What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-02-03 11:28:17 | One Identity introduces new cloud-based offerings to enable Zero Trust architectures (lien direct) | As the transition to remote working has forced many companies’ hands for increased or faster adoption of cloud services, One Identity has announced the availability of its new software-as-a-service (SaaS) identity governance and administration (IGA) and privileged access management (PAM) solutions. Based on the One Identity Security Platform and designed with the full IGA and […] | |||
|
2021-02-03 10:49:10 | Newspaper speculates Foxtons Group data breach (lien direct) | The i newspaper speculated that Foxtons Group has experienced a data breach, with thousands of customers’ personal and financial data leaked on the dark web. The exclusive news for i claims that Foxtons did not take action when they first found out in January that their customers’ data was available on the dark web following […] | Data Breach | ||
|
2021-02-03 10:01:52 | Nozomi Networks Tops 100% Revenue Growth (lien direct) | Nozomi Networks Inc., the leader in OT and IoT security, today announced record 2020 growth and tremendous momentum moving into 2021. As industrial and critical infrastructure cybersecurity threats made operational resilience a top priority for large enterprises around the world, the company experienced 110% growth in annual recurring revenue (ARR) and doubled its customer base […] | Guideline | ||
|
2021-02-02 15:17:21 | Data in a historic era: zero touch or zero trust (lien direct) | After a year of disruption, in which people and organisations relentlessly worked and innovated just to stay afloat, organisations realise that they cannot wait for “normalcy” before making progress. Cyber criminals, regulators, and competitors are already moving, so you cannot afford to wait. We can already declare 2021 a year to focus on cybersecurity and […] | |||
|
2021-02-02 11:57:59 | (Déjà vu) 1.6 million Washington unemployment claims exposed in data breach (lien direct) | The Office of the Washington State Auditor (SAO) has experienced a data breach which has resulted in the exposure of 1.6 million employment claims, and the sensitive personal information that they contain. The Washington SAO revealed that a threat actor had exploited a vulnerability in Accellion, a secure file transfer service that helps organisations share […] | Data Breach Vulnerability Threat | ||
|
2021-02-02 11:54:48 | (Déjà vu) Identity theft in US at all time high (lien direct) | The U.S. Federal Trade Commission (FTC) said today that the number of identity theft reports has doubled during 2020 when compared to 2019, reaching a record 1.4 million reports within a single year. The FTC claimed that: “After the government expanded unemployment benefits to people left jobless by the pandemic, cybercriminals filed unemployment claims using other […] | ★★★★★ | ||
|
2021-02-02 11:28:32 | Ransomware Gangs abusing VMWare ESXi (lien direct) | Ransomware gangs are exploiting the VMWare ESXi product to encrypt the virtual hard drives found in virtual machines. These attacks were first seen in October 2020, and have been linked to a criminal group that deployed the RansomExx ransomware. Evidence from multiple security researchers suggests that the hackers used CVE-2019-5544 and CVE-2020-3992. These are found […] | ★★★ | ||
|
2021-02-02 11:23:13 | Book Review: \'The Smartest Person in the Room: The Root Cause and New Solution for Cybersecurity\' By Christian Espinosa (lien direct) | Growing up was not easy for entrepreneur, Iron Man and author, Christian Espinosa. “I played football, but I was also smart, but I also liked heavy metal, so I felt out of place from each particular clique” Espinosa revealed reminiscing on his formative years. As a response to various socio-economic difficulties beyond control, Espinosa's mindset […] | ★★★ | ||
|
2021-02-02 11:18:46 | Greek police to use biometrics as part of \'Smart Policing\' project (lien direct) | Greek police are planning to introduce new devices into their force in order to allow real-time fingerprint scanning and facial recognition to help verify citizens identities. The introduction of this technology is part of Greece’s 4.5 million euro ‘Smart Policing’ initiative. The ‘Smart Policing’ project began in 2017 and aims to improve the identification process […] | ★★★★ | ||
|
2021-02-01 14:55:16 | (Déjà vu) Severe Bug in Libgcrypt Encryption Library (lien direct) | The flaw was discovered on January 28th by Travis Ormandy of Project Zero, which is a security research unti within Google. It was found in GNU Privacy Guard (GnuPG)’s Libgcrypt encryption software, and potentially allowed attackers to write arbitrary data to the target machine. This is a severe vulnerability, which could lead to remote code […] | Guideline | ★★ | |
|
2021-02-01 14:44:02 | UKRI falls Victim to Ransomware Attack (lien direct) | The UKRI announced this week that it feel victim to a cyberattack, which resulted in “data being encrypted by a third party.” Details are scarce, and it has not been reported who was behind the attack. The incident has been reported to the National Crime Agency, the National Cyber Security Centre and Information Commissioner’s Office. […] | Ransomware | ||
