SANS Internet Storm Diary is reporting a dramatic increase in the scanning for a vulnerability in the CMS Movable Type – software similar in function to WordPress for the development of web sites and web content. Scans for Movable Type Vulnerability (CVE-2021-20837) – SANS Internet Storm Centre National Vulnerability Database …
This is what happens when you do not run patches and updates
The Information Commissioner’s Office has issued a £98,000 penalty to Tuckers Solicitors based in London. The solicitors firm suffered a ransomware attack where confidential information including, PII and case material was lost. UK lawyer fined for not patching fast enough before attack • The Register
Isle of Wight ferry company suffers a data breach. Do you need better cyber security?
Wightlink has reported a possible cyber security breach to the Information Commissioner’s Office and the local police and fears that it has lost control of customers’ personal identifiable information (PII). This PII may now be in the hands of hackers. Wightlink customers’ details stolen in cyber attack – BBC News …
The ICO steps in – The Scottish Government needs to be more transparent with respect to citizen’s personal information and the COVID-19 app
The Information Commissioner’s Office has issued a written reprimand to both the Scottish Government and NHS National Services Scotland about failures in how citizen’s personal data was used and handled by the NHS Scotland COVID Status app. Governments should not be making these types of mistakes. See the ICO article …
Now we have “stalkerware”
Stalkerware – Wikipedia Bruce Schneier has a link to an article that describes how stalkerware operates and the companies behind it. Vulnerability in Stalkerware Apps – Schneier on Security