One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 864241 |
| Date de publication | 2018-10-26 13:00:00 (vue: 2018-10-26 16:01:16) |
| Titre | Things I Hearted this Week, 26th October 2018 |
| Texte |
Wordpress Wants to Erase its Past
I was just flexing my clickbait title muscles with the heading here. But according to a talk at DerbyCon, the WordPress security team stated its biggest battle is not against hackers but its own users, millions of which continue to run sites on older versions of the CMS, and who regularly fail to apply updates to the CMS core, plugins, or themes.
WordPress team working on "wiping older versions from existence on the internet" | ZDNet
The Penalties Keep Rolling in
Looks like the regulators have recently seen the Arnie classic, Pumping Iron, as they flex their muscles to penalise companies for lax security.
First up, supermarket giant Morrisons has been told by the Court of Appeal that it is liable for the actions of a malicious insider who breached data on 100,000 employees, setting up a potential hefty class action pay-out.
Morrisons Loses Insider Breach Liability Appeal | InfoSecurity Magazine
In other news, Facebook has been fined £500,000 by the UK's data protection watchdog for its role in the Cambridge Analytica data scandal.
The Information Commissioner's Office (ICO) said Facebook had let a "serious breach" of the law take place.
The fine is the maximum allowed under the old data protection rules that applied before GDPR took effect in May.
Facebook fined £500,000 for Cambridge Analytica scandal | BBC
Breaches at 32,000 feet
Cathay Pacific has admitted that personal data on up to 9.4 million passengers, including their passport numbers, has been accessed by unauthorised personnel in the latest security screw-up to hit the airline industry.
Cathay Pacific hack: Personal data of up to 9.4 million airline passengers laid bare | The Register
British Airways still encountering turbulence following its hack in September has revealed a further 185,000 customer details could have been compromised!
British Airways reveals a further 185,000 users affected in September data hack | City AM
Fool Me Once
Children’s Hospital of Philadelphia has reported two data breaches that occurred in August and September of 2018.
The hospital on August 24 discovered that hacker had accessed a physician’s email account on August 23 via a phishing attack. A second breach found on September 6 revealed unauthorized access to an additional email account on August 29.
Children’s Hospital of Philadelphia victimized twice by phishing attacks | Health Data Management
Some Notes for Journalists About Cybersecurity
The recent Bloomberg article about Chinese hacking motherboards is a great opportunity to talk about problems with journalism.
Journalism is about telling the truth, not a close approximation of the truth, but the true tru |
| Envoyé | Oui |
| Condensat | £500 000 100 185 2018 2018–8414: 250 26th about access accessed according account across action actions additional admitted affected again against airline airways allowed analytica answers appeal applied apply approximation april are arnie around article attack attacks august bad bare battle bbc been before biggest bloomberg breach breached breaches british but cambridge came can candid—code case cathay chief children’s chinese ciso ciso: city class classic clickbait close cms commissioner's companies compassionate—yet compromised continue cops core corporate could court customer cve cybersecurity cycle data derbycon details directors disclosure discovered does don't effect email employees encountering equivalent erase errata existence face facebook fail feet finding fine fined first flex flexing following fool found friending from further gdpr giant going good great hack hack: hacker hackers hacking had has have heading health hearted hefty here hit hospital how hunting ico including industry information infosecurity insider insightful internet iron its job journalism journalists just kaspersky keep lab laid latest law lax leadership learn let liability liable like liked looks loses magazine malicious management matt maximum may measuring medium million millions morrisons motherboards muscles nelson news not notes numbers occurred october office officer old older once opportunity other out over own pacific passengers passport past pay penalise penalties people personal personnel philadelphia phishing physician’s place plugins position potential practice principles problems process protection pumping questions really recent recently register regularly regulators reported responsible revealed reveals reviews role rolling root rules run said scandal screw second security seen september serious setting sites some stated study success supermarket surveyed take takes talk team telling themes things those through tightrope times title told took tricky true truth turbulence twice two uk's unauthorised unauthorized under undercover unregulated updates users versions victimized view vulnerability walk wants watchdog week wensel went what which who wildly wiping wordpress working world worthwhile writeup youtube zdnet |
| Tags | Hack Guideline |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.