sec

Office of Inadequate Security

• A.G. Schneiderman Announces Settlement With Trump Hotel Collection After Data Breaches Expose Over 70K Credit Card Numbers
• AF Smith warns customers of data breach fear
• CT: Hospital Patients Caught in Identity Theft Ring
• Kosovo Hacker Who Aided Islamic State to Be Sentenced in US to 20 Years (Updated)
• Napa Valley Dentistry notifies patients after theft of server from storage facility
• Newest OCR settlement highlights need to review and update Business Associate Agreements
• Romanian National Sentenced To Three Years In Prison For Role In Computer Hacking Scheme
• UC San Diego School of Medicine notifying trainees whose SSNs were exposed on the Internet

Naked Security

• Change your password! Yahoo confirms data breach of 500 million accounts
• Michelle Obama’s passport – or a scan that looks like it – posted online
• Twitter says government requests for data still climbing
• YouTube is cleaning up and it wants your help!

Full Disclosure

• DllHijackAuditor 3.5 - Stack Buffer Overflow Vulnerability
• 3GP Player 4.7.0 - DLL Hijacking Vulnerability

Dark Reading:

• D-FENSE! Using Research To Craft Effective Cyber Defenses
• An Open-Source Security Maturity Model
• 7 Ways Cloud Alters The Security Equation
• FTC Releases Video With Data Breach Recovery Advice
• On-Premises & In The Cloud: Making Sense Of Your Cybersecurity Ecosystem
• Spam Levels Spike, Thanks In Part To Ransomware
• Advisory Body Calls For Stronger Cybersecurity Measures Across Airline Industry
• Top Democrats Tell Putin To Halt Hacking Of US Political Parties