Lenovo Patches Vulnerabilities in System Update Service

Given the number of Thinkpad users in the wild, this is a particularly sensitive vulnerability that should be patched as soon as possible.

https://threatpost.com/lenovo-patches-vulnerabilities-in-system-update-service-2/115482/

Advertisements

Vtech breached, customer data stolen. Change your password now!

Parents beware!  Given the proximity of the Christmas holiday, this breach is particularly important.  You may have set and forgotten these credentials a season ago, so go check, update, and monitor accordingly.

https://nakedsecurity.sophos.com/2015/11/30/childrens-toy-maker-vtech-hacked-online-store-breached/

Department of Education Lambasted Over Database Vulnerabilities

I honestly do not know what to say or where to begin.  I cannot say that I am surprised that yet another government agency has failed to fund and execute an effective IT security program.  This is a systemic problem and I believe it should be addressed before additional controls are passed down to the private sector.  The approach of “do as I say and not as I do” can no longer be allowed to stand.

https://threatpost.com/department-of-education-lambasted-over-database-vulnerabilities/115433/