Episode 252: Edwin Kwan: Equifax Ltd fined £11 million for Preventable Cybersecurity Breach; Ian Garrett: 10 Hidden Costs Draining CISO Security Budgets (Part 1); Mark Miller: Follow Up to Atlassian Confluence Level 10 Vulnerability Alert; Marcel Brown: This Day in Tech History

Free, ungated access to all 250+ episodes of “It’s 5:05!” on your favorite podcast platforms: https://bit.ly/505-updates. You’re welcome to 𝗿𝗲𝗽𝗼𝘀𝘁 if your followers will find this of value.

The stories we’re covering today.

Marcel Brown: October 17, 1990. Colin Needham, an English movie fan, launches the "rec.arts.movies movie database," which would later be known as the Internet Movie Database, or IMDb. An engineer working for HP at the time, by 1996, Needham quit his job to work on IMDb full-time.

Edwin Kwan: Equifax has been fined £11 million by Britain's financial watchdog for the 2017 cybersecurity breach. The British Financial Conduct Authority, or FCA, said that the cyber attack and unauthorized access to UK consumer data was entirely preventable.

 Mark Miller: The Broken Access Control Vulnerability in the Confluence Data Center and Server has been getting a lot of attention. This is a Level 10 vulnerability, the highest warning available. There is evidence that this is a nation-state attack, actively exploiting the vulnerability.

Ian Garrett: Everyone hates hidden costs, and it's only worse when you're already on a shoestring budget. As CISOs navigate a landscape of complex pricing structures, overlapping services, and other traps, there are more than enough hidden costs that constrain precious cybersecurity budgets.