@securityman.bsky.social
Louisiana is joining several other states in having courts rule their age verification law unconstitutional. This time in a decision that took almost 100 pages to explain. See why at tcps-blog.com/louisianas-a...
Louisiana's Age Verification Law Ruled Unconstitutional - Turnkey Cybersecurity and Privacy Solutions Blog
The battle has begun. Many states have implemented age verification laws; they are all over the place in terms of what is required and what sites are restricted. It is a bit of a mess. A few days ago ...
tcps-blog.com
December 20, 2025 at 12:54 AM
Louisiana is joining several other states in having courts rule their age verification law unconstitutional. This time in a decision that took almost 100 pages to explain. See why at tcps-blog.com/louisianas-a...
Do you think big brother is watching you? Well, if you watch TV, whether it is cable, satellite, Internet, your PC - if your TV is connected to the Internet, the answer is likely yes. Learn how at tcps-blog.com/texas-sues-s...
Texas Sues Smart TV Makers - Turnkey Cybersecurity and Privacy Solutions Blog
Here is a shocker – Texas says smart TV makers are watching exactly what you do. If your TV is connected to the Internet, it is likely watching you and selling your data. Skip over a commercial – they...
tcps-blog.com
December 17, 2025 at 6:03 AM
Do you think big brother is watching you? Well, if you watch TV, whether it is cable, satellite, Internet, your PC - if your TV is connected to the Internet, the answer is likely yes. Learn how at tcps-blog.com/texas-sues-s...
Non-human identities. Do you know how to handle them? One survey estimates that there are something like 80 or 90 of them to one human identity. Oh, yeah. Your cyber insurance might not pay your claim if you don't have a handle on this. more at tcps-blog.com/the-state-of...
The State of Non-Human Identities - Turnkey Cybersecurity and Privacy Solutions Blog
Cybersecurity firm Cyberark says that “non-human” identities outnumber human identities by more than 80 to 1. This includes machine identities and AI identities. Riddle me this: If you have a compromi...
tcps-blog.com
December 16, 2025 at 6:30 AM
Non-human identities. Do you know how to handle them? One survey estimates that there are something like 80 or 90 of them to one human identity. Oh, yeah. Your cyber insurance might not pay your claim if you don't have a handle on this. more at tcps-blog.com/the-state-of...
News bites: banks are tired of giving the North Koreans your money, bug in jury systems leaks personal info, big brother is watching – at least in NYC, CISA warns of Russia-financed attacks on water, energy, food, utils turn to lawmakers as copper wire theft surges. tcps-blog.com/12-12-25-sec...
12.12.25 Security News Bites - Turnkey Cybersecurity and Privacy Solutions Blog
Banks (Maybe) Are Tired of Giving the North Koreans Your Money? I got an email from a bank this week that said that they are eliminating the so called security questions. The problem with security que...
tcps-blog.com
December 13, 2025 at 1:49 AM
News bites: banks are tired of giving the North Koreans your money, bug in jury systems leaks personal info, big brother is watching – at least in NYC, CISA warns of Russia-financed attacks on water, energy, food, utils turn to lawmakers as copper wire theft surges. tcps-blog.com/12-12-25-sec...
With firewall vendors like Cisco, Fortinet and Checkpoint falling like ducks in an arcade game, what should we do? Actually, pretty simple. Check it out at tcps-blog.com/if-firewall-...
tcps-blog.com
December 12, 2025 at 6:38 AM
With firewall vendors like Cisco, Fortinet and Checkpoint falling like ducks in an arcade game, what should we do? Actually, pretty simple. Check it out at tcps-blog.com/if-firewall-...
High value targets are seeing an insane increase in vishing (voice phishing attacks) last year (442% increase). Will your organization repel an attack? A lot of big organizations did not. Learn more at tcps-blog.com/how-old-scho...
How Old School Voice Phishing Still Works Very Effectively - Turnkey Cybersecurity and Privacy Solutions Blog
Five of eight Ivy League schools have been hacked in the last six months. Add the most effective technique is definitely not high tech – it is plain old social engineering on the phone. Harvard discov...
tcps-blog.com
December 10, 2025 at 6:07 AM
High value targets are seeing an insane increase in vishing (voice phishing attacks) last year (442% increase). Will your organization repel an attack? A lot of big organizations did not. Learn more at tcps-blog.com/how-old-scho...
The country's AI regulatory strategy is a mess. The feds are not doing anything other than collecting campaign contributions from the big AI players. The states are trying to fill the void but with not much success. The Chinese and North Koreans say thanks. Details at tcps-blog.com/white-house-...
