What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-10-12 15:00:00 | Singtel\'s Australian IT Firm Dialog Suffers Data Breach (lien direct) | The breach affected around 20 clients and 1000 current and/or former Dialog employees | Data Breach | ||
 |
2022-10-11 11:04:00 | Toyota Discloses Data Breach Impacting Source Code, Customer Email Addresses (lien direct) | Japanese car manufacturer Toyota has disclosed a security incident that involved source code hosted on GitHub and which may have resulted in unauthorized access to roughly 300,000 customer email addresses. | Data Breach | ||
 |
2022-10-11 10:00:00 | PCI DSS v4.0 (lien direct) | 2022 is the year that much of the world managed, to varying degrees of success, to get back to normal. People ramped up traveling, returned to in-person activities and many returned to the office. The pandemic changed most aspects of day-to-day life, but hackers and other bad actors generally continued making life difficult for businesses, governments, and non-profit entities. As a result, there have been some innovative new ways to target networks and IT infrastructures that keep CISOs and their teams up at night. A sample of those types of concerning threat vectors include Ransomware as a Service, targeting IOT/OT infrastructure, general supply chain attacks. Tried and true methods, like phishing, and targeting unpatched or outdated systems to find vulnerabilities also continued. Data shows that threats are increasing in volume and impact across every industry and government agency. The Cybersecurity and Infrastructure Security Agency (CISA) recently reported that 14 critical US sectors have been the subject to intense ransomware attacks and the FBI identified over 2,000 ransomware attacks between January and July of 2022. (source) CheckPoint estimates that 1 out of 40 organizations will be hit by a ransomware attack and 84% of those sees some amount of data exfiltration. IBM appraises the average cost of a data breach at $4.3M and the recovery time from such attacks is approximately 22 days. And with all of that said, the World Economic Forum still attributes 95% of all data breaches to human error. The cybersecurity industry is fighting back. The PCI Security Standards Council (PCI SSC) sorted through over 6,000 pieces of feedback from over 200 organizations, to help it create the new standard aimed at significantly reducing the success of these types of attacks in the future. On May 31, 2022, the PCI SSC released version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS). This provides an accepted baseline of technical and operational requirements designed to protect various types of user account data. The updated standard and Summary of Changes document are available now on the PCI SSC website. Version 4.0 is a significant update to the standard, so to enable organizations to understand the new requirements and plan, execute and test updates, the current version of 3.2.1 remains active through March 31, 2024. Assessors are undergoing training and certification for the new standard now, and once available, they will be able to assess to either the current or new standard, based upon the plans of the organization. The new standard had many expected updates based upon evolving payment card industry security needs. There are also changes to the frequency of expected effort, shifting from specific durations between work to the idea that security is a continuous process. The stated goals for PCI DSS v4.0 are as follows: Continue to Meet the Security Needs of the Payment Industry; Promote Security as Continuous Process; Add Flexibility for Different Meth | Ransomware Data Breach Tool Vulnerability Threat Guideline | ||
 |
2022-10-11 04:57:05 | Optus data breach prompts pincer movement of twin regulatory probes (lien direct) | Data retention requirements to be considered alongside infosec failings Australian carrier Optus's recent data breach will be investigated by two regulators, the double trouble likely an indicator of the nation's displeasure at the incident – which saw almost ten million locals' personal data exposed online.… | Data Breach | ★★★ | |
|
2022-10-10 13:52:31 | State Bar of Georgia Confirms Data Breach Following Ransomware Attack (lien direct) | The State Bar of Georgia was hit by a ransomware attack earlier this year and the organization has now confirmed that member and employee information was compromised. | Ransomware Data Breach | ||
 |
2022-10-10 13:29:07 | Optus Parent Company Singtel Now Also Confirms Data Breaches (lien direct) | Just weeks after Optus disclosed that the data of 10 million users had been exposed in a data breach, its parent company, Singtel, is coping with two of its own data intrusions, according to The Guardian. Singtel acknowledged that information taken from Singtel in a 2020 cyber-attack appeared in a post on a data breach forum […] | Data Breach | ||
 |
2022-10-07 19:20:30 | The Uber Data Breach Conviction Shows Security Execs What Not to Do (lien direct) | Former Uber security chief Joe Sullivan's conviction is a rare criminal consequence for an executive's handling of a hack. | Data Breach | Uber Uber | |
|
