What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-02-22 11:20:00 | New Legislation Builds on California Data Breach Law (lien direct) | This bill requires businesses to notify consumers of compromised passport numbers and biometric data. | Data Breach | ||
 |
2019-02-21 12:01:00 | (Déjà vu) 7 mobile security threats you should take seriously in 2019 (lien direct) | Mobile security is at the top of every company's worry list these days - and for good reason: Nearly all workers now routinely access corporate data from smartphones, and that means keeping sensitive info out of the wrong hands is an increasingly intricate puzzle. The stakes, suffice it to say, are higher than ever: The average cost of a corporate data breach is a whopping $3.86 million, according to a 2018 report by the Ponemon Institute. That's 6.4 percent more than the estimated cost just one year earlier. [ Learn how SandBlast Mobile simplifies mobile security. | Get the latest from CSO by signing up for our newsletters. ] | Data Breach | ||
|
2019-02-20 15:30:00 | POS Vendor Announces January Data Breach (lien direct) | More than 120 restaurants were affected by an incident that exposed customer credit card information. | Data Breach | ||
 |
2019-02-20 09:08:03 | Security breach at North Country PoS firm hits hundreds of US restaurants and Hotels (lien direct) | North Country Business Products POS (point-of-sale) and security solutions provider announced a data breach that affected hundreds of U.S. restaurants and hotels. North Country Business Products point-of-sale and security solutions provider announced a data breach, the company is currently used by 6500 customers around the Midwest. “North Country Business Products, Inc. (“North Country”), today announced that a recent data […] | Data Breach | ||
 |
2019-02-19 20:07:05 | Breach at PoS Firm Hits Hundreds of U.S. Restaurants, Hotels (lien direct) | Point-of-sale (PoS) solutions provider North Country Business Products, whose products are used at over 6,500 locations across the United States, recently disclosed a data breach that resulted in the exposure of payment card data. | Data Breach | ||
 |
2019-02-19 18:10:00 | Cards Used at 137 Restaurants Exposed by Point-of-Sale Breach (lien direct) | North Country Business Products point-of-sale and security solutions provider with roughly 6500 customers around the Midwest has disclosed a data breach which led to the exposure of payment information for clients who used their credit and debit cards at 137 restaurants. [...] | Data Breach | ||
 |
2019-02-19 11:32:01 | LandMark White data breach could impact Westpac property service customers (lien direct) | Westpac Group says names, addresses, and contact details may have been exposed through the third party breach. | Data Breach | ||
 |
2019-02-19 08:29:05 | 450,000 usernames and passwords stolen from Coinmama cryptocurrency broker (lien direct) |  Coinmama, a site that is supposed to “make it fast, safe and fun” to buy Bitcoins and Etherium with a credit card, has suffered a data breach that has resulted in almost half a million customers having their personal details breached.
Read more in my article on the Hot for Security blog.
