Texas Sues GM for Collecting Driving Data without Consent Texas is suing General Motors for collecting driver data without consent and then selling it to insurance companies: From CNN: In car models from 2015 and later, the Detroit-based car manufacturer allegedly used technology to “collect, record, analyze, and transmit highly detailed driving data about each…
Read More
Hackers targeted AutoCanada in a cyberattack last Sunday that impacted the automobile dealership group’s internal IT systems, which may lead to disruptions. The company says that it took action immediately after detecting the incident to protect its network and data. External cybersecurity experts have been contracted to help with containment and remediation efforts. The investigation…
Read More
An investigation dating back almost ten years has seen the extradition this week to the United States of a man suspected to be the head of one the world’s most prolific Russian-speaking cybercriminal gangs. The UK’s National Crime Agency (NCA) says it has been investigating a cybercriminal using the online handle “J P Morgan” since…
Read MoreUpcoming Speaking Engagements This is a current list of where and when I am scheduled to speak: I’m speaking at eCrime 2024 in Boston, Massachusetts, USA. The event runs from September 24 through 26, 2024, and my keynote is on the 24th. The list is maintained on this page. Tags: Schneier news Posted on August…
Read MoreIvanti Releases Security Updates for Avalanche, Neurons for ITSM, and Virtual Traffic Manager | CISA
Ivanti released security updates to address multiple vulnerabilities in Ivanti Avalanche, Neurons for ITSM, and Virtual Traffic Manager (vTM). A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Ivanti advises users to reduce their attack surface and follow industry best practices by adhering to Ivanti’s network configuration…
Read MoreAdobe released security updates to address multiple vulnerabilities in Adobe software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates: Security Update Available for Adobe Illustrator | APSB24-45 Security…
Read More
Google says it is taking a privacy-minded approach to the integration of AI features on Android devices, implementing end-to-end protection to secure data in transit while keeping the most sensitive data locally on the device. The data that reaches Google’s cloud infrastructure for processing is protected by state-of-the-art encryption, access controls, and tight unauthorized access monitoring.…
Read More
A critical vulnerability in SolarWinds’ Web Help Desk solution for customer support could be exploited to achieve remote code execution, the American business software developer warns in a security advisory today. The company has released a hotfix and says that the security issue, tracked as CVE-2024-28986, is a Java deserialization that would allow an attacker to run commands…
Read More
‘What’s important about the channel is it’s a community. …This is where you have an opportunity to learn from your peers. All that knowledge is just sitting right here that can help you with some challenge you’re having,’ says Corey Kirkendoll, president and CEO of 5K Technical Services. When it’s time for an MSP to…
Read More
Tenable®, the exposure management company, today announced it was named the top performer in cloud security in the 2024 CRN Annual Report Card Award from CRN®, a brand of The Channel Company. This award honors technology vendors for providing best-in-class products, partner program resources, partner support and managed and cloud services. “It is a great…
Read More