Articles and Comments By David Stewart

Expert Commentary
Finland To Offer Businesses Cybersec Vouchers In Wake Of Nato-related Attacks – 4 Experts Offer Perspective
September 01 , 2022 by David Stewart
It's understandable and sensible of the Finnish government to provide financial subsidies to compani...
Expert Commentary
3,200 Mobile Apps Leaking Twitter API Keys – Expert Comments
August 02 , 2022 by David Stewart
There are only two ways to solve this problem. Either adopt a mobile security solution that enables...
Expert Commentary
Mental Health App Feelyou Exposed 70,000 Emails
July 19 , 2022 by David Stewart
"When security of healthcare data is being discussed, the examples used are usually Electronic Healt...
Expert Commentary
API Calls Expose 770M Logs With GitHub, AWS, Docker Tokens In Travis CI Logs
June 16 , 2022 by David Stewart
Static secrets like user tokens and keys should never be as easy to extract as the researchers at Aq...
Expert Commentary
Cequence Security Report Reveals Top 3 API Attack Trends, Expert Weighs In
March 17 , 2022 by David Stewart
The Cequence report is a wonderful exposé of the extent to which API traffic is automated in order...
Expert Commentary
68% Govt Covid Passport Apps At Risk
March 09 , 2022 by David Stewart
The Symantec report is another timely reminder of the importance of securing sensitive data at rest...
Expert Commentary
38.9M Health Records Stolen From Bangkok Hospital
January 11 , 2022 by David Stewart
We know from security research we have done that a personal medical record is worth 1000x more than...
Expert Commentary
2 Experts: Black Shadow Dumps 290,000 Medical Records & Entire LGTBQ Dating Database
November 04 , 2021 by David Stewart
The importance of protecting healthcare data is often understated. In particular, where it relates t...
Expert Commentary
100 Million User T-Mobile Breach? – Multiple Comments
August 17 , 2021 by David Stewart
If this T-Mobile data breach turns out to be genuine, and the initial signs are that it is, it is an...
Expert Commentary
Mint Mobile Customer Data Breached, Experts Weigh In
July 13 , 2021 by David Stewart
It\'s not clear exactly how this leak occurred but the takeaway is yet another reminder that data ex...
Expert Commentary
Expert React: McAfee Mobile Threat Report: C-19 Vax Appointment Trojans, Etinu Billing Fraud Malware
July 01 , 2021 by David Stewart
Although publicly accessible 2FA (2 factor authentication) solutions such as one time codes sent by...
Expert Commentary
Int’l. Cybercrime Prevention Act Rafted To Boost CI Security
June 21 , 2021 by David Stewart
Extending the ability to seek relief when \'modern\' attack vectors such as APIs are utilized is a v...
Expert Commentary
1.1 Bil Pieces Of User Data Scraped From Alibaba's Taobao Shopping Site
June 17 , 2021 by David Stewart
It\'s hard to say exactly how the scraping was done but it seems likely that the API was the route i...
Expert Commentary
Klarna Privacy Incident Was 'Self-Inflicted Bug', Experts Weigh In
May 31 , 2021 by David Stewart
It\'s hard to say what caused this issue without more data, but it has all the hallmarks of a BOLA (...
Expert Commentary
TeaBot Android Bank Trojan Steals EU User Credentials
May 12 , 2021 by David Stewart
User credentials and SMSs are often the two factors needed to gain access to user accounts in sensit...
Expert Commentary
Experts Perspective On HP Bromium Q4 Rept: Detection Not Stopping Newer Threats
March 17 , 2021 by David Stewart
There is no question that credential led attacks are on the rise. One of the primary reasons for thi...
Expert Commentary
Security A Glaring Issue For Chatroom App Clubhouse After Conversations Were Breached
February 24 , 2021 by David Stewart
The Clubhouse data spillage incident looks like yet another example of security based purely on auth...