White House and Congress AI Strategy - Turnkey Cybersecurity and Privacy Solutions Blog
The president would like to help his campaign donors and his kids by killing off any limits on how AI is used. Since the White House has not espoused a strategy as of yet on placing any guardrails on ...
tcps-blog.com
December 9, 2025 at 4:54 AM
The country's AI regulatory strategy is a mess. The feds are not doing anything other than collecting campaign contributions from the big AI players. The states are trying to fill the void but with not much success. The Chinese and North Koreans say thanks. Details at tcps-blog.com/white-house-...
News bites: Microsoft Teams adds feature to surveil you, CISA still has no director and is pretty much adrift, EU fines Twitter $140 Mil, Senate says Pentagon's use of Signal is part of a wider problem and cyberattack cripples GA. real estate industry. Details at tcps-blog.com/12-05-25-sec...
12.05.25 Security News Bites - Turnkey Cybersecurity and Privacy Solutions Blog
Microsoft Teams Adds Feature To Surveil Your Location Microsoft says it is opt in, but your boss may say different. Microsoft says it is to help employees to find each other to connect in real life (b...
tcps-blog.com
December 6, 2025 at 6:29 AM
News bites: Microsoft Teams adds feature to surveil you, CISA still has no director and is pretty much adrift, EU fines Twitter $140 Mil, Senate says Pentagon's use of Signal is part of a wider problem and cyberattack cripples GA. real estate industry. Details at tcps-blog.com/12-05-25-sec...
China is working on ways to disable satellite Internet over, for example, the entire island of Taiwan. Turns out it is not that hard. See what they might do at tcps-blog.com/china-resear...
China Researches Ways to Disrupt Starlink and Other Satellite Internet Providers - Turnkey Cybersecurity and Privacy Solutions Blog
Satellite Internet is one of the few communications methods that governments have a hard time blocking without the assistance of the provider like Elon Musk for Starlink. He has done that a few times ...
tcps-blog.com
December 5, 2025 at 5:51 AM
China is working on ways to disable satellite Internet over, for example, the entire island of Taiwan. Turns out it is not that hard. See what they might do at tcps-blog.com/china-resear...
China likely captured the communications of every American for at least five years and may still be doing it. Learn more at tcps-blog.com/china-spied-...
China Spied on YOU for Five Years - Turnkey Cybersecurity and Privacy Solutions Blog
You may have heard of the Chinese cyberattack on American telecommunications giants like AT&T, Verizon and Lumen (AKA Qwest or US West). Between 2019 and AT LEAST 2024, they had free reign to listen i...
tcps-blog.com
December 3, 2025 at 5:59 AM
China likely captured the communications of every American for at least five years and may still be doing it. Learn more at tcps-blog.com/china-spied-...
Software Bills of Material (SBOMs) are required of software the feds buy and now large companies too. CISA just released an updated version of the SBOM standard. Mandatory reading for software devs and probably you. Details at tcps-blog.com/the-feds-are...
The Feds Are Not Giving Up on SBOMs - Turnkey Cybersecurity and Privacy Solutions Blog
SBOMs or Software Bills of Material are a way to let customers know what is in your software – kind of like the list of ingredients in food. The feds came out with an initial SBOM guideline in 2021 an...
tcps-blog.com
December 2, 2025 at 5:54 AM
Software Bills of Material (SBOMs) are required of software the feds buy and now large companies too. CISA just released an updated version of the SBOM standard. Mandatory reading for software devs and probably you. Details at tcps-blog.com/the-feds-are...
News bites: Congress moves to protect undersea cables, more Salesforce problems, hackers continue to attack helpdesks, Montana looks at Waymo and what will insurer payouts do to cyber insurance. Details at tcps-blog.com/11-28-25-sec...
11.28.25 Security News Bites - Turnkey Cybersecurity and Privacy Solutions Blog
Congress Moves to Protect Undersea Cables from China and Russia The damaging of undersea cables is a prime target of China and Russia against their perceived enemies. China even demoed an underwater s...
tcps-blog.com
November 29, 2025 at 1:26 AM
News bites: Congress moves to protect undersea cables, more Salesforce problems, hackers continue to attack helpdesks, Montana looks at Waymo and what will insurer payouts do to cyber insurance. Details at tcps-blog.com/11-28-25-sec...
AI models and state laws which include right to be forgotten requirements are incompatible and while there have not been lawsuits in the US yet, they are likely coming. Learn more at tcps-blog.com/cisa-warns-a...
AI Models Conflict with 'Right to be Forgotten' Laws - Turnkey Cybersecurity and Privacy Solutions Blog
This is a very interesting problem for developers of AI models. Likely it doesn’t impact software developers using those models, but it could affect you or your company if you develop software, even f...
tcps-blog.com
November 28, 2025 at 6:35 AM
AI models and state laws which include right to be forgotten requirements are incompatible and while there have not been lawsuits in the US yet, they are likely coming. Learn more at tcps-blog.com/cisa-warns-a...
