Another aspect of security that many shoppers don't consider this time of year is the security of the products they're buying, even through a legitimate online marketplace.
This is a glaring issue with home security cameras and Wi-Fi-connected doorbells, but I can't imagine these are particularly popular holiday gifts.
With virtually everything being connected to the internet somehow these days, everything is a potential security risk if you're buying a new piece of technology.
Many shoppers might be looking for a deal this time of year and not looking to spend hundreds on the gift, so any sort of cheaper alternative could be appealing.
Well-known vendors are certainly not immune to security issues or vulnerabilities, but at least users can be confident that any known vulnerabilities will be disclosed and patched by these companies as they pop up.
There are a few security flags for me right up front with this deal.
Apple Air Tags are also another popular tech gift every year and are usually featured in major retailers' Black Friday sales.
If you do experience some sort of security failure or issue, there is no easy way to contact any of these vendors through the traditional means that the average user would go searching for.
These vendors have no clear history of responsibly disclosing vulnerabilities, releasing security updates, or testing their products' security before release.
When these types of gifts are dealing with such high-profile information like your personal information, health data, or physical location, users should be confident that their information is being stored correctly and securely, or at least there's a way to contact the vendor should they have any questions.
The 2023 Cisco Talos Year in Review is now available to download. Once again, the Talos team has meticulously combed through a massive amount of data to analyze the major trends that have shaped the threat landscape in 2023.
The Year in Review report includes new data and telemetry from Talos about attacker trends, popular malware seen in the wild, and much more.
Download our full report here, bookmark the Year in Review landing page for future content we have planned around the report, and listen to the Beers with Talos episode that covers the details of the report.
Another 1 million-plus users had their family tree information accessed.
The attackers accessed the accounts because of password reuse from users, likely who used easy-to-guess login information or passwords they used across multiple other accounts.
Security experts are urging users to move away from traditional username-and-password login methods as these types of attacks happen more often, instead moving toward multi-factor authentication or passwordless logins.
The two vulnerabilities tracked as CVE-2023-42916 and CVE-2023-42917, leave affected devices vulnerable to adversaries accessing sensitive information on targeted devices.
The annual IT event at the end of the year where Cisco experts, including Gergana Karadzhova-Dangela from Cisco Talos Incident Response, discuss the future-oriented topics in the implementation of digitalization together with you.
Each year brings new threats that take advantage of increasingly complex security environments.
Join Amy Henderson, Director of Strategic Planning and Communications at Cisco Talos and Briana Farro, Director of XDR Product Management at Cisco, as they discuss some of the top threat trends and threats we have seen this past year and how to leverage security technology like XDR and network insights to fight against them.
This Cyber News was published on blog.talosintelligence.com. Publication date: Thu, 07 Dec 2023 19:13:05 +0000