Archive for September 22, 2023

T-Mobile Has Been Pwned YET AGAIN

Posted in Commentary with tags on September 22, 2023 by itnerd

Yet again, I’m writing about T-Mobile getting pwned and leaking data. Here’s the latest pwnage via vx-underground:

This is the third time this year that T-Mobile has been pwned as there was an incident in January and May of this year. This is on top of multiple incidents over the years. At this point, you have to wonder why you should do business with T-Mobile. On top of that, I have to ask when the US government will step in and punish them for clearly not having the best security to say the least. Because when you get pwned this often, there’s clearly something wrong that needs to addressed by the relevant authorities.

Leave a comment »

Review: Otofly Ocean Band For Apple Watch

Posted in Products with tags on September 22, 2023 by itnerd

Today I’m having a look at the Otofly Ocean Band For Apple Watch. It’s a more affordable alternative to the Apple offering and looks pretty much the same based. Let’s start with what you get in the box:

You get the two parts of the band along with a metal clip that you can use to make sure that the band stays in place. While the metal used in the band is not titanium like the Apple offering, I doubt anyone will complain about that. I should note that the lugs fit well in my Apple Watch Ultra, so no complaints there either.

The band has a lot of adjustability in it which means it will fit big and small wrists with no issues. And the entire time that I wore it, it felt comfortable on my wrist. I did test it doing some Apple Fitness+ workouts and it stayed secure on my wrist for the strength and HIIT workouts that I did. I also did go for a swim in my condo’s pool and had no issues there either. If you wanted to actually use it for diving, there is an extension band available. Though I couldn’t find it on the Otofly website at the time of writing this review. But as far as I am concerned, this band is a total win as it works for those want a band that is going to stay on your wrist no matter what at a lower price point than what Apple offers. The Otofly Ocean Band For Apple Watch currently lists for $25.99 on their website and comes in 25 colours to match your style.

Leave a comment »

CISA, NFL, and Super Bowl LVIII hold Cybersecurity Tabletop Exercise 

Posted in Commentary with tags on September 22, 2023 by itnerd

This week, CISA, the NFL, Allegiant Stadium, and Super Bowl LVIII partners held a Super Bowl LVIII Cybersecurity Tabletop Exercise to explore, assess, and enhance cybersecurity response capabilities, plans, and procedures ahead of Super Bowl LVIII.
 
The 4-hour Tabletop Exercise brought together more than 100 partners from the NFL, stadium, and federal, state, and local governments in preparation efforts designed to ensure the safety of events at Allegiant Stadium. The collaborators’ aim is to discuss plans and procedures, resources, capabilities, and best practices for protecting against, responding to, and recovering from a significant cyberattack during the event.
 
“This was a safe, low-stress setting to identify any gaps in those plans and ensure we all have a shared understanding of roles and responsibilities. In short, this exercise will help ensure we’re ready for any challenges that come our way on game day,” said CISA’s Deputy Executive Assistant Director for Infrastructure Security Steve Harris.
 
During the exercise, participants discussed a hypothetical scenario that included phishing, ransomware, a data breach, and a potential insider threat – all with cascading impacts on physical systems.
 
“At the NFL, we understand how important it is to practice like you play, and this week’s exercise is the first of many simulations we will conduct prior to Super Bowl LVIII,” said NFL Senior VP and CSO Cathy Lanier.  

George McGregor, VP, Approov had this to say:

   “It is very encouraging to see this exercise was organized by the NFL and partners and CISA.  
Such a workshop should be a critical exercise before any major sporting event, to check that security and contingency plans are complete.

   “Such events have a highly dynamic cybersecurity attack surface which changes rapidly as multiple partners and vendors, and thousands of fans come together and interact with ticketing systems and points of sale using stadium Wi-Fi and via mobile devices. As a key part of this exercise, mobile apps which access sensitive information must be verified as being protected from impersonation or manipulation. “

Table top exercises like these ones are good because it makes sure that all parties are on the same page. Let’s hope that the lessons learned from this exercise aren’t ever needed.

Leave a comment »