In-brief: Pharmacy chain CVS and discount chain Costco acknowledged this week that a July security incident involving a third party firm that provides online photo processing and printing services resulted in the theft of some customer data. (Updated to add comment from Staples and CVS. PFR Sept. 16, 2015)
Hacks & Hackers
The Internet of Things is entering a Post-Recall Reality
In-brief: Security, personal safety, privacy and policy are converging in what might be called a “post recall reality” for the Internet of Things. How to respond will be a key issue as top researchers and policymakers gather in Cambridge next week for The Security of Things Forum.
After Jeep Hack, Miller and Valasek Move to Uber
In-brief: Charlie Miller and Chris Valasek, the two researchers who developed a wireless software attack on Fiat Chrysler vehicles, will leave their respective employers to join Uber’s advanced technologies research group, the two announced this week.
Hard Coded Password Sinks Fleet of DSL Routers
In-brief: A hard coded firmware password could provide remote hackers with access to a wide range of home broadband routers, underscoring the risk posed by shared hardware and software, according to an alert from Carnegie Mellon University’s CERT this week.
Court says FTC can punish firms for lax security
In-brief: the U.S. Federal Trade Commission has the authority to punish firms for failing to protect their customers data, a U.S. Federal appeals court ruled on Monday, in a clear victory for the Commission as it seeks to regulate information security practices within private sector firms.