2022-10-07 11:16:52 | Industry Reactions to Conviction of Former Uber CSO Joe Sullivan: Feedback Friday (lien direct) | Former Uber security chief Joe Sullivan has been found guilty by a jury over his role in covering up a massive data breach suffered by the ride sharing giant in 2016. | Data Breach | Uber Uber | |
 |
2022-10-06 21:39:45 | Former Uber CSO found guilty of obstruction in attempted data breach cover-up (lien direct) | Joe Sullivan schemed to hide a 2016 breach of 57 million users' information shortly after he was hired. | Data Breach | Uber Uber | |
 |
2022-10-06 17:00:00 | 5 Questions To Ask When Evaluating a Penetration Testing Company (lien direct) |
Whether your organization has been the victim of a recent data breach or your organization has never had expert penetration testing done before, it's probably time to call in cybersecurity experts. The right cybersecurity company can help you identify the strengths and weaknesses of your networks and systems so you can improve the security posture of your organization and stay one step ahead of threat actors. |
Data Breach Threat | ||
|
2022-10-06 15:00:00 | (Déjà vu) Uber\'s Former Security Chief Convicted of 2016 Data Breach Cover-Up (lien direct) | Joe Sullivan was charged two years ago with obstruction of justice and misprision | Data Breach | Uber | |
 |
2022-10-06 13:55:00 | 19-Year-Old Teen Arrested for Using Leaked Optus Breach Data in SMS Scam (lien direct) | The Australian Federal Police (AFP) has arrested a 19-year-old teen from Sydney for allegedly attempting to leverage the data leaked following the Optus data breach late last month to extort victims. The suspect is said to have carried out a text message blackmail scam, demanding that the recipients transfer $2,000 to a bank account or risk getting their personal information misused for | Data Breach | ||
 |
2022-10-06 13:18:28 | City of Tucson Data Breach impacted 123,500 individuals (lien direct) | >The City of Tucson, Arizona disclosed a data breach, the incident was discovered in May 2022 and impacted 123,500 individuals. The security breach was discovered at the end of May 2022 and concluded the investigation in September. According to the notification letter sample provided to the Maine Attorney General's Office, over 123,500 were impacted have been impacted […] | Data Breach | ||
 |
2022-10-06 13:16:00 | Guilty verdict in the Uber breach case makes personal liability real for CISOs (lien direct) | Yesterday, a federal jury handed down a guilty verdict to Joe Sullivan, the former CSO on charges of “obstruction of the proceedings of the Federal Trade Commission and misprision of felony in connection with the attempted cover-up of a 2016 hack at Uber” according to a notice published by the Department of Justice (DOJ).US Attorney Stephanie Hinds, upon learning of the verdict, admonished companies that are storing data as to their responsibility to also “protect that data and to alert customers and appropriate authorities when such data is stolen by hackers. Sullivan affirmatively worked to hide the data breach from the Federal Trade Commission (FTC) and took steps to prevent the hackers from being caught. We will not tolerate the concealment of important information from the public by corporate executives more interested in protecting their reputation and that of their employers than in protecting users. Where such conduct violates the federal law, it will be prosecuted.”To read this article in full, please click here | Data Breach Hack | Uber Uber | |
|
2022-10-06 12:27:00 | Former Uber Security Chief Found Guilty of Data Breach Coverup (lien direct) | A U.S. federal court jury has found former Uber Chief Security Officer Joseph Sullivan guilty of not disclosing a 2016 breach of customer and driver records to regulators and attempting to cover up the incident. Sullivan has been convicted on two counts: One for obstructing justice by not reporting the incident and another for misprision. He faces a maximum of five years in prison for the | Data Breach | Uber Uber | |
|
2022-10-06 11:37:12 | Personal Information of 123K Individuals Exposed in City of Tucson Data Breach (lien direct) | The City of Tucson, Arizona, is notifying roughly 123,000 individuals that their personal information was compromised in a recent data breach. The incident was identified at the end of May 2022, but the city concluded its investigation only last month. | Data Breach | ||
|
2022-10-06 10:59:08 | 19-Year-Old man arrested for misusing leaked record from Optus Breach (lien direct) | >The Australian Federal Police (AFP) arrested a 19-year-old teen from Sydney for attempting to use data from the Optus data breach in SMS scams. The Australian Federal Police (AFP) has arrested a 19-year-old teen from Sydney for allegedly attempting to use data leaked after the Optus data breach in a fraudulent scheme aimed at extorting […] | Data Breach | ||
|
2022-10-05 21:49:24 | Former Uber CISO Joe Sullivan Found Guilty Over Breach Cover-Up (lien direct) | 
A San Francisco jury on Wednesday found former Uber security chief Joe Sullivan guilty of covering up a 2016 data breach and concealing information on a felony from law enforcement.