|
Data Breach | ||
|
2019-02-19 03:00:00 | Review: SlashNext is like shooting phish in a barrel (lien direct) | Using social engineering in conjunction with malicious program delivery, a technique known as phishing, remains one of the biggest threats to the cybersecurity landscape. If human users can be tricked into taking an action such as downloading malware, connecting with a compromised website, or even providing their credentials directly to criminals, it often overrides many of the automatic protections that cyber defenses offer. It's become so popular and so successful that the most recent Verizon Data Breach Investigations Report puts phishing and social engineering attacks at the center of 93 percent of breaches in 2018. | Data Breach | ||
|
2019-02-18 13:28:04 | Wendy\'s Reaches $50 Million Settlement With Banks Over Data Breach (lien direct) | US fast food restaurant chain Wendy's announced recently that it has reached a settlement with the thousands of financial institutions impacted by the data breach suffered by the company in 2015 and 2016. | Data Breach | ||
 |
2019-02-15 22:30:01 | Data Breach Bonanza: Dating Apps, Equifax, Mass Credential Dumps (lien direct) | Data-exposure "lowlights" for the week ending Feb. 15, 2019. | Data Breach | Equifax | |
 |
2019-02-15 21:30:00 | Equifax Data Breach A Sign Of Global Cyberwarfare? (lien direct) | The Equifax data breach in which millions of Americans had their personal details stolen may have been carried out by a foreign government in a bid to recruit U.S. spies, experts believe. Off the back of this, please see comments from Terry Ray, senior vice president and Imperva fellow who talks about how this is … The ISBuzz Post: This Post Equifax Data Breach A Sign Of Global Cyberwarfare? | Data Breach | Equifax | |
|
2019-02-15 11:15:04 | Coffee Meets Bagel dating app confirms data breach (lien direct) | The week closes with the news of another embarrassing data breach, the Coffee Meets Bagel confirmed a hack on Valentine’s Day. The dating app Coffee Meets Bagel confirmed that hackers breached its systems on Valentine’s Day and may have obtained access to users’ account data. The company notified the incident to account holders, the intrusion […] | Data Breach Hack | ||
|
2019-02-15 06:17:00 | (Déjà vu) Data breaches exposed 5 billion records in 2018. (lien direct) | The number of publicly known data breaches decreased last year compared to 2017, despite harsher breach notification rules going into effect in Europe. The number of compromised sensitive records also went down by more than a third, from 7.9 billion records to around 5 billion. [ How much does a data breach cost? Here's where the money goes. | Get the latest from CSO by signing up for our newsletters. ] According to a new report from security intelligence vendor Risk Based Security (RBS), over 6,500 incidents that resulted in compromised data have been publicly disclosed last year, two-thirds of them originating in the business sector. The government sector accounted for 13.9 percent, the medical sector for 13.4 percent and education for 6.5 percent. | Data Breach | ||
|
2019-02-14 15:15:01 | Coffee Meets Bagel Dating App Discloses Data Breach on Valentine\'s Day (lien direct) | As a Valentine's Day gift to all its users, online dating app Coffee Meets Bagel disclosed a data breach that contained user's email addresses and names. This data breach was discovered as part of a compilation of leaked credentials that was being sold on criminal marketplaces. [...] | Data Breach | ||
|
2019-02-14 12:55:03 | Millions Affected By 500px Data Breach (lien direct) | 500px online photography network suffered as data breach last summer around July 5, 2018 but the incident was not discovered until last week. The breach has affected 15 million photographers who signed up . The stolen data includes: users' names, email addresses, usernames, hashed passwords and birth date, gender and city/state/country if provided. 500px working … The ISBuzz Post: This Post Millions Affected By 500px Data Breach | Data Breach | ||
 |
2019-02-13 13:32:05 | 4 ways your company can avoid a data breach (lien direct) | Only one in three organizations say they are confident they can prevent data breaches, according to Balbix. | Data Breach | ||
 |
2019-02-13 13:30:04 | What Have We Learned About Data Protection After Another Year of Breaches? (lien direct) | >In 2018, data protection became top of mind for organizations around the world. What lessons can we draw from to help improve regulatory compliance, data breach protection and risk management in 2019? | Data Breach | ||
|
2019-02-12 17:55:00 | Up to 100,000 Reported Affected in Landmark White Data Breach (lien direct) | Australian property valuation firm Landmark White exposed files containing personal data and property valuation details. | Data Breach | ||
