A School of Information Studies faculty member is heading to Washington, D.C. to discuss a new approach to cloud-stored data management architecture and to unveil a new structural template that can be adopted by entities of all types and sizes to strengthen the data privacy and security blanket across an entire region.
CS Digest Section: RECENT HEADLINES
Critical Vulnerabilities in Microsoft Windows Operating Systems
On January 14, 2020, Microsoft released software fixes to address 49 vulnerabilities as part of their monthly Patch Tuesday announcement. Among the vulnerabilities patched were critical weaknesses in Windows CryptoAPI, Windows Remote Desktop Gateway (RD Gateway), and Windows Remote Desktop Client. An attacker could remotely exploit these vulnerabilities to
New US Bill Wants to Assign State Cybersecurity Coordinators
Four U.S. Senators have introduced a bipartisan bill that will require the Department of Homeland Security (DHS) to appoint cybersecurity effort coordinators in every state to orchestrate cyberattack response and remediation efforts, and to improve coordination between federal, state, and local entities.
Equifax to Pay Customers $380.5 Million as Part of Final Breach Settlement
Equifax has agreed to pay $380.5 million to resolve allegations related to the 2017 data breach in which hackers stole information belonging to some 147 million Americans, under the terms of a settlement approved by a federal judge.
FBI Says State Actors Hacked US Govt Network With Pulse VPN Flaw
FBI said in a flash security alert that nation-state actors have breached the networks of a US municipal government and a US financial entity by exploiting a critical vulnerability affecting Pulse Secure VPN servers.
Citrix Ships Patches as Vulnerable Servers Come Under Attack
Citrix has issued its first set of patches fixing a nasty vulnerability that's been hanging over some of its biggest products.
WeLeakInfo.com Seized For Selling Info from Data Breaches, 2 Arrested
As a clear indication of how law enforcement views the commercial disclosure of stolen information, the FBI has seized the WeLeakInfo.com domain and international law enforcement arrested two individuals for selling subscriptions to data exposed in breaches.
Critical WordPress Bug Leaves 320,000 Sites Open to Attack
Authentication bypass bugs in WordPress plugins InfiniteWP Client and WP Time Capsule leave hundreds of thousands of sites open to attack.
https://threatpost.com/wordpress-bug-leaves-sites-open-to-attack/
Hacker Leaks Passwords for More Than 500,000 Servers, Routers, and IoT Devices
A hacker has published this week a massive list of Telnet credentials for more than 515,000 servers, home routers, and IoT (Internet of Things) "smart" devices.
Windows 7 Gets Final Monthly Rollup Update Before End Of Life
Windows 7 has just received its last set of security updates. After today, Windows 7 won't receive any security or non-security updates from Microsoft, and it is now considered an unsupported operating system.
