SEC Releases the 2022 Examination Priorities

Cybersecurity remains one of the top compliance risks for financial firms. The SEC underlines the importance of maintaining operational resiliency by focusing on the areas highlighted below, as stated in their 2022 Examination Priorities Report.

Spring4Shell: The Big “Ehh.. Whatever?”

I’m taken back by the harrowing announcements of this flaw and comparing it to the Log4J debacle (without proof). I, for one, still have PTSD from sitting in a NOC during Christmas trying to patch Log4J.

Pwn’t: Okta

I think it’s worth taking a step back and shining a light on how this occurred again: a third party contractor got popped which lead to access to Okta’s sensitive data. Crappy. Really, really crappy.