Sign up to save your podcasts
Or
Share DtSR Episode 185 - NewsCast for March 15th 2016
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
DtSR Episode 185 - NewsCast for March 15th 2016
In this episode...
The FTC is getting into providing guidance on password changes
- Well OK, this isn't really guidance, it's just a blog
- But - does this mean that the FTC is getting into technical guidance?
- https://www.ftc.gov/news-events/blogs/techftc/2016/03/time-rethink-mandatory-password-changes
Dwolla hit by CFPB and fined $100,000
- Who is the CFPB (Consumer Finance Protection Bureau)?
- This opening sentence is crucial: "The Consumer Financial Protection Bureau (Bureau) has reviewed certain acts and practices of Dwolla, Inc. (Respondent, as defined below) and has identified the following law violations: deceptive acts and practices relating to false representations regarding Respondent’s data-security practices in violation of Sections 1031(a) and 1036(a)(1) of the Consumer Financial Protection Act of 2010 (CFPA), 12 U.S.C. §§ 5531(a), 5536(a)(1)"
- http://files.consumerfinance.gov/f/201603_cfpb_consent-order-dwolla-inc.pdf
- http://blog.dwolla.com/we-are-never-done/
FTC To Study Credit Card Industry Data Security Auditing
- The FTC is asking for specific information from a specific number of companies (9 of them in total)
- Studying "how companies and their assessors interact" - is that code for something?
- Interesting to see what the FTC will do with this?
- https://www.ftc.gov/news-events/press-releases/2016/03/ftc-study-credit-card-industry-data-security-auditing
Bengladesh bank hackers steal ~$100M
- There is definitely more to this story
- Lots of finger-pointing, failed/unknown processes in SWIFT clearinghouse
- Was this account compromise? System compromise? An insider threat? All of the above?
- http://www.bankinfosecurity.com/bangladesh-bank-hackers-steal-100-million-a-8958
Have something to say? Let's hear it.
Support the show
>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast
View all episodes
By Rafal (Wh1t3Rabbit) Los
4.3
9797 ratings
In this episode...
The FTC is getting into providing guidance on password changes
- Well OK, this isn't really guidance, it's just a blog
- But - does this mean that the FTC is getting into technical guidance?
- https://www.ftc.gov/news-events/blogs/techftc/2016/03/time-rethink-mandatory-password-changes
Dwolla hit by CFPB and fined $100,000
- Who is the CFPB (Consumer Finance Protection Bureau)?
- This opening sentence is crucial: "The Consumer Financial Protection Bureau (Bureau) has reviewed certain acts and practices of Dwolla, Inc. (Respondent, as defined below) and has identified the following law violations: deceptive acts and practices relating to false representations regarding Respondent’s data-security practices in violation of Sections 1031(a) and 1036(a)(1) of the Consumer Financial Protection Act of 2010 (CFPA), 12 U.S.C. §§ 5531(a), 5536(a)(1)"
- http://files.consumerfinance.gov/f/201603_cfpb_consent-order-dwolla-inc.pdf
- http://blog.dwolla.com/we-are-never-done/
FTC To Study Credit Card Industry Data Security Auditing
- The FTC is asking for specific information from a specific number of companies (9 of them in total)
- Studying "how companies and their assessors interact" - is that code for something?
- Interesting to see what the FTC will do with this?
- https://www.ftc.gov/news-events/press-releases/2016/03/ftc-study-credit-card-industry-data-security-auditing
Bengladesh bank hackers steal ~$100M
- There is definitely more to this story
- Lots of finger-pointing, failed/unknown processes in SWIFT clearinghouse
- Was this account compromise? System compromise? An insider threat? All of the above?
- http://www.bankinfosecurity.com/bangladesh-bank-hackers-steal-100-million-a-8958
Have something to say? Let's hear it.
Support the show
>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast
More shows like Down the Security Rabbithole Podcast (DtSR)
View all
Hacked
189 Listeners
Security Now (Audio)
2,006 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
369 Listeners
Risky Business
374 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
649 Listeners
CyberWire Daily
1,034 Listeners
Smashing Security
322 Listeners
Click Here
421 Listeners
Darknet Diaries
8,116 Listeners
Cybersecurity Today
178 Listeners
Hacking Humans
316 Listeners
CISO Series Podcast
191 Listeners
Defense in Depth
74 Listeners
Cybersecurity Headlines
138 Listeners
Risky Bulletin
44 Listeners