|
Data Breach | Uber Uber | |
|
2022-10-05 18:00:00 | Telstra Telecom Suffers Data Breach Potentially Exposing Employee Information (lien direct) | Australia's largest telecommunications company Telstra disclosed that it was the victim of a data breach through a third-party, nearly two weeks after Optus reported a breach of its own. "There has been no breach of Telstra's systems," Narelle Devine, the company's chief information security officer for the Asia Pacific region, said. "And no customer account data was involved." It | Data Breach | ||
|
2022-10-05 14:58:33 | Telstra Telecom discloses data breach impacting former and current employees (lien direct) | >Bad news for the Australian telecommunications industry, the largest company in the country Telstra suffered a data breach. Australia’s largest telecommunications company Telstra disclosed a data breach through a third-party supplier. The company pointed out that its systems have not been breached, the security breach impacted a third-party supplier that previously provided a now-obsolete Telstra […] | Data Breach | ||
 |
2022-10-05 14:00:42 | Hyper-Personalized Data Breach Risk Intelligence (lien direct) | >
On average, five data breaches happen every day. Nearly 300 million individuals had their data compromised in 2021. Learn how Sontiq's BreachIQ™ protects the financial health of consumers and businesses. Download Now
|
Data Breach | ||
 |
2022-10-05 13:21:19 | City of Tucson discloses data breach affecting over 125,000 people (lien direct) | The City of Tucson, Arizona, has disclosed a data breach affecting the personal information of more than 125,000 individuals. [...] | Data Breach | ||
 |
2022-10-05 10:00:00 | What Experts Had To Say About the 2022 Cost of a Data Breach Report (lien direct) | >The 2022 Cost of a Data Breach report was eagerly anticipated by cybersecurity professionals and the technology industry as a whole. Following two years of increased remote work and other changes due to the pandemic, the report was an important benchmark on the lasting impact and future trends of data breaches. Not surprisingly, this year’s […] | Data Breach | ★★★★★ | |
|
2022-10-04 15:06:31 | Comment: Telstra Is Rocked By A Data Breach With Hackers Gaining Access To Staff Info (lien direct) | Following the news that: Telstra is rocked by a data breach with hackers gaining access to staff info. Telstra is rocked by a data breach with hackers gaining access to staff info (msn.com) | Data Breach | ||
|
2022-10-04 12:43:38 | Optus confirms 2.1 million ID numbers exposed in data breach (lien direct) | Optus confirmed yesterday that 2.1 million customers had government identification numbers compromised during a cyberattack last month. [...] | Data Breach | ||
 |
2022-10-04 11:20:28 | How to See Yourself in Cyber: Top Tips from Industry Leaders (lien direct) | It's 2022 and as we all know, the world is a very different place. However, one thing that has not changed is the importance of cybersecurity. In fact, it's more important now than ever before, as the SolarWinds hack and Executive Order prove. That's why for Cybersecurity Awareness Month this year, we asked cybersecurity pioneers and leaders to get their insights on staying cyber safe. Here are their thoughts on CISA's 4 Things You Can Do to See Yourself in Cyber. Enable Multi-Factor Authentication “With the continued rise in cybercrime, there are a few simple steps every person should take to protect themselves, if they aren't already. CISA's first recommended step to stay 'cyber-safe' is to implement multi-factor authentication. It significantly lessens the likelihood of being hacked via unauthorized access and compromised credentials, which, according to Verizon's 2021 Data Breach Investigations Report, were the gateway for 61% of data breaches. Enabling multi-factor… | Data Breach Hack Guideline | ★★ | |
|
2022-10-03 18:42:13 | TD Bank discloses data breach after employee leaks customer info (lien direct) | TD Bank has disclosed a data breach affecting an undisclosed number of customers whose personal information was stolen by a former employee and used to conduct financial fraud. [...] | Data Breach | ||
|
2022-10-03 17:00:00 | Uber Data Breach: What To Know About the 2022 Cybersecurity Attack (lien direct) |
No matter how robust network security is, even the biggest companies fall victim to cyber attacks. These malicious attacks can be costly - to the tune of 4.3 million on average - but they also disrupt operations and hurt a company's reputation. |
