In the News:
- Further confusion at TalkTalk claims it was hit by 'sequential attack' | The Register
- Talk Talk got hit by SQLi- an unforgiving web application vulnerability that gets missed, then found, then gets you free and embarrassing press.
- TalkTalk hack: What to do if hackers have your data | IT Pro
- This one's a little more thorough
- New DMCA Exemption is a Positive Step for Security Researchers
- The Library of Congress published the latest round of exemption requests for the Digital Millennium Copyright Act (DMCA), including a new exemption to the DMCA for security research...
- Senior exec says Alphabet remains ‘committed' to Chrome OS
- You'll hear conflicting reports, but it seems that AlphaGoog is working to merge these two operating systems. No action for most of you, but definitely something to be aware of.
- New zero-day exploit hits fully patched Adobe Flash [Updated] | Ars Technica
- Keeping your operating systems, browsers, and plugins up to date isn't enough… make sure your security program considers the occasional 0day. When computers and account misbehave, you want to detect it, not hear about it.
- Surprises abound in global survey of cyber-security skills | SC Magazine
- Millennials, Women, and Cybersecurity: New Survey Reveals an Alarming Trend | Inc.com
- Unexpected lack of awareness for the cybersecurity job market... we say (or hear) this all the time - InfoSec spends a lot of time in our own echo chamber. We need to actively recruit and advocate for the profession, not just preach at people.
- WikiLeaks Is Publishing the CIA Director's Hacked Emails | WIRED
- Vatican arrests two advisers over alleged links to leaked documents | Washington Post
- People forget the value of the information they handle, whether you're an executive, recruiter, conference organizer, secretary of state or chief spy- you are going to mishandle data. I believe folks need empowered as custodians, and feel responsible for the data they handle.
- Why NASA Needs a Programmer Fluent In 60-Year-Old Languages | Popular Mechanics
- Simply defined, technical debt is the backlog of old technologies that hard to support, and hard (if not impossible) to secure.
Slightly Less Random
Some of you don't follow sporty-ball, and I guess that that's okay. The season for America's favorite past time (Baseball) just ended, as the Kansas City Royals won the World Series in New York against the Mets. It was a great game that ended in extra innings, after an amazing come back… So if you see blue and white KC stuff around- that's why.