• Home
  • About/Services
  • Security Terms
  • ioT Threats
  • Ransomware Threats
  • Contact
  • Blog
  • Home
  • About/Services
  • Security Terms
  • ioT Threats
  • Ransomware Threats
  • Contact
  • Blog
RUNETWORKSAFE
  • Home
  • About/Services
  • Security Terms
  • ioT Threats
  • Ransomware Threats
  • Contact
  • Blog

Archives

January 2021
December 2020
May 2020
April 2020
March 2020
December 2019
November 2019
October 2019
April 2019
February 2019
January 2019
September 2018
August 2018
March 2018
February 2018
January 2018
December 2017
November 2017
July 2017
June 2017

Categories

All
General Information
Security Alerts
Useful Tools

Author

Welcome to the runetworksafe.com blog.  This site will provide a conduit for it's viewers to find security related information that can help prevent issues on their computing/network environment. Unfortunately, security was not an issue when the internet was in its infancy, and operating systems were not originally designed for computers to be networked together.  The picture has changed over the years, and security must be implemented to prevent intrusion and compromise on your home or business computers.   Stay tuned for regular blog postings, on security related matters.

Back to Blog

Equifax Security Breach

1/17/2018

 
It should be an absolute crime for corporations “entrusted in keeping our personal data”, from conducting lackadaisical security practices, and putting our security and privacy in jeopardy.  The Equifax security breach in 2017 is a prime example.

Equifax is a credit bureau that provides credit information to many financial institutions and data brokers.  It holds vast amounts of personal data on individuals, so banking institutions can determine credit worthiness for loan and mortgage applications.

Equifax was breached in May 2017 on a server utilizing an Apache Struts 1 open-source web application.  Equifax was notified in March 2017 by Apache, as well as the Department of Homeland Security, of a critical security patch that was required to be installed to correct a security vulnerability with the Struts 1 application.  Equifax didn’t get around to installing the patch until the end of July, 2017.  At that point, a discovery was made that a breach had occurred on their system back in May 2017, 2 months after they should have installed the patch.  Attackers were able to use a known vulnerability to gather vast amounts of personal data on over 145 million US, 15 million UK, and over 100,000 Canadian citizens.  This attack was not even considered very sophisticated by security experts, and Equifax was said to be solely at fault.  
 

To add salt to the wound, after the security breach had been discovered, Equifax’s Incident response was less than stellar.  It took Equifax nearly 6 weeks to divulge to their customers that they had been breached, putting them at more risk of Identity theft. 

It is unfortunate that corporations and our financial markets are more interested in “the bottom line” of profits, rather than funding a small cybersecurity budget to prevent situations like this from happening.  Equifax is one of many corporations that have been hit by cyber criminals.  Who will be the next target?

Below is a link to Wikipedia on a list of data breaches that have occurred over the years.
https://en.wikipedia.org/wiki/List_of_data_breaches

0 Comments
read more
Back to Blog

CPU Hardware Security Vulnerabilities Meltdown & Spectre

1/4/2018

 
Researchers have just recently released information on two security flaws that they have discovered that create security vulnerabilities on most smartphone and computer CPU hardware. They have called these two flaws Meltdown and Spectre.  Software companies are scrambling to get software patches written to correct these flaws from affecting most smartphones and  computer equipment.  This is just another example of why it is so important to keep your computers and smartphones updated with the latest security patches and system updates. Below are links to several articles for further information on these security flaws. 

https://meltdownattack.com/

http://www.cbc.ca/news/technology/security-flaws-cpus-intel-arm-amd-spectre-meltdown-memory-1.4472675




0 Comments
read more
Powered by Create your own unique website with customizable templates.