PALM BEACH, FL - Right at the start of the year's busiest shopping season, retailer Macy's notified impacted customers (by letter) that an unauthorized third party was able to access sensitive customer payment information from the Macys.com checkout and wallet pages. Macy’s notified impacted customers (by letter); portion of letter. The following information may have been accessed if it was typed into the affected web-pages by a customer: Payment card … [Read more...]
New “Mind Your Own Business Act” Allows for Fines, Jail Time for Privacy Violations
WASHINGTON - Senator Ron Wyden, an Oregon Democrat, has introducedlegislation, called the Mind Your Own Business Act, that would make it more difficult for online platforms to collect and use customer data. The bill is in some ways similar to the European Union’s General Data Protection Regulation (GDPR). Among other things, the bill would: Give the Federal Trade Commission the authority to establish minimum privacy and cyber-security standards. Allow the FTC to … [Read more...]
It’s National Cybersecurity Awareness Month; Stay Safe With Simple Online Tips
PALM BEACH, FL –The Attorney General of the State of Florida, Ashley Moody has issued a Consumer Alert in recognition of National Cyber-security Awareness Month. The video details some simple steps consumers can take to help avoid becoming a victim of various security threats and online scams such as those which target Internet users with tech support, malware, phishing and ransomware. Today more than ever, our daily lives are dependent on the internet. While advances … [Read more...]
Email Phishing Campaign Using Legitimate Top-Level Domain to Evade Spam Filters
PALM BEACH, FL – A sophisticated email phishing campaign is making the rounds while evading email filters by using a Google domain redirect. According to ThreatPost.com, a leading source of information about IT and business security, the campaign uses percentage-based URL encoding to deceive users. The campaign makes use of what’s called percentage-based URL encoding – a basic URL-encoding technique in which normal ASCII characters (i.e., “abc” and “123”) are converted … [Read more...]
885 Million Customer Records Exposed by Country’s Largest Title Company, FAF
PALM BEACH - Earlier this week, it was reported that one of the country's largest titles companies, First American Financial Corp (NYSE: FAF), unknowingly exposed up to 885 million files related to real estate title insurance records dating from 2003 to 2019. Anyone with a URL for a valid document could view other documents by modifying a single digit in the URL. The records exposed by the website included critical financial information and documents such … [Read more...]
Personal Info of 500 Million Guests Exposed in Marriott’s Starwood Reservation System
NEW YORK, NY - One of the world's leading global hotel groups disclosed that a guest reservation database, which covers a number of major hotel brands, suffered a large data breach. An internal investigation showed that unauthorized access had been occuring since 2014. The intrusion went unnoticed for four years by Starwood, which was acquired by Marriott in 2016 for $13.6 billion. It was uncovered in early September, when a security tool alerted Marriott officials to an … [Read more...]
“Global Internet Crash” Diverted As ICANN Implements DNS Security Enhancements
NEW YORK, NY – Early last month, The Internet Corporation of Assigned Names and Numbers (ICANN), which is responsible for maintaining the registry of domain names and IP addresses, was preparing to implement the very first change to the “cryptographic keys” which help protect the Domain Name System (DNS) - the Internet's address book. The change had been delayed for over a year as ICANN reviewed last-minute data about the change and accessed any potential risk to the … [Read more...]
Two New Alternative URLs Hit Superhighway
NEW YORK, NY – If you’re looking around for a few good ways to confuse new prospective customers, you’ve got two new great opportunities to completely derail even your best marketing efforts; .LUXE and .PAGE new gTLDs have just worked their way into the mix. Minds + Machines, the company behind .LUXE domain names, which are intended to serve the Ethereum, blockchain and security industry, has released the .LUXE domain which opens for general availability on November 6, … [Read more...]
Gargiulo Reiterates Necessity for .COM in New Forbes Domain and Branding Article
NEW YORK, NY - Michael Gargiulo, owner of VPN.com, a group of virtual private network consultants, is also part of what Forbes Magazine calls its “Forbes Technology Council”, an invitation only community for senior technology executives. Gargiulo, who I have begun to follow for his ‘straight-shooter’ domain advice, writes periodically for Forbes Magazine and certainly believes in the value of a great domain name, indicated by his decision in 2017 to purchase VPN.com for … [Read more...]
New Facebook Data Breach Effecting 50 Million Accounts; Doubling Security Staff
NEW YORK, NY - On Friday, September 28, 2018 Facebook said that an attack on its computer network had affected the personal information of nearly 50 million users. The attackers exploited the "View As" feature that allows users to see their Facebook page the way someone else would. This could allow the attackers to take over Facebook accounts. Facebook has fixed this issue and informed law enforcement. They also do not know if the affected accounts were misused or if user … [Read more...]
The Politics of Facebook: Zuckerberg to Testify Before Congressional Lawmakers
NEW YORK – You have to admit that it an amazing time in history when a computer programming entrepreneur must face the United States Government due to his innovative social network becoming one of the most powerful influencer tools in the World. Beginning tomorrow, Tuesday April 10, 2018, Facebook Chairman and Chief Executive Officer Marc Zuckerberg will testify before lawmakers in what is expected to be a two-day heavy-hitter grilling on the very serious privacy and … [Read more...]
Bad News: Beware and “Be Aware” of “Meltdown” and “Spectre” Vulnerabilities
NEW YORK, NY - As the title suggests, you should both Beware, and "Be Aware" of these new security vulnerabilities that effect pretty much every Intel processor since 1995. I say "Be Aware" because although their patches available, there is not much that can be done to fully mitigate this issue until all or most computer hardware is redesigned. This is bad news because everyone is effected, and all computers are going to need to be replaced, it seems. Meltdown and Spectre … [Read more...]
Misfortune Anyone? This Dangerous Vulnerability Could Be Lurking In Your Network Router
NEW YORK, NY - Misfortune Anyone? Today, WordFence [I really love these people], a company whom distributes a popular security plugin for WordPress websites, released a great article about a vulnerability on computer networks that is being exploited. With the article they also included a simple button which you can use to scan your network's vulnerability, so that if you are vulnerable to this Internet router exploit, you will know about it ASAP and can begin hounding … [Read more...]
New York Releases Tips to Avoid Falling Victim to Cybercrime; Commemorates National Data Privacy Day
NEW YORK, NY - A host of New York State government agencies today announced important tips consumers and businesses can follow to protect their online privacy and information from unscrupulous scammers. These helpful steps and reminders from the Department of State, Office of Information Technology Services, Department of Taxation and Finance, Department of Financial Services and the Division of Homeland Security and Emergency Services help commemorate National Data Privacy … [Read more...]
No More Procrastinating on Two Factor Authenticating Protect Your Domains
There is one thing that can come between you and your business regardless of whom you are and how safe you feel your security procedures might be and that’s theft – especially in the domain business. There is a lot that can go wrong in the Internet business as it is, but likely nothing would be as bad as someone stealing your entire Internet address. Poof, all the sudden your entire business is gone. In a brick-and-motor business, it’s not likely that someone will come along … [Read more...]