Why You Should Prioritize Your Privacy Policies
By Jason M. Schwent, Senior Counsel, Clark Hill The enactment of the California Online Privacy Protection Act of 2003 created…
October 2023
GraphRunner Activity Detection: Hackers Apply a Post-Exploitation Toolset to Abuse Microsoft 365 Default Configurations
Microsoft 365 (M365) is leveraged by over a million global companies, which can pose severe threats to the customers relying…
EPA Won’t Force Water Utilities to Audit Their Cybersecurity
The industry pushed back: Despite the EPA’s willingness to provide training and technical support to help states and public water…
The Week in Cyber Security and Data Privacy: 16–22 October 2023
Welcome to a new series of weekly blog posts rounding up the biggest and most interesting news stories. At the…
How did the Okta Support breach impact 1Password?
1Password detected suspicious activity on its Okta instance after the recent compromise of the Okta support system. The password management…
PII Belonging to Indian Citizens, Including their Aadhaar IDs, Offered for Sale on the Dark Web
Hundreds of millions of PII records belonging to Indian residents, including Aadhaar cards, are being offered for sale on the…
Spain police dismantled a cybercriminal group who stole the data of 4 million individuals
The Spanish police have arrested 34 members of the cybercriminal group that is accused of having stolen data of over…
CISA adds second Cisco IOS XE flaw to its Known Exploited Vulnerabilities catalog
US CISA added the vulnerability CVE-2023-20273 in Cisco IOS XE to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and…
Cisco warns of a second IOS XE zero-day used to infect devices worldwide
Cisco found a second IOS XE zero-day vulnerability, tracked as CVE-2023-20273, which is actively exploited in attacks in the wild.…
Cybersecurity And The Patching Paralysis Problem
Summary: With dozens of apps, systems and devices to keep up to date, many IT departments suffer from ‘patching paralysis’.…