TeamViewer, insider, application, insider risk, case, threat Palo Alto network IP theft

Insider Indicted for Attempting to Sabotage California Water Plant

Earlier this month, Rambler Gallo pled not guilty to charges that he attempted to sabotage the water treatment facility in Discovery Bay, California. The facility provides treatment for the water and wastewater systems for the town’s 15,000 residents. An unsealed federal court indictment showed Gallo logged into the Supervisory Control ... Read More
Security Boulevard
SolarWinds laptop judge order litigation

SEC Sends Wells Notice to SolarWinds Executives

On June 23, 2023, SolarWinds revealed via an SEC Form 8-K filing that the U.S. Securities and Exchange Commission (SEC) notified the company that “certain current and former executive officers and employees of the company, including the company’s chief financial officer and chief information security officer,” had received Wells Notices ... Read More
Security Boulevard
TeamViewer, insider, application, insider risk, case, threat Palo Alto network IP theft

Insider Risk: Theft of Trade Secrets Nets Thief Six Months

An interesting case of insider risk wrapped up recently in the Federal District Court in Massachusetts when U.S. Senior District Court Judge William G. Young handed down a lenient sentence to Haoyang Yu. Yu, a former employee of semiconductor company Analog Devices Inc (ADI), was convicted of stealing ADI’s designs ... Read More
Security Boulevard
Colonial Pipeline, lessons, vulnerabilities pipedream supply chains CI/CD pipeline dev environment Linux

Two Years After Colonial Pipeline, What Have We Learned?

The second anniversary of the Colonial Pipeline ransomware attack has come and gone, and while many lessons have been learned and assimilated, there’s still more we can do. Security Boulevard reached out to some experts in the industry to see how far we’ve come and where work still needs to ... Read More
Security Boulevard
cybersecurity framework south korea data protection officer CCO

U.S.-South Korea Forge Strategic Cybersecurity Framework

The United States and South Korea have crafted a “Strategic Cybersecurity Cooperation Framework.” The framework is part of recent bilateral accords intended to signal mutual adversaries and reaffirm the “ironclad commitment to what has become a global alliance focused on deepening defense and security ties.” North Korea’s cyberthreat shenanigans are ... Read More
Security Boulevard
app Google application security AppSec

AppSec: How Do You Know Your app is 100% Secure? You Don’t

Insecure applications come with a cost that can be measured in billions of dollars of losses. I recently spoke with Brook Schoenfield, a distinguished engineer who quietly describes himself as an “Elder AppSec Diplomat,” on the eve of the RSA Conference. Schoenfield is the quintessential walking, talking go-to resource on ... Read More
Security Boulevard
financial data Dave breach Casino

Socially Engineered Into Stealing $500,000 From a Casino

A cashier at a Colorado casino is accused of stealing half a million dollars in cash after allegedly being duped by phone calls and text messages from imposters posing as her bosses. She sits in a Colorado jail while the money is long gone. It appears to be a case ... Read More
Security Boulevard
FTC RegTech rules

FTC Proposes Eliminating Non-Compete Clauses

The Federal Trade Commission (FTC) chair, Lina M. Khan, recently announced the commission’s intent to adjust a rule that would prohibit non-compete agreements by workers or independent contractors. Their rationale? Unfair competition—which, therefore, falls under the purview of the FTC. This could have a huge impact on the cybersecurity and ... Read More
Security Boulevard
cybersecurity hygiene Russian Ukraine microsoft Freeze on Phishing

Russia-Linked Attackers Target US Nuclear Research Facilities

It made the headlines in early January; Russia is targeting U.S. nuclear scientists and research facilities. While certainly not a news flash—given that Russia’s (and the USSR’s) history of targeting U.S. nuclear technologies dates back more than 75 years. But the tools used in the latest foray remind us of ... Read More
Security Boulevard
privacy GRU

Privacy Settlements Reveal the Value of User Data

Two recent class action settlements highlighted just how seriously companies should take their duty to protect users’ information. The cost of not doing so is astronomical. These settlements also speak to the rare calculus of the value of a user’s private information. Meta, the parent of Facebook just agreed to ... Read More
Security Boulevard