Continuity Management and Technology Services – News Reblog

New Attack exploiting serious Bluetooth weakness can intercept sensitive data – Ars Technica

August 17, 2019

Dubbed Key Negotiation of Bluetooth—or KNOB for short—the attack forces two or more devices to choose an encryption key just a single byte in length before establishing a Bluetooth connection. Attackers within radio range can then use commodity hardware to quickly crack the key. From there, attackers can use the cracked key to decrypt data passing between the devices. The types of data susceptible could include keystrokes passing between a wireless keyboard and computer, address books uploaded from a phone to a car dashboard, or photographs exchanged between phones.

Link

Risk Management

Open Banking: CFPB’s 1033 Rule and the Cost of Compliance

October 23, 2024

Information Security

In a global first, quantum computers crack RSA and AES data encryption – The Brighter Side of News

October 20, 2024

Risk Management

Company Behind Major Social Security Number Leak Files for Bankruptcy | PCMag

October 9, 2024

New Attack exploiting serious Bluetooth weakness can intercept sensitive data – Ars Technica

More Stories

Open Banking: CFPB’s 1033 Rule and the Cost of Compliance

In a global first, quantum computers crack RSA and AES data encryption – The Brighter Side of News

Company Behind Major Social Security Number Leak Files for Bankruptcy | PCMag

Continuity Management

What lies beneath: the growing threat to the hidden network of cables that power the internet | Internet | The Guardian

“Unprecedented” Google Cloud event wipes out customer account and its backups | Ars Technica

It’s been a bad week for public cybersecurity | TechRadar

Cellphone outage hits AT&T customers nationwide; Verizon and T-Mobile users also affected | Fox Business

Technology Management

Security outsourcing on the rise as CISOs seek cyber relief | CSO Online

The 10 biggest issues CISOs and cyber teams face today | CSO Online

In a global first, quantum computers crack RSA and AES data encryption – The Brighter Side of News

Two never-before-seen tools, from same group, infect air-gapped devices – Ars Technica

Crisis Management

More Than 390,000 Without Power In Louisiana Thursday | Weather.com

DICK’S shuts down email, locks employee accounts after cyberattack

Expert confirms Columbus Ohio data leak affects residents

Channel File 291 Incident RCA is Available | CrowdStrike

Emergency Management

How to Align Your Incident Response Practices With the New SEC Disclosure Rules – SecurityWeek

Why the toxins from the Ohio train derailment could have posed deadly threats for residents nearby – ABC News

Train derails, goes up in flames in Ohio, causes half of town to evacuate – ABC News

Shrinking Mississippi River Puts American Farm Trade at Risks

Risk Management

Open Banking: CFPB’s 1033 Rule and the Cost of Compliance

Company Behind Major Social Security Number Leak Files for Bankruptcy | PCMag

AT&T fined $13M for data breach after giving customer bill info to vendor | Ars Technica

TD Bank ordered to pay $28 mln by US CFPB for misreporting consumer credit data | Reuters

Compliance

6 regulatory moves, people whose days are numbered under Trump | Banking Dive

BPI: FDIC Bank Merger Rules Will Have ‘Chilling Effect’

FinTechs Entering US Will Need Sponsor Banks, Says Thredd CEO

BaaS Faces Regulatory Reckoning With OCC and FDIC Actions