Help us better tailor our content and Tugboat Logic services to you by filling out this survey. And as a bonus we will be entering all survey participants into a draw to win 1 of 3 $100 visa gift cards!

We're excited to announce that we'll be joining the One Trust family! Together we'll help companies get certified, build trust, and win deals. Find out more about it here on the Helm or check out our official press release. Feel free to leave a comment or question regarding the big news.

Security news for September 17 2021: Walgreens' data breach affects millions who used Covid testing

isaac_noko Tugboat Employee Tugboat Team
edited September 24 in This Week in Security News

Here are some of your most notable headlines for the week of September 10, 2021

How Walgreens’ sloppy Covid-19 test registration system exposed patient data

The data exposure potentially affects millions of people who used or continue to use Walgreens’ Covid-19 testing services over the course of the pandemic. Personal data was left on the open web for potentially anyone to see and for the multiple ad trackers on Walgreens’ site to collect. Did you use Walgreens for covid-19 testing? If so how do you feel about their lack of data protection protocols? 

France: CNIL announces intent to fine companies as cookie campaign continues

The French data protection authority ('CNIL') issued a statement summarizing the outcome of the formal notices issued to 38 website operators requiring them to ensure that refusing cookies is as easy as accepting them. What is your personal stance on cookie-based tracking?

OWASP updates top 10 vulnerability ranking for the first time since 2017

Open Web Application Security Project has released an updated draft of its ranking of the top 10 vulnerabilities. The new list features considerable changes, including the emergence of Broken Access Control, which moved from fifth on the list to number 1. 

And as always please comment down below and let us know your thoughts on this week's headlines. Or if you have any interesting infosec or cybersecurity-related news please share the links in the comments.