|
2021-02-01 13:16:44 | Florida Medicaid website hacked for the past 7 years (lien direct) | Florida Healthy Kids Corp, a children Medicaid health plan based in Tallahassee has discovered that it has been victim to a 7-year data breach. The health plan was first notified of the breach on 9th December 2020 and soon after launched an investigation into it. During the investigation, they found that there had been “significant […] | |||
|
2021-01-29 18:13:55 | Data Protection Day 2021, the view from the frontline (lien direct) | Robert Meyers, channels solutions architect and fellow of information privacy at One Identity: “2020 was a very tumultuous year and, in privacy, some good things happened, and some bad things happened. On the good side, we had the NIST Privacy Framework 1.0, and on the bad side, breach after breach, let alone things that […] | ★★ | ||
|
2021-01-29 13:49:51 | USCellular suffers data breach (lien direct) | USCellular has suffered a data breach due to hackers gaining access to their CRM. Once the hackers infiltrated the CRM they were then able to view customers’ accounts and personal data. USCellular stated in a data breach notification filed to the attorney general’s office in Vermont, that the retail store’s employees were victims of a […] | Data Breach | ★★ | |
|
2021-01-29 13:38:20 | \'Cyber Threats and Trends: Pandemic Style\' (lien direct) | A report published by Neustar, Inc., titled ‘Cyber Threats and Trends: Pandemic Style’, outlines any security risks companies were faced with throughout the COVID-19 pandemic. The report found a 154% increase in the number of cyber attacks between the years 2019 and 2020. There was particular growth in ransom related DDoS (RDDoS) attacks with a […] | ★★★ | ||
|
2021-01-29 13:36:26 | “Severe” Vulnerability found in Libgcrypt (lien direct) | A serious vulnerability has been found in the latest version of GNU Privacy Guard (GnuPG)‘s free encryption software cryptographic library, Libgcrypt 1.9.0. Libgcrypt is GnuPG’s general purpose cryptographic library GnuPG, but a number of other encryption software’s also employ it. Libgcrypt 1.9.0 was originally been released last week, on 19th January 2021, and was supposed […] | Vulnerability | ||
|
2021-01-29 12:25:41 | Stranded Australians\' Data “unintentionally” Shared (lien direct) | The Australian government admitted to unintentionally sharing sensitive passenger information with one of the department’s consular clients. This data breach occurred on January 24th, in which passenger’s full name, gender, date of birth, email address, passport details (number, expiry, issuing country), Australian citizenship status, phone number, current location, and flight booking reference of those booked […] | Data Breach | ||
|
2021-01-29 11:39:49 | Musings on Data Privacy Day (lien direct) | As always, the phrase makes you think. Data privacy has a day, for people to focus on it and think about the betterment of privacy. Should we call this something more relatable to people? Privacy is all about a person. Data doesn't need privacy. People and what is important to every one of them needs […] | |||
|
2021-01-28 17:49:09 | The White Hat Ball 2021 (lien direct) | We were fortunate enough to sit down with Martin Tyley, Head of UK Cyber, KPMG ahead of this year's annual White Hat Ball. Those with experience at White Hat events know that White Hat's charitable endeavours and KPMG's sponsorship are almost synonymous. Again, KPMG are this year's headline sponsor, as Tyley, and the whole of […] | ★★★★ | ||
|
2021-01-28 12:59:05 | Apple: New App Tracking Transparency (lien direct) | Apple has announced it will introduce a new privacy control feature in the spring. This new feature, known as App Tracking Transparency will prevent iPhone apps from secretly shadowing users. A general date has not yet been disclosed, but the new feature will likely be a part of an update that is planned to arrive […] | |||
|
2021-01-28 11:03:33 | How to stay safe while remote working this Data Privacy Day (lien direct) | As 2020 concluded, it was widely accepted that remote working was here to stay. In fact, 60% of the UK workforce have transferred to a remote model during the first lockdown, and the trend will likely continue long after the pandemic as workers come to expect more flexibility from their employers. However, while this may prompt office workers […] | ★★★★ | ||
|
2021-01-28 11:02:04 | Mozilla: Internet Ecosystem Becoming More Fragmented (lien direct) | Mozilla’s 2020 Internet Health Report deals with some key concerns that could potentially threaten the openness, security and accessibility of the Internet. Over the past year, the Internet has been riddled with problems related to “built-in” racial bias, creating a toxic environment in which discrimination and diversification are rampant. Mozilla believes that the Internet landscape […] | ★★★ | ||
