Some other breaches/leaks this week

  • Cosco: one of the worlds largest shipping companies, suffered a ransomware attack.
  • Clarkson: another shipping company, had a breach that was disclosed last year, and they've now released more information on what data was breached.
  • Dixons Carphone: electronics retailer. Disclosed a breach two months ago but has now announced that it wasn't 1.2 million customers that were impacted, but 10 million.
  • Fashion Nexus: an e-commerce company, had an unsecured database with personal details of 1.3 million customers. The database included hashed passwords with salted MD5 and SHA-1.
Dieter Van der Stock

Personal note - security officer subscription?

I'm playing with the idea of opening up a "security officer subscription", aimed at companies who can't justify the cost of a full-time security person. For x amount of money you'd get y hours of security work done each month.

Think employee education on 2fa and passwords, taking anti-phishing measures, securing document and e-mail accounts, having backups, working on GDPR, whatever makes sense for the company.

I'm putting out feelers to see if there is any interest in such a thing. If it sounds useful to you or someone you know, please reply to this e-mail :-) Thanks!

Dieter Van der Stock