|
2019-02-11 18:30:05 | (Déjà vu) EE Data Breach Led To \'Stalking\' Of EE Employee\'s Girlfriend (lien direct) | An EE customer has said she was stalked by an ex-partner who worked at the firm after he accessed her personal data without permission. Francesca Bonafede’s number was switched to a new handset and her address and bank details were accessed. She said the company failed to take the data breach seriously and she had … The ISBuzz Post: This Post EE Data Breach Led To ‘Stalking’ Of EE Employee’s Girlfriend | Data Breach | ||
|
2019-02-11 15:15:00 | OkCupid Denies Data Breach Amid Account Hack Complaints (lien direct) | Users on the dating website report hackers breaking into their accounts, changing email addresses, and resetting passwords. | Data Breach Hack | ||
|
2019-02-10 17:55:00 | Mumsnet Data Leak (lien direct) | Mumsnet, has experienced a data leak. Users logging into their accounts were given access to other users' details, with account information being “switched”. It appears this happened while Mumsnet was migrating services to the cloud. Parenting site Mumsnet hit by data breach https://t.co/7oPSzN1dxF — CRISP (@CrispSurv) February 10, 2019 Experts Comments below: Stephen Gailey, Solutions … The ISBuzz Post: This Post Mumsnet Data Leak | Data Breach | ||
 |
2019-02-08 23:05:05 | Parenting site Mumsnet hit by data breach (lien direct) | The flaw meant account holders saw some details of other users and their message history. | Data Breach | ||
 |
2019-02-08 20:13:01 | Women Needed in Cybersecurity (lien direct) | 2018 was an extremely intense year in the field of cybersecurity. The Verizon Data Breach Report confirmed 2,216 breaches across 65 countries. From what the experts say, we can expect 2019 to be intense as well. According to a report by Cybersecurity Ventures, it's predicted that by 2021 cybercrime will cost the world $6 trillion […] | Data Breach | ||
 |
2019-02-08 10:20:04 | EE customer stalked by ex-partner following data breach. (lien direct) | An EE customer has said she was stalked by an ex-partner who worked at the firm, after he accessed her personal data without permission. Francesca Bonafede’s number was switched to a new handset and her address and bank details were accessed. She said the company failed to take the data breach seriously and she had […] | Data Breach | ||
|
2019-02-08 00:02:00 | EE data breach \'led to stalking\' (lien direct) | A customer's ex-partner accessed her new address and bank details, before turning up at her home. | Data Breach | ||
|
2019-02-06 10:43:00 | Report: Over 59,000 GDPR data breach notifications, but only 91 fines (lien direct) | Since the European Union's General Data Protection Regulation (GDPR) came into effect in May last year, EU organizations have reported almost 60,000 data breaches, but so far fewer than 100 fines have been issued by regulators. [ Learn how to protect personally identifiable information (PII) under GDPR. | Get the latest from CSO by signing up for our newsletters. ] | Data Breach | ||
|
2019-02-01 21:35:01 | Houzz Urges Password Resets After Data Breach (lien direct) | The decorating website said that account usernames, passwords and more have been compromised as part of a breach. | Data Breach | ||
|
2019-02-01 16:10:03 | Data Breach Fatigue Makes Every Day Feel Like Groundhog Day (lien direct) | >The incessant stream of high-profile data breaches can make every day seem like Groundhog Day. How can businesses combat data breach fatigue and rebuild trust through improved breach response? | Data Breach | ||
 |
2019-02-01 14:00:00 | Things I Hearted This Week, 1st Feb 2019 (lien direct) |
Hello February! I was doing some research last night and was surprised to discover that the Target breach is over five years old! Five years! I was sure it only happened a couple of years ago - but such is the fast-paced nature of the industry, and also I guess a testament to how certain major breaches become part of infosec folklore. Like TJX, or Heartland - and no, I’m not going to look up when any of those occurred because I’ll probably end up feeling a lot older than I already do.
Enough reminiscing - let’s get down to it.
The Big Five
There’s been a lot of things I didn’t heart this week, although for one reason or another they ended up in my list of things to talk about. So, if you’re wondering about the stories regarding Facebook and Apple, and also Google, then yes, I did see them, and no, I don’t fancy talking about them.
But speaking of large companies, Kashmir Hill has undertaken what is perhaps becoming my favourite piece of tech journalism ever. WIth detailed write ups and slick videos showcasing how she cut out the big five of Amazon, Facebook, Google, Microsoft, and Apple from her life, one week at a time.
