A security researcher (and by the way ex-NSA guy) named Patrick Wardle released an exploit that enables attackers to exfiltrate passwords from macOS reportedly hours before Apple released their new operating system macOS High Sierra. http://www.zdnet.com/article/apple-macos-high-sierra-password-vulnerable-to-password-stealing-hack There’s no point in
Here’s a story about what caused hackers to be able to compromise the Equifax hack which eventually led to 143 million accounts to be accessed: http://www.zdnet.com/article/equifax-confirms-apache-struts-flaw-it-failed-to-patch-was-to-blame-for-data-breach The cause was a series of patches that were available since March that slipped
You probably have heard of Equifax getting hacked and some 143 million records stolen, tons of articles everywhere about that. Here’s one you probably didn’t read and it’s about how if you receive help from Equifax on this data breach,
Here’s a story about how hackers are using hotel wi-fi networks to attack users, corporate espionage and for political targets: http://www.zdnet.com/article/hackers-are-using-hotel-wi-fi-to-spy-on-guests-steal-data Attacks come in various flavors (social engineering, network based and malware). For social engineering that’s on the user to be
Several millions of Verizon customer data was exposed on an Amazon cloud storage endpoint that was incorrectly configured by a vendor. It allowed anyone with that link to access the information. More about the hack can be found at this
Check out this article: http://www.zdnet.com/article/eu-seeks-to-make-it-easier-for-police-to-grab-data-from-us-tech-firms. Summary: Due to all the recent attacks, the EU is looking to increase their ability to access data on servers stored on their continent (even by US tech companies). I get, and I understand why they
It’s time for a new logo. Back in 2010, when I founded IronBox (it was called LockBox), I had a very specific vision for the company. Between 2012-2014 the company strayed away from that vision. Mistakes were made, but valuable
Seems like everyone but identity thieves have heard about spell checkers. Check out this suspicious text message I received apparently from Wells Fargo. Silly identity thief, spelling errors are a dead giveaway. Always be cautious of any text message asking you
St. Jude Medical released security patches for one of the medical devices it produces according to ZDNet’s article at http://www.zdnet.com/article/st-jude-releases-security-patches-for-vulnerable-cardiac-devices. Another medical device hack, yawn and boring right? Not so fast, well the security firm that found the vulnerability, MedSec, was apparently
IronBox specializes in Internet security, data protection and application security. Our team members are recognized security experts that have helped protect some of the industry’s highest value and most targeted data.
Delighting customers with premium data protection, prompt support and easy-to-use software services is our passion.