techradar – MWC organizers fined over GDPR biometric security concerns
“The GSMA, the organizers behind Barcelona’s annual Mobile World Congress (MWC), have been fined €200,000 for not carrying out a data protection impact assessment (DPIA)”
ITdaily – Je wachtwoord met 8 tekens is te kraken op 5 minuten
“Een complex wachtwoord met een combinatie van hoofd- en kleine letters, speciale tekens en cijfers kan je vandaag zonder al te speciale hardware kraken in amper vijf minuten tijd. Ook iets langere wachtwoorden zijn niet onhackbaar.”
Nieuwsblad – 12 maanden cel voor factuurfraude: dertiger aast op 65.600 euro van VUB
“Hij onderschepte een factuur die was gericht aan de Vrije Universiteit Brussel (VUB) met de bedoeling zichzelf te verrijken met 65.617 euro.”
nakedsecurity – FBI and FCC warn about “Juicejacking” – but just how useful is their advice?
“Do the security improvements introduced in the wake of the Mactans juicejacking tool back in 2011 still hold up? We think they do, based on plugging an iPhone (iOS 16) and a Google Pixel (Android 13) into a Mac (macOS 13 Ventura) and a Windows 11 laptop (2022H2 build).”
HealthcareITNews – Cybersecurity: addressing the ‘termination gap’ and protecting data
“With the common disconnect between IT and human resources departments, healthcare systems are often leaving terminated employees’ access credentials active for potentially months after they’ve left an organization. It’s a growing vulnerability exploited for cyberattacks. “
SCMedia – Illinois hospital forced into EHR downtime after cyberattack
“After a week of network downtime, officials say they’ve been able to restore a portion of the impacted systems.” … “While the hospital continues its recovery efforts, the cybercriminals are threatening to leak 4GB of data tied to patients with infectious data, according to local media outlets.”
VRTNWS – Wereldwijde operatie tegen cybercriminaliteit: meer dan 100 mensen opgepakt in 13 landen
“Het Europese justitienetwerk Eurojust schat dat er gegevens te koop waren die gestolen waren vanop 460.000 verschillende toestellen, goed voor zo’n 2 miljoen slachtoffers.”
VentureBeat – Multifactor authentication: Keeping employee data secure through digital ID management
“MFA combines the traditional use of a username and password with the need to verify additional layers of security. This makes it much harder for someone to access your information.”
Malwarebytes – LastPass was undoen by an attack on a remote employee
“The company has now revealed that the individual(s) responsible for the attack also compromised a remote employee’s computer, in order to capture credentials used in the second attack.”
vrtnws – Cyberveiligheid stad Antwerpen had tientallen kwetsbaarheden: audit waarschuwt in 2021 al voor manke beveiliging
“Uit de doorlichting blijkt ook dat tijdens gesprekken die de onderzoekers doen met medewerkers van de stad Antwerpen, er niet op alle externe systemen multi-factor authenticatie is ingesteld.”