Category: Operations Security

Federal, Operations Security, Policy, Security

Senator proposes mandatory labeling for products with mics, cameras

October 9, 2019

Via: ArsTechnica

Much in the same way that food labels are now required to disclose the potential presence of allergens such as peanuts, one Senator is proposing a law that would require tech companies to include a label on products disclosing the […]

Federal, Operations Security, Policy, Security

Europe’s top court says active consent is needed for tracking cookies

October 1, 2019

Via: Tech Crunch

Europe’s top court has ruled that pre-checked consent boxes for dropping cookies are not legally valid. Consent must be obtained prior to storing or accessing non-essential cookies, such as tracking cookies for targeted advertising. Consent cannot be implied or assumed. […]

Operations Security, Policy, Security, State & Local

San Diego’s smart streetlights misunderstood, officials say

September 25, 2019

Via: StateScoop

Privacy advocates are clashing with law enforcement in San Diego over the city’s network of modern streetlights, which like those in many cities are outfitted with environmental monitors, acoustic sensors and video cameras. While city officials say the streetlights feature […]

Attacks & Breaches, Operations Security, Security

Cyber-security incident at US power grid entity linked to unpatched firewalls

September 9, 2019

Via: ZDnet

A cyber-security incident that impacted a US power grid entity earlier this year was not as dangerous as initially thought, the North American Electric Reliability Corporation (NERC) said last week. In a report highlighting the “lessons learned” from a past […]

Networking Security, Operations Security, Security

Ransomware threat raises National Guard’s role in state cybersecurity

August 26, 2019

Via: StateScoop

National Guard units already play a large role in state governments’ cybersecurity activities, such as protecting election systems, but the threat of ransomware to cripple a state or city organization is a growing concern for uniformed personnel, the top military […]

Hardware, Operations Security, Security, Tech

Unpatchable security flaw found in popular SoC boards

August 20, 2019

Via: ZDnet

Security researchers have discovered an unpatchable security flaw in a popular brand of system-on-chip (SoC) boards manufactured by Xilinx. The vulnerable component is Xilinx’s Zynq UltraScale+ brand, which includes system-on-chip (SoC), multi-processor system-on-chip (MPSoC), and radio frequency system-on-chip (RFSoC) products […]

Operations Security, Security

Google: You’re sticking with passwords that have already been hacked

August 16, 2019

Via: ZDnet

Google has released the results of a large-scale study about password habits that shows why hackers use ‘password-spraying’ attacks on online accounts: many users stick with the same password, even when they’re warned it’s been compromised. Password spraying has emerged […]

Mobile Security, Operations Security, Security

Apple’s warning: Break Safari’s web-tracking rules and we’ll hit back

August 15, 2019

Via: ZDnet

Apple’s Safari WebKit team has posted its official policy outlining its stance on web-tracking prevention, which it’s implemented in Safari’s Intelligent Tracking Prevention (ITP) technology. ITP broadly aims to limit marketers from tracking iOS and macOS Safari users across different […]

Operations Security, Security, Software, Tech

Silent Windows update patched side channel that leaked data from Intel CPUs

August 7, 2019

Via: ArsTechnica

Microsoft last month pushed a silent update that mitigated a serious vulnerability in all CPUs Intel has introduced since 2012, researchers who discovered the flaw said Tuesday. The vulnerability—discovered and privately reported to Intel 12 months ago—resided in every CPU […]

Attacks & Breaches, Operations Security, Security

Cybersecurity officials warn state and local agencies (again) to fend off ransomware

July 31, 2019

Via: ArsTechnica

Yesterday, the Georgia Department of Public Safety revealed that laptop computers in state police and Capitol police vehicles—as well as laptops used by Georgia’s Motor Carrier Compliance Division (the officers who operate trucking scales and safety spot checks)—had been taken […]