|
2021-01-28 10:57:02 | New toolkit can build phishing pages in real-time (lien direct) | A new phishing tool kit has been developed by a cybercrime group which allows criminals to change text and logos in real-time on phishing pages in order to adapt to victims. The kit is called LogoKit, and according to it RiskIQ is has already been seen in use online. RiskIQ has said that the toolkit […] | Tool | ★★ | |
|
2021-01-28 10:22:31 | Grindr hit with $11.7m data privacy fine (lien direct) | Grindr, the worlds largest gay, bisexual and trans dating app has been hit with a large fine in Norway following an alleged breach of data privacy. Norway's Data Protection Authority (NDPA) announced on Tuesday that they are intending to fine Grindr $11.7m due to the app illegally disclosing user data to advertising firms. The dating app […] | ★★ | ||
|
2021-01-27 16:58:27 | TikTok bug could have exposed millions of users\' data (lien direct) | Research released on Tuesday revealed that a now-patched TikTok security flaw could have exposed millions of the app’s users and their associated phone numbers to attackers who could then use that data for malicious activity. The flaw only affected users who have their phone number linked to their accounts or use their phone numbers to […] | |||
|
2021-01-27 16:46:47 | More than 13,000 malware threats were detected every hour in 2020 (lien direct) | New research from Seqrite has found that in 2020 there were 13,733 malware threats detected every hour. The report showed that of all threats Trojan malware threats were the leaders quarter-on-quarter (QoQ) and year-on-year (YoY). According to the research out of the 113 million malware detections, the first quarter totalled the highest at 36 million […] | Malware Guideline | ||
|
2021-01-27 13:17:48 | (Déjà vu) Retail giant falls Victim to REvil Ransomware Attack (lien direct) | Around January 14th, 2021, the retail giant Dairy Farm was attacked by the REvil ransomware operation. The attackers demanded a $30 million ransom. The ransomware group compromised Dairy Farm’s network and encrypted devices. Allegedly the attackers had access to information up until 7 days after the attack. Dairy Farm is a massive pan-Asian retail chain […] | Ransomware | ||
|
2021-01-27 12:22:10 | iOS 14.4 Released to Fix Three Security Bugs (lien direct) | The new update has been released with security fixes for three vulnerabilities that had affected iPhones and iPads. Apple admitted that the three bugs “may have been actively exploited” by hackers. Apple has refused any further commentary, leaving details of the security vulnerabilities scarce. It is unknown who started the attack and who was targeted, […] | |||
|
2021-01-27 10:33:47 | The Hacked and Yet to Be Hacked: SolarWinds Breach Shows Detection is Key to Reducing Risk and Damage (lien direct) | Several years back, a number of security industry leaders began declaring that there are only two types of organizations, those that have been hacked and those that don't yet know it. Industry analyst firm Gartner agreed and shortly thereafter began advising organizations to build out security strategies that could respond to this fact of digital […] | Guideline | ||
|
2021-01-26 14:06:51 | Increase in Ransomware Attacks on Healthcare Industry (lien direct) | In 2017 the NHS fell victim to the WannaCry ransomware attack, causing severe disruption and causing the UK’s health service £92m. On top of that, 19,000 patient appointments were cancelled. The attack was launched with malicious code placed in commonly used software. As a result, health systems prompted a renewed focus on cyber defences. Especially, […] | Ransomware | Wannacry Wannacry | |
|
2021-01-26 13:23:45 | New Malware spread through Whatsapp (lien direct) | Many users have already considered fleeing, the messaging app following recent changes in the privacy policy. The app suffered a massive loss of users, after many believed their messages would become less private and switched to Signal or Telegram. To make matters worse, WhatsApp is now being used to spread malware through messages from a […] | Malware | ||
|
2021-01-26 10:55:51 | Crane manufacturer Palfinger hit by global cyberattack (lien direct) | Palfinger, a global leader in crane and lifting manufacturing, has been targetted by a cyberattack which has disturbed both the companies business operations and IT systems. The crane manufacturer is Austrian based and has more than 11,000 employees in over 35 locations. Being one of the global leaders in crane and lifting solutions, Palfinger has […] | Guideline | ||
|
2021-01-26 10:39:56 | North Korean hackers target security researchers (lien direct) | Google has revealed that a number of cyber-security researchers who are focused on vulnerability research have been targetted by a North Korean government hacking group. Google’s Threat Analysis Group (TAG), who is a security team specialised in discovering advanced persistent threat (APT) groups, first noticed the attacks. Google’s TAG published a report outlining the attack, […] | Vulnerability Threat | ||
