Experian fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned. Experian says it has plugged the data leak, but the researcher who reported the finding says he fears the same weakness may be present at countless other lending websites that work with the credit bureau.
Reiknistofa Bankanna (RB), an IT service provider for Icelandic financial institutions, recently overhauled its security infrastructure with an array of physical security technology including cameras, access control, and video analytics through one unified interface.
Click Studios has advised customers to stay vigilant and ensure the validity of any email sent to them, as a bad actor has commenced a phishing attack with a "small number of customers having received emails requesting urgent action."
The National Center for Sports Safety and Security (NCS4) team has announced that the 12th Annual National Sports Safety and Security Conference & Exhibition will be held on Nov. 9-10 at the JW Marriott Desert Ridge Resort & Spa in Phoenix. The 2021 conference theme is Reconnect. Reflect. Inspire.
CYBER.ORG announced the kickoff of a new pilot program created to recruit a diverse body of K-12 students to pursue undergraduate cybersecurity degrees and bolster the U.S. cybersecurity workforce. Through a $250,000 grant provided by the National Security Agency (NSA), CYBER.ORG will develop a K-12 feeder program for Grambling State University (GSU) in Northern Louisiana, a Historically Black College and University (HBCU) and the first university in the state to create a cybersecurity undergraduate degree. The goal is to replicate this model between school districts and HBCU’s across the country.
To help software vendors and customers defend against these attacks, CISA and the National Institute for Standards and Technology (NIST) have released Defending Against Software Supply Chain Attacks. This new interagency resource provides an overview of software supply chain risks and recommendations. The publication also provides guidance on using NIST’s Cyber Supply Chain Risk Management (C-SCRM) framework and the Secure Software Development Framework (SSDF) to identify, assess, and mitigate risks.
Marking the 40th Anniversary of National Crime Victims’ Rights Week (NCVRW), the Justice Department’s Hate Crimes Enforcement and Prevention Initiative announced newly translated hate crimes resources in eight languages for the department’s hate crimes website, www.justice.gov/hatecrimes.
Pima Community College, a comprehensive two-year institution serving students and employers throughout Pima County in Arizona and beyond, has deployed a robot for campus patrolling, saving security costs.
Tracy Hill is promoted to Director of Security at SGMC. Hill has been with SGMC since 2005, and has worked within the security field for over 25 years.
In it's The State of Email Security report, Mimecast reports that 79% of security leaders indicate their companies had experienced a business disruption, financial loss or other setback in 2020 due to lack of cyber preparedness.