. Yes, use of third-party services has become the norm for many organizations, but not all these services are created equal. Some of the vendors behind these services do not value security in adequate ways. This week, Uber suffered This time, it was the result of attackers gaining unauthorized access to the Amazon Web Services server of a third-party vendor. This third-party was Teqtivity, which provides asset management and tracking services to Uber. The threat actor was "UberLeaks," who posted the data (including employee email addresses, corporate reports, and IT asset information) on the BreachForums hacking forum. One could argue that this is old news, as Uber has suffered several recent breaches. However, the reality that this was the result of entrusting a thirty-party vendor with their data is of note. Relying on third-party services and apps is a security blindspot that looks to be When companies make decisions to use these services, they should consider if these third parties are serious about cybersecurity.
. The study found that Google was the most common third party to receive data, with . Due to revelations like this, there has been a growing push to curb the information-gathering abilities of tech aimed at children. In May, the FTC be prosecuted
. The ransomware attack (carried out by the . Phone, email, and decision-making platforms were down, and the attack comprised the Antwerp Healthcare Company's software, which tracks who should receive medication in 18 residential care centers. Thankfully, prescriptions were able to be filled by hand. Still, the risk of patients being unable to get their medication in time is a dangerous proposition, one that echoes the recent Municipal security professionals everywhere should be lucky that this attack proved more of a nuisance than a catastrophic blow to Antwerp’s operations.