Attacks on your mobile devices are up and more successful. The result can be loss of money, theft of data, extortion and other problems. CISA has released recommendations, but you have to implement them. Details at tcps-blog.com/cisa-warns-a...
CISA Warns About Mobile App Security - Turnkey Cybersecurity and Privacy Solutions Blog
As the spies continue to improve their tradecraft, we wind up as the victim more of the time. CISA has issued both warnings and guidance to you and me on how to improve our security and privacy on our...
tcps-blog.com
November 26, 2025 at 6:04 AM
Attacks on your mobile devices are up and more successful. The result can be loss of money, theft of data, extortion and other problems. CISA has released recommendations, but you have to implement them. Details at tcps-blog.com/cisa-warns-a...
If a TV streaming box, which sells for $400, says you can watch 2,200 streaming services for no fee ever, what could possibly be illegal about that? I thought so. Details at tcps-blog.com/if-you-think...
If You Think it is Too Good to be True, it is - Turnkey Cybersecurity and Privacy Solutions Blog
The Superbox streaming box is a device that allows you to turn your dumb TV into a smart TV. The devices are sold at BestBuy and Walmart. It is also sold on Amazon, if you can find it. Amazon killed t...
tcps-blog.com
November 25, 2025 at 6:28 AM
If a TV streaming box, which sells for $400, says you can watch 2,200 streaming services for no fee ever, what could possibly be illegal about that? I thought so. Details at tcps-blog.com/if-you-think...
News bites: DDoS attacks keep getting bigger, CISA says 40% vacancy affects national security, 7-Zip exploit shows app patching not working, Canada says schools to blame for ed tech breach and Amazon delivery drones crash into stationary crane. Details at tcps-blog.com/11-21-25-sec...
11.21.25 Security News Bites - Turnkey Cybersecurity and Privacy Solutions Blog
Denial of Service Attacks Keep Getting Bigger A definite advantage of the cloud. Microsoft (Azure) was hit last month by a 15.72 TERABIT denial of service attack. Microsoft detected and mitigated the ...
tcps-blog.com
November 22, 2025 at 5:51 AM
News bites: DDoS attacks keep getting bigger, CISA says 40% vacancy affects national security, 7-Zip exploit shows app patching not working, Canada says schools to blame for ed tech breach and Amazon delivery drones crash into stationary crane. Details at tcps-blog.com/11-21-25-sec...
Congress is warning that Chinese electronics sold at military base exchanges may be snooping on soldiers and sailors, but that is only the tip of it. Details at tcps-blog.com/congress-war...
Congress Warns China Could Spy on Military at Home Through Smart Devices - Turnkey Cybersecurity and Privacy Solutions Blog
Lawmakers are warning about an interesting risk. Military personnel or one of their family members could buy an electronic device at the local base exchange that is made in China. Given that we have v...
tcps-blog.com
November 21, 2025 at 6:17 AM
Congress is warning that Chinese electronics sold at military base exchanges may be snooping on soldiers and sailors, but that is only the tip of it. Details at tcps-blog.com/congress-war...
Deep fakes are everywhere and now even in court. Lawyers have submitted deep fake videos, hoping that the judge doesn't figure it out ... or maybe the lawyer didn't know. Either way it is still a major problem which will only get worse. Learn more at tcps-blog.com/deepfakes-sh...
Deepfakes Showing Up in the Wrong Places - In Court - Turnkey Cybersecurity and Privacy Solutions Blog
We have reported multiple times about lawyers using AI to write briefs and not checking them for accuracy, in some cases rewarding those enterprising lawyers with sanctions and, in some cases, thousan...
tcps-blog.com
November 19, 2025 at 5:51 AM
Deep fakes are everywhere and now even in court. Lawyers have submitted deep fake videos, hoping that the judge doesn't figure it out ... or maybe the lawyer didn't know. Either way it is still a major problem which will only get worse. Learn more at tcps-blog.com/deepfakes-sh...
Chinese made electric buses used in Europe and the UK can be remotely controlled or disabled from China. What could go wrong? Details at tcps-blog.com/uk-to-invest...
UK to Investigate if Chinese Buses Can Be Remotely Controlled from China - Turnkey Cybersecurity and Privacy Solutions Blog
After Norway conducted tests on a Chinese bus and said it identified vulnerabilities in its on-board systems, the UK launched its own investigation. Kind of like we hear about from time to time about ...
tcps-blog.com
November 18, 2025 at 6:18 AM
Chinese made electric buses used in Europe and the UK can be remotely controlled or disabled from China. What could go wrong? Details at tcps-blog.com/uk-to-invest...
