
Questionable Cybersecurity Company Buying Software Vulnerabilities: What Families Should Know
A cybersecurity startup run by convicted felons is offering money for software flaws. This doesn't directly affect your devices, but shows why caution matters.
Source
Krebs on Security
Original headline: Felons, Fraudsters Flog Offensive Cybersecurity Startup
Plain-English summary by GetCyberRight. Read the full report at the source above.
A cybersecurity company is offering millions of dollars to buy information about security flaws in popular software. The company is run by two people with criminal records who previously operated fake businesses under false names. This type of company typically buys information about software vulnerabilities that could be exploited by hackers. This situation does not directly put your family's devices or accounts at risk right now. However, it highlights a concerning part of the cybersecurity industry where vulnerabilities in the software you use every day can be bought and sold. When legitimate software flaws are discovered, they should be reported to the software maker so fixes can be released to protect users.
For your family, there are no immediate action steps needed in response to this specific news. You cannot control who buys or sells information about software flaws. What you can control is keeping your devices protected regardless of what happens in the background. To stay protected long term, focus on the basics that defend against all threats. Keep your devices and apps updated with the latest versions, since updates often fix newly discovered security flaws. Use strong, unique passwords for important accounts. Enable automatic updates on your computers, phones, and tablets so security fixes install as soon as they become available. These steps protect you whether vulnerabilities are handled properly or not.
Curated from trusted cybersecurity sources by GetCyberRight
Source: Krebs on SecurityStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles
Payment Company Used by Vending Machines Investigating Possible Breach of 1 Billion Card Records
Nayax, which handles cashless payments at vending machines and self-service kiosks, is investigating claims that hackers stole 1 billion payment card records.
2 min readPayment Company Used in Vending Machines and Kiosks Reports Possible Data Breach
Nayax, a company that processes cashless payments at vending machines and self-service kiosks worldwide, is investigating a breach that may have exposed customer payment card data.
2 min read
University Data Breach: What Students and Staff Should Know
Mount Royal University in Calgary had student and staff data stolen by hackers. If you're connected to this school, here's what to do.
2 min read
Canadian University Data Breach: What Students and Families Should Know
Mount Royal University in Calgary experienced a data breach where hackers stole and deleted files. Students and staff may have personal information exposed.
2 min read