Malwarebytes Releases State of Malware Report:
Information theft is now prevalent, according to the 2019 State of Malware Report, created annually by Malwarebytes'. Enjoy!
"While cryptomining died down by the second quarter, a new set of threats were eager to take its place: information stealers. These former banking Trojans— especially Emotet and TrickBot—evolved into droppers with multiple modules for spam production, lateral propagation through networks, data skimmers, and even crypto-wallet stealers." - via Malwarebytes' 2019 State of Malware Report
ENISA Releases 2018 Report
Quite often, ENISA is completely on target. Highly surprising for governement security agencies (given the paucity of competence displayed by other governemental information security orgs... Read the ENISA Report, and go figure...
The Chicago Five: Heroes All →
Japan Government Set To Hack Citizen Owned IoT Devices
In preparation for the country's 2020 Olympics (and - ostensibly - in order to avoid catastophic numbers of IoT vectored attacks during the Olympic events)... Probably about 5 years too late, though, as the enormity of fixing the problems may be insurmountable even for the Japanese Governmental Security Groups, who are well-known for attention to detail. Regardless there will certainly be an enormous number of surprises and what-not in their targeted bailiwick of connected devices. H/T
AppSecUSA 2018, Chenxi Wang's 'Defensible Application Security For The Artificial Intelligence Era' →
Three months hence (at the time of this writing), Chenxi Wang's superlative presentation detailing trust in an artificial intelligence epoch is still highly apropos, I reckon.
Weak-Kneed GoDaddy Security Implementation Permits Large-Scale Email Bomb Threat Transmissions
via the highly respected Dan Goodin - Security Editor at Ars Technica, comes the story of a fundamental design weakness at GoDaddy, Inc. (NYSE: GDDY), whcih permitted thousands of domains registered at GoDaddy, Inc. to be hijacked, leading to bomb-threat emails to be processed and delivered on December 13, 2018 (email-serving related data is contained in DNS records - which is not the flaw specifically).
Perhaps a modicum of diligence in ferreting out flaws (ideally on a continuous basis), instead of focusing on creating bullshit laden advertising touting your company's misaligned-to-reality information security architecture and engineering capabilities is in order GoDaddy, Inc.... Let's get those prioritties aligned correctly, and you'll end up with a posture that's squared-away.
University of Washington Develops Cellphone Sonar App To Detect Opioid Overdose
via Sarah McQuate, writing at the University of Washington's UW News, comes a story that may change the downward spiral of opiate addicts for the better...
"Researchers at the University of Washington have developed a cellphone app, called Second Chance, that uses sonar to monitor someone’s breathing rate and sense when an opioid overdose has occurred." - via Sarah McQuate, writing at the University of Washington's UW News
Senator Rubio: Latest Privacy Legislative Efforts A Futile Exercise
Senator Rubio's new privacy bill will prevent States from ratifying their own privacy laws; I wonder what his Constituency thinks of this.
I'm astonished that the good Senator bothers to leave his home in the morning to craft what is essentially a rehash of previous ineffective legislation for his 'American Data Dissemination Act of 2019’. Perhaps he should just phone-in his CRs (Clean or Not), Bills and what-not ... I'll wager his effectiveness, efficiency and popularity would rise exponentially...
Perhaps this weekend, I'll point my admittedly jaundiced (don't forget skeptical) gaze towards Simson Garfinkel, PhD's (Dr. Garfinkel is the United States Census Bureau's Senior Computer Scientist for Confidentiality and Data Access and the Chair of the Bureau's Disclosure Review Board) superb tome targeting the oft-uttered 'death of privacy'. Entitled in a apropos fashion: 'Database Nation: The Death of Privacy in the 21st Century". (Please note the preceding book link is not an affiliate link to booksellers - mh). Oh, and then there's this...