Data Breach | Uber | ★★★ |
|
2022-10-03 16:41:32 | Case Study | Cyberscout Helps CPA Firm Protect Clients and Reputation (lien direct) | >
An accounting firm discovered a data breach at one of its vendors exposed the information of several business clients. They turned to Cyberscout, a TransUnion brand, to assist those affected and to help minimize the reputational damage to the firm. Here's what happened. Download Now
|
Data Breach | ||
|
2022-10-03 14:35:40 | Russian retail chain \'DNS\' confirms hack after data leaked online (lien direct) | Russian retail chain 'DNS' (Digital Network System) disclosed yesterday that they suffered a data breach that allegedly exposed the personal information of 16 million customers and employees. [...] | Data Breach Hack | ★★★ | |
|
2022-10-03 13:14:32 | Optus Says ID Numbers of 2.1 Million Compromised in Data Breach (lien direct) | Australian telecommunications company Optus says that 2.1 million of its customers had numbers associated with their identification documents compromised in a recent data breach. | Data Breach | ||
 |
2022-10-03 10:06:39 | Lessons from the cyber front line (lien direct) | Very few weeks go by without news of another cyber attack or data breach and a quick scan of the BBC news website shows that in most months, there is at least one story that makes the national news headlines. While just a few years ago, many cyber attacks would go unnoticed by the public […] | Data Breach | ||
|
2022-09-30 14:52:09 | Humana 3rd Party Data Breach Via Choice Health Supplier (lien direct) | Humana disclosed a third-party data breach by Choice Health that impacted 22,767 patients. Humana is the third largest health insurance provider in the nation. Choice Health sells Medicare products on Humana's behalf. The company has confirmed that a Choice Health database was exposed to the internet due to a security misconfiguration caused by a third-party […] | Data Breach | ||
|
2022-09-30 13:25:06 | (Déjà vu) LeakBase Announces Swachhata Platform Breached, 16 Million User PII Records Exposed (lien direct) | Yesterday, data breach notification website Leakbase said someone allegedly hacked the Swachhata Platform in India and stole 16 million user records. Security researchers at CloudSEK , reported the news as they discovered a post by Leakbase sharing data samples containing personally identifiable information (PII), including email addresses, hashed passwords and user IDs. Earlier this week, […] | Data Breach | ||
|
2022-09-30 11:26:19 | Optus breach victims will get "supercharged" fraud protection (lien direct) | The Australian Federal Police (AFP) announced today the launch of Operation Guardian which will ensure that more than 10,000 customers who had their personal info leaked in the Optus data breach will get priority protection against fraud attempts. [...] | Data Breach | ||
 |
2022-09-29 18:45:29 | S3 Ep102: How to avoid a data breach [Audio + Transcript] (lien direct) | Latest episode - listen now! Tell fact from fiction in hyped-up cybersecurity news... | Data Breach | ||
 |
2022-09-29 16:00:00 | Optus data breach "attacker" says sorry, it was a mistake (lien direct) | >Categories: NewsTags: Optus Tags: breach Tags: optusdata Tags: text messages Tags: drivers' licenses Tags: Medicare Tags: identity protection A hacker stole the personal information of 10 million Optus customers, threatened to publish them in lots of 10,000 a day unless the ransom was paid, and then suddenly did a 180 degree turn. (Read more...) | Data Breach | ||
|
2022-09-29 15:42:00 | Swachh City Platform Suffers Data Breach Leaking 16 Million User Records (lien direct) | A threat actor by the name of LeakBase has shared a database containing personal information allegedly affecting 16 million users of Swachh City, an Indian complaint redressal platform. Leaked details include usernames, email addresses, password hashes, mobile numbers, one-time passwords, last logged-in times, and IP addresses, among others, according to a report shared by security firm CloudSEK | Data Breach Threat | ||
 |
2022-09-29 04:22:27 | The Optus Data Breach – Steps You Can Take to Protect Yourself (lien direct) | >
Optus, one of Australia's largest telecommunications carriers, reported news of a data breach that may have compromised the information of...
