware of, other assessments that may be just as valuable for strengthening your security program. Some of these less familiar assessments are new, the result […]
It seems the team at the popular tech news and review site TheRegister.co.uk didn’t quite have enough Coffee this Monday morning as they mistakenly sent an email out to 3,521 of it’s subscribers with the email address details of 46,524 of it’s readers. It seems a lot less people subscribe than actually read the articles. The following […]
Travelodge has told customers who’ve received spam email that the company has not lost their credit card details, which is nice. The letter said: Our main priority is to ensure the security of our customers’ data, which is why I wanted to make you aware that a small number of you may have received a […]
Travelodge is investigating its IT systems to discover how customer email addresses have gone astray. Several other customers have blogged of similar experiences, here’s Shepy’s post on the apparent hack. Either LulzSec has taken a step down from hacking the US Senate and the CIA to target the motel chain, or Travelodge has been hit […]
The security breach that hit the website of Citigroup exposed data for more than 360,000 accounts, the bank said on Wednesday, about 80 percent more than it previously reported. Citigroup publicly disclosed the compromise last week, but said it involved about 200,000 accounts. Wednesday’s revision came amid an inquiry by the Connecticut Attorney General’s office, […]
Hackers who stole bank account details for 200,000 Citigroup customers infiltrated the company’s system by exploiting a garden-variety security hole in the company’s website for credit card users, according to a report citing an unnamed security investigator. The New York Times reported that the technique allowed the hackers to leapfrog from account to account on […]
The House of Commons’ perennial theft problem has become increasingly high tech, with sporadic thefts of computers in recent years turning into a veritable run on laptops, according to the latest figures. In a Commons answer last week, John Thurso detailed cases of theft on the Commons Estate over the last five years, for the […]
A local authority has signed an undertaking to improve the security of the personal data it holds after information about six vulnerable home support clients was stolen from a worker, the Information Commissioner’s Office (ICO) has said. North Lanarkshire Council’s guidance on how workers should use, transport and dispose of sensitive documents was “inadequate”, the […]
Surrey County Council has been fined £120,000 by the Information Commissioner’s Office for breaking the Data Protection Act. The council was rapped for three separate offences. Firstly, in May last year it sent mental and physical health information on 241 individuals to the wrong group email address. Recipients included cab and coach firms. The council […]