January 9, 2018
Collateral Analytics Sues Nationstar for Allegedly Stealing Trade Secrets – United States
In a blockbuster lawsuit filed earlier this week in federal court, Collateral Analytics claims that Nationstar Mortgage stole the company’s proprietary property valuation technology, had a subsidiary replicate it, and is now trying to push Collateral Analytics aside to sell “knock-offs” of the company’s software to other market participants. Collateral Analytics is a developer and provider of automated valuation models and other property valuation tools. According to the lawsuit, Nationstar, and its subsidiary, Xome, have been Collateral Analytics customers since 2013, using the Collateral Analytics’ software and services as an “essential component” of the companies’ business. But the lawsuit claims that Nationstar and Xome “apparently didn’t like” paying Collateral Analytics for its services, but couldn’t afford to stop using the services.
A Driver's License May Not Work for Air Travel in These Three States – United States
Starting Jan. 22, airport security rules could change for many travelers around the country. As the Department of Homeland Security (DHS) attempts to roll out the REAL ID Act, confusion has ensued for many people at the airport. The act, meant to beef up security for ID cards at the state level, has become an avalanche of constantly changing deadlines. The good news is that most Americans will be able to continue using their state IDs until at least Oct. 11. But citizens of Louisiana, Michigan, New York, American Samoa, and the Northern Mariana Islands should pay attention over the coming weeks as the DHS reviews the states’ applications for REAL ID extensions. If extensions are not approved, citizens of these states will need to apply for a separate REAL ID-compliant card or show up at the airport with their passports — even for domestic flights.
Microsoft Word subDoc Feature Allows Password Theft – United States
A feature in Microsoft Word that allows for the loading of sub-documents from a master document can be abused by attackers to steal a user’s credentials, according to Rhino Security Labs. Dubbed subDoc, the feature was designed to load a document into the body of another document, so as to include information from one document into the other, while also allowing for the information to be edited and viewed on its own. According to Rhino Security, the feature can also be used to load remote (Internet-hosted) subDoc files into the host document, thus allowing for malicious abuse in certain situations.
FOR MORE INFORMATION:
To sign up for the complete daily G4S Corporate Risk Services Intelligence Bulletin, as well as regular intelligence and risk updates and news, click here to subscribe!