|
Data Breach | ||
 |
2022-09-29 01:20:28 | Optus: How a massive data breach has exposed Australia (lien direct) | Anger rises after 40% of Australians had details stolen in possibly the nation's worst-ever breach. | Data Breach | ||
|
2022-09-28 13:00:00 | BrandPost: Moving Security Technologies to the Cloud? 4 Tips for CISOs (lien direct) | As organizations increasingly migrate their data and applications to the cloud, it's more important than ever to understand how to protect this highly sensitive business information. Preventing leaks and data theft is critical for maintaining customer trust. And the cost of a single data breach can reach millions of dollars for many companies.While cloud computing may initially introduce some security complexity, it's worth it in the end. The cloud provides a more secure environment than you could ever hope for with on-premises servers. The challenge? How do you shift to the cloud without disrupting your business.Here are four steps CISOs can take to ensure a smooth transition:To read this article in full, please click here | Data Breach | ||
|
2022-09-28 10:09:20 | Optus telco data breach – what we know so far (lien direct) | Optus, an Australian telecoms provider, has become the latest high-profile victim of a data breach – with the alleged attacker demanding payment to buy back millions of customer records, having already made 10,000 public online. In the most recent developments, the attacker has now rescinded threats and deleted them from a data breach website. However, […] | Data Breach | ||
|
2022-09-27 18:15:08 | Samsung facing class action over customer data leaks (lien direct) | Not only did the company fail to protect their data, the suit alleges, it also forced users to register A class action lawsuit has accused Samsung of failing to address a data breach in early 2022, leading to the theft of US customers' personally identifiable information (PII) in a second attack earlier this month.… | Data Breach Guideline | ||
|
2022-09-27 15:37:51 | Defense firm Elbit Systems of America discloses data breach (lien direct) | >Elbit Systems of America, a subsidiary of defense giant Elbit Systems, disclosed a data breach after Black Basta ransomware gang claimed to have hacked it. In late June, the Black Basta ransomware gang claimed to have hacked Elbit Systems of America, the extortion group added the name of the company to its Tor leak site. […] | Ransomware Data Breach | ||
|
2022-09-27 14:57:32 | Watchfinder Hack: Expert Comment (lien direct) | Watchfinder, one of the largest online watch dealers has reported a data breach that may have disclosed customer emails and phone numbers, according to Bloomberg. The UK-based company said customers should be alert to any “suspicious correspondence,” after it discovered “unauthorised access to a user account belonging to one of our employees”. | Data Breach | ||
|
2022-09-27 12:24:20 | Defense Giant Elbit Confirms Data Breach After Ransomware Gang Claims Hack (lien direct) | Elbit Systems of America, a subsidiary of Israeli defense giant Elbit Systems, has confirmed suffering a data breach, a few months after a ransomware gang claimed to have hacked the company's systems. | Ransomware Data Breach Hack | ||
|
2022-09-27 12:00:00 | 3 Keys to an Effective Enterprise IT Risk Management Strategy (lien direct) | >The average cost of a data breach hit a record high of $4.35 million, a 13% increase in the last two years, according to the 2022 Cost of a Data Breach report. In addition, laws are holding board members personally liable for IT security breaches and ineffective security controls, so it’s easy to see why […] | Data Breach | ★★ | |
 |
2022-09-26 14:00:46 | Recent Optus Data Breach Teaches the Importance of Recognizing Social Engineering (lien direct) |
|
Data Breach | ||
|
2022-09-26 13:46:57 | Australia Mulls Tougher Cybersecurity Laws After Data Breach (lien direct) | The Australian government said on Monday it is considering tougher cybersecurity rules for telecommunications companies and blamed Optus, the nation's second-largest wireless carrier, for an unprecedented breach of personal data from 9.8 million customers. | Data Breach | ||
|
2022-09-26 13:44:27 | Breached American Airlines Email Accounts Abused for Phishing (lien direct) | American Airlines discovered it was breached after receiving reports of employee email accounts being used in phishing attacks. Last week, the airline started informing some of its customers that their personal data was likely compromised in a data breach identified in early July. | Data Breach |
To see everything:
Our RSS (filtrered)