News: DoD Cyber Command 2.0, as prez charges $100k for H-1B visas, China rolls out red carpet, Google launches civil lawsuit of text messaging phishing, SAP pushes patch rated 9.9 and AI powered balloons photographing homes for insurance risk assessments. Details at tcps-blog.com/11-14-25-sec...
11.14.25 Security News Bites - Turnkey Cybersecurity and Privacy Solutions Blog
DoD Cyber Command 2.0 DoD, apparently, doesn’t like it being called Cyber Command 2.0. Maybe we should call it 3.0 or 4.0. DoD has been wrestling with making Cyber Command more effective since it was ...
tcps-blog.com
November 15, 2025 at 5:34 AM
News: DoD Cyber Command 2.0, as prez charges $100k for H-1B visas, China rolls out red carpet, Google launches civil lawsuit of text messaging phishing, SAP pushes patch rated 9.9 and AI powered balloons photographing homes for insurance risk assessments. Details at tcps-blog.com/11-14-25-sec...
Chinese spies are using AI generated code to mostly automatically successfully attack companies and government agencies and steal data. This attack showed significant improvement in automating the attacks since an earlier version a couple of months ago. Learn more at tcps-blog.com/chinese-spie...
Chinese Spies Use Commercial AI Tools to SUCCESSFULLY Break Into Companies - Turnkey Cybersecurity and Privacy Solutions Blog
Like many AI tools, Claude has a code generating tool. You can use it for good. Or not so good. Chinese spies are using the code generation tool to target companies. Tech companies. Finance. Chemical....
tcps-blog.com
November 14, 2025 at 5:57 AM
Chinese spies are using AI generated code to mostly automatically successfully attack companies and government agencies and steal data. This attack showed significant improvement in automating the attacks since an earlier version a couple of months ago. Learn more at tcps-blog.com/chinese-spie...
Not everyone is thrilled with Microsoft and Google. In many countries open source software, even for the end user, is becoming popular as a way to escape the clutches of Silicon Valley. Learn more at tcps-blog.com/more-countri...
More Countries Are Blocking US Tech - Turnkey Cybersecurity and Privacy Solutions Blog
More countries are working on technologies developed at home to lessen US control over their IT infrastructure. While this is good for local businesses, it is not good for Silicon Valley revenue. One ...
tcps-blog.com
November 12, 2025 at 6:15 AM
Not everyone is thrilled with Microsoft and Google. In many countries open source software, even for the end user, is becoming popular as a way to escape the clutches of Silicon Valley. Learn more at tcps-blog.com/more-countri...
Senator Cassidy introduced a bill to protect health data collected by apps that is not protected by HIPAA. It sounds good but we shall see what the legislative process does to it. Learn more at tcps-blog.com/republicans-...
Republicans Offer Privacy Bill for Health Data - Turnkey Cybersecurity and Privacy Solutions Blog
No, not the data collected by doctors and hospitals. That data is already protected by HIPAA. Actually, the amount of data protected by HIPAA is dwarfed by the amount of data NOT protected by HIPAA. T...
tcps-blog.com
November 11, 2025 at 6:47 AM
Senator Cassidy introduced a bill to protect health data collected by apps that is not protected by HIPAA. It sounds good but we shall see what the legislative process does to it. Learn more at tcps-blog.com/republicans-...
News bites: Florida woman uses AI - to make false assault claim Third party risk is a MAJOR risk, Toyota says "subscription required" to use features, Microsoft, others to build AI data centers in authoritarian UAE, ClickFix now targets Macs and Windows. tcps-blog.com/11-07-25-sec...
11.07.25 Security News Bites - Turnkey Cybersecurity and Privacy Solutions Blog
Florida Woman Uses AI – To Make False Assault Claim Brooke Schinault called St. Petersburg police on October 7th to report a stranger breaking into her house. While she didn’t know the person, she pro...
tcps-blog.com
November 8, 2025 at 5:19 AM
News bites: Florida woman uses AI - to make false assault claim Third party risk is a MAJOR risk, Toyota says "subscription required" to use features, Microsoft, others to build AI data centers in authoritarian UAE, ClickFix now targets Macs and Windows. tcps-blog.com/11-07-25-sec...
ChatGPT bugs allow data theft, prompt injection, bypassing safety rules and other stuff. Neither the first nor last time. Details at tcps-blog.com/7-chatgpt-bu...
7 ChatGPT Bugs Allow Rampant Data Theft - Turnkey Cybersecurity and Privacy Solutions Blog
Other than allowing a hacker to inject arbitrary prompts, exfiltrate personal user data, bypass safety mechanisms and take other malicious actions, the collection of bugs do not represent a major prob...
tcps-blog.com
November 7, 2025 at 5:32 AM
ChatGPT bugs allow data theft, prompt injection, bypassing safety rules and other stuff. Neither the first nor last time. Details at tcps-blog.com/7-chatgpt-bu...