Data Protection

Apple Builds Security Into the Core of iOS 12

Apple's latest update for iOS incorporates ways to stop Safari snooping, data leaks, password reuse, and hacking.

Amazon Investigating Employees Leaking, Selling Data

Amazon confirmed this week that it's looking into claims that some of its employees have been taking bribes to leak and sell confidential data, like internal sales metrics and email addresses.

Chief Risk Officer: What is a CRO? (and Why You Need One)

Learn about the Chief Risk Officer role in Data Protection 101, our series on the fundamentals of information security.

End of An Era As Kelihos Botnet Operator Jailed

A Russian man pleaded guilty this week to running Kelihos, a botnet that for years helped facilitate a lengthy spam and credential-harvesting campaign.

September SAP Update Patches 14 Vulnerabilities

SAP released its monthly critical patch update for September this week, fixing 14 vulnerabilities, including some that could have allowed users to access restricted data or cause a database server to crash.

Chief Compliance Officer: What CCOs Do (and Why Your Company Should Have One)

Learn about the Chief Compliance Officer role in Data Protection 101, our series on the fundamentals of information security.

Remote Workforce Security Tips & Best Practices

18 security pros share their top tips and best practices for securing a remote workforce.

Stealing Passcodes Over the Air

Researchers have published a paper on a new side-channel attack that essentially turns Android devices into sonar systems. It allows attackers, via acoustic signals, to track a person's finger movements on devices, something which could allow them to capture sensitive data, like passwords.

FOIA Request Portal Exposed Social Security Numbers, PII

Until it was fixed last week, an error in a Freedom of Information Act (FOIA) request portal exposed information belonging to requesters, including full and partial Social Security numbers.

Fortnite Vulnerability Pits Epic Games Against Google

A flaw in Epic Games' Fortnite Android installer could have allowed an attacker to silently install malware on devices. The company's CEO took umbrage with the way Google disclosed the vulnerability this week.

Don't Fall Behind