Life without the tech giants | Gizmondo
Week 1, Amazon | Gizmondo
Week 2, Facebook | Gizmondo
Week 3, Google | Gizmondo
Considerations for When Your Apartment Goes “Smart”
Everything is getting ‘smart’ these days. By smart, I mean connected and vulnerable. So, what should you do if you live in an apartment where everyone is getting fancy new smart locks (or terribly insecure cheap locks depending on how you look at it).
Lesley Carhart recently found herself in the same position, and has written a really good post on security considerations if you ever find yourself in a similar position.
Security Things to Consider When Your Apartment Goes ‘Smart’ | tisiphone
Abusing Exchange: One API Call Away From Domain Admin
An attacker with just the credentials of a single lowly Exchange mailbox user can gain Domain Admin privileges by using a simple tool. Very good writeup here.
Abusing Exchange: One API call away from Domain Admin | dirkjanm.io
_(1)_(1).jpg)
Sending Love Letters
The "Love Letter" malspam campaign has now changed its focus to Japanese targets and almost doubled the volume of malicious attachments it delivers.
Love Letter Malspam Serves Cocktail of Malware, Heavily Targets Japan | Bleeping Computer
While we’re talking about Japan, a new law in Japan allows the nation's National Institute of Information and Communications Technology (NICT) to hack into citizens' personal IoT equipment as part of a survey of vuln |
Data Breach Hack | Yahoo | |
|
2019-02-01 13:55:01 | Home Design Website Houzz Alerts Users of Data Breach (lien direct) | Home remodeling and design platform Houzz informed customers this week of a data breach that involved some personal information. | Data Breach | ||
|
2019-02-01 09:04:02 | State Bank of India left archive with millions of Customer messages exposed (lien direct) | Another data breach made the headlines, this time the victim is the State Bank of India that left a database containing personal information exposed online. The State Bank of India that left a database containing personal information exposed online. The discovery was made by an anonymous security researcher that has found a server used for […] | Data Breach | ||
|
2019-01-31 21:55:03 | Minnesota Department of Human Services Reports Data Breach (lien direct) | The Minnesota Department of Human Services says a data breach potentially exposed personal information on up to 3,000 people. | Data Breach | ||
|
2019-01-31 18:51:05 | 2019 Already Marred By Slew of Data Breach Incidents (lien direct) | So far, 2019 shows no signs of a decline in data incidents. | Data Breach | ||
|
2019-01-31 15:13:00 | Airbus data breach exposes some employees\'data (lien direct) | The European airplane manufacturer Airbus announced to have suffered a data breach that exposed some employees’ data. The European airplane manufacturer Airbus announced to have suffered a data breach, hackers broke into the company “Commercial Aircraft business” information systems and gained access to some of its employees’ personal information. “Airbus SE (stock exchange symbol: AIR) […] | Data Breach | ||
|
2019-01-31 13:50:00 | Airbus Employee Info Exposed in Data Breach (lien direct) | Few details as yet on a cyberattack that hit Airbus' commercial aircraft business. | Data Breach | ||
|
2019-01-31 10:31:03 | Yahoo\'s Settlement Proposal on Data Breach Case Rejected by Court. (lien direct) | Yahoo's proposed a $50 million pay-out, plus two years of free credit monitoring for about 200 million people in the United States and Israel was rebuffed by U.S. District Judge Lucy Koh, who said she couldn't declare the settlement “fundamentally fair, adequate and reasonable” because it did not say how much victims could expect to […] | Data Breach | Yahoo | |
 |
2019-01-31 00:59:01 | Airbus Suffers Data Breach, Some Employees\' Data Exposed (lien direct) | European airplane maker Airbus admitted yesterday a data breach of its "Commercial Aircraft business" information systems that allowed intruders to gain access to some of its employees' personal information.
