Troy Hunt

NOVEMBER 22, 2018

All that and more in this week's update. It's a no-blog week, but that doesn't mean any less is happening! This week, I've finally wrapped up the Lego Bugatti, got myself into the new iPad, connected my washing machine (I know, I know, I didn't plan it this way!) and then isolated it on a separate IoT network. What a time we live in.

IoT 68

IoT Cloud IT Security 68

IT Governance

OCTOBER 27, 2022

Annex A of ISO 27001 now refers to the updated information security controls in ISO 27002:2022, and the Standard requires organisations to document and monitor objectives. Meanwhile, although the 2022 version of ISO 27002 is significantly longer than its predecessor, the total number of controls has decreased from 114 to 93.

IT 119

IT Information Security Compliance Security 119

eSecurity Planet

MARCH 25, 2024

Vulnerability updates also play an important role in revealing vendor transparency or lack thereof. While the vulnerability was uncovered last August, Fortra updated its advisory last week, explaining that the CVE had been issued months later because the person who reported the vulnerability requested that it be issued.

Computer and Electronics 62

Computer and Electronics Cloud Authentication Cybersecurity 62

Security Affairs

APRIL 13, 2021

Microsoft patch Tuesday security updates address four high and critical vulnerabilities in Microsoft Exchange Server that were reported by the NSA. All the vulnerabilities are remote code execution that could allow attacks to compromise vulnerable installs, for this reason, the IT giant urges its customers to install the latest updates.

Cybersecurity 65

Cybersecurity Security Access IT 65

IT Governance

APRIL 9, 2024

114 of them are known to have had data exfiltrated, exposed or otherwise breached. We also found 15 organisations providing a significant update on a previously disclosed incident. Only 2 definitely haven’t had data breached. Source (New) Manufacturing USA Yes 1.1 Source (New) Manufacturing USA Yes 1.1

Data Privacy 52

Data Privacy Privacy Security Manufacturing 52

IT Governance

DECEMBER 5, 2023

In a 27 November update , Henry Schein said it had restored its US e-commerce platform, with its Canadian and European platforms expected to follow. We’ve also found 9 organisations providing a significant update on a previously disclosed incident. Data breached: 35 TB. WeMystic exposes 13.3 Only 3 definitely haven’t had data breached.

Data Privacy 106

Data Privacy Privacy Manufacturing Retail 106

Troy Hunt

FEBRUARY 21, 2018

The existing API documentation on HIBP has been updated so you can go there for all the implementation details. Down-speed is about 114 but getting anything up is a nightmare. This data also had a bunch of integrity problems which meant the actual number was somewhat less. Let me now talk about how you can use the API.

Passwords 111

Passwords Data breaches IT Search queries 111