Though the company did not elaborate on the nature of the hack, it claimed that the security breach did not affect its commercial operations. So, there's no impact on aircraft production.
|
Data Breach | ||
|
2019-01-30 22:34:01 | Airbus data breach impacts employees in Europe (lien direct) | Aircraft manufacturer still investigating the breach. Did not reveal any other information. | Data Breach | ||
|
2019-01-30 16:33:04 | Airbus Data Breach Exposes Employee Credentials, Professional Contact Details (lien direct) | Commercial aircraft manufacturer Airbus announced a data breach incident that impacted the company's "Commercial Aircraft business" information systems and led to third parties gaining unauthorized access to data. [...] | Data Breach | ||
 |
2019-01-30 12:19:00 | Judge Denies Approval of $50M Settlement to Yahoo Data Breach Lawsuit (lien direct) | A federal judge has denied the approval of a proposed $50 million settlement to a class action lawsuit over a data breach at Yahoo. On 28 January, Judge Lucy Koh rejected the settlement in a order submitted to the San Jose division of the U.S. District Court in the Northern District of California. The settlement, […]… Read More | Data Breach | Yahoo | |
|
2019-01-30 12:00:00 | Discover Issues New Cards Following Data Breach (lien direct) | The credit card company reports Discover's card systems were not involved in the breach, discovered in August 2018. | Data Breach | ||
|
2019-01-29 14:50:00 | Yahoo data breach payout blocked by judge (lien direct) | The judge is unhappy about the sum involved and the vagueness of promised cyber-security fixes. | Data Breach | Yahoo | |
|
2019-01-29 12:06:02 | Untold Number of Discover Card Account Holders Notified of Data Breach (lien direct) | An undisclosed number of Discover card account holders have learned of a data breach that might have compromised their account information. According to Bleeping Computer, Discover Financial Services first learned of the security incident on 13 August 2018. The American financial services company subsequently filed data breach notices with the California Attorney General’s office on […]… Read More | Data Breach | ||
|
2019-01-28 18:35:05 | Discover Card Users Affected by Data Breach, New Credit Cards Issued (lien direct) | Discover Financial Services learned that on August 13, 2018, "Discover card account might have been part of a data breach," according to a data breach notice filed on January 25, 2019, with the California Attorney General's office [...] | Data Breach | ||
|
2019-01-28 09:25:05 | (Déjà vu) Data breach notification law amended in Massachusetts. (lien direct) | The Massachusetts data breach notification law has been amended. The amendments include providing victims who fall victim to a data breach a free credit freeze and 18 months of free credit monitoring. Furthermore, companies can no longer delay notifying authorities and victims of a breach on the basis that they do not know the number […] | Data Breach | ||
|
2019-01-28 04:00:01 | Regulatory Fines, Prison Time Render “Check Box” Security Indefensible (lien direct) | In May 2017, the Equifax data breach compromised critical credit and identity data for 56 percent of American adults, 15 million UK citizens and 20,000 Canadians. The Ponemon Institute estimates that the total cost to Equifax could approach $600M in direct expenses and fines. That doesn't include the cost of the security upgrades required to […]… Read More | Data Breach | Equifax | |
|
2019-01-27 10:47:00 | (Déjà vu) Security Affairs newsletter Round 198 – News of the week (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal 20% discount Kindle Edition Paper Copy Once again thank you! Collection #1 Data Breach Analysis – Part 1 […] | Data Breach | ||
|
2019-01-26 08:48:04 | “Collection #1” Data Breach Analysis – Part 2 (lien direct) | The cyber security expert Marco Ramilli continues its analysis of the data leak known as Collection #1, he shared some interesting views on dataThe cyber security expert Marco Ramilli continues its analysis of the data leak known as Collection #1, he shared some interesting views on data On January 19th we downloaded Collection #1 to make statistics […] | Data Breach | ||
|
2019-01-25 12:22:04 | GDPR Behind 42K Data Breach Notifications, 255 Investigations (lien direct) | Data Protection Authorities (DPAs) across Europe received 95,180 complaints regarding the mishandling of personal data and companies reported a record number of 41,502 data breaches since the General Data Protection Regulation (GDPR) was enacted on 25 May 2018 [...] | Data Breach |
To see everything:
Our RSS (filtrered)