|
2021-01-25 16:03:40 | Effective ways to prevent payroll fraud (lien direct) | In recent times, there has been a huge increase in the number of fraudsters maliciously scamming businesses of all shapes and sizes – and even their crimes seem more sophisticated. Throughout the Coronavirus outbreak, as many migrated their businesses online, the increase in fraudulence and general cyber-crime become a large cause for concern, and payroll […] | |||
|
2021-01-25 12:14:31 | ADT Technician Watched Customers in their Homes (lien direct) | Surveillance Camer The former ADT Security technician pleaded guilty to computer fraud. He admitted to secretly tapping into customers’ home security systems over 9,600 times since 2015. A prosecutor explained how Aviles added his personal email address to his customers’ ADT Pulse accounts, giving him real-time access to their surveillance systems. “This defendant, entrusted with […] | Guideline | ||
|
2021-01-25 11:57:07 | 2.28 million MeetMindful users\' data leaked by hacker (lien direct) | Over 2.28 million users registered to the online dating site MeetMindful.com have had their personal details leaked online by a well-known hacker. The hacker has shared the dating sites data for free on a hacking forum. The 1.2 GB file shared on the forum contains users full names, email addresses, physical addresses, marital status, birth […] | |||
|
2021-01-25 11:35:03 | Biden appoints a new \'world class\' cybersecurity team (lien direct) | President Joe Biden has announced that he will be appointing a number of national security experts in order to help the US government recover from one of the most vicious hacks its agencies have ever suffered. While cybersecurity was demoted as a policy focus with the Trump administration, it will be of increased importance for […] | ★★ | ||
|
2021-01-22 18:21:05 | BTG+ implements Feedzai\'s Artificial Intelligence solution (lien direct) | BTG Pactual, the largest investment bank in Latin America, which has just launched its new retail bank BTG+, and Feedzai, the financial crime management platform, just announced a partnership that will strengthen the bank’s ability to monitor financial transactions using advanced machine learning. The partnership between the two companies also includes Pix monitoring, the new […] | |||
|
2021-01-22 17:06:17 | Cybersecurity Failure among Highest Risks, warns World Economic Forum (lien direct) | The 16th edition of the World Economic Forum's (WEF) Global Risk Report was released on Tuesday, and many of the risks/threats contained are unsurprising. The results are based on the Global Risks Perception Survey and were completed by 650 members of the World Economic Forums diverse leadership communities. According to this, the key threats of […] | Guideline | ★★ | |
|
2021-01-22 14:30:54 | The Top 5 Phishing Scams of 2020 (lien direct) | Covid-19 threw our world into turmoil – from battling against a pandemic we never expected, all the way to keeping up with the contentious U.S. election. While we have had our eyes turned, cybercriminals have been watching and waiting to take advantage of poorly secured networks and distracted victims. 2020 has been riddled with cyberattacks, […] | |||
|
2021-01-22 13:37:43 | Fake COVID-19 Test Certificates Pose Risk to Air Travel (lien direct) | All passengers are now required to provide verifiable proof of a negative COVID-19 test upon arrival in the UK. This decision came after the UK government suspended all travel corridors on the 18th January 2021 – a decision which has caused upheaval at London Heathrow Airport. As a result, the UK is faced with a […] | ★★★★ | ||
|
2021-01-22 11:51:59 | 2 million users had their data stolen following MyFreeCams hack (lien direct) | MyFreeCams is an adult video chat platform which provides free access to chat rooms with models, as well as paid services. A hacker has claimed that they have accessed MyFreeCams’ database using a SQL injection attack. After gaining access to the platform’s database the hacker stolen 2 million paying users’ emails, usernames, and plain text […] | Hack | ||
|
2021-01-21 16:44:18 | Social Media Fails to Monitor Extremist Content (lien direct) | All Social Media platforms need to do more to properly monitor their platforms for any activity that may involve extremist groups or conspiracy theories. New rules have been set out, indicating how social media firms should moderate their content. Facebook claims it had removed 30,000 pages, events and groups related to what it called “militarised […] | |||
|
2021-01-21 16:05:04 | Biden Administration to put Stronger Emphasis on Cyber Security (lien direct) | Two top national security nominees, Retired Army Gen. Lloyd Austin and Avril Haines, have advocated for stronger federal cybersecurity following a supply chain breach that affected several federal agencies. If these nominees are confirmed, they will begin their jobs in the middle of the damage assessment process. The attack has been attributed to Russian hackers, […] | ★★ | ||
|
2021-01-21 15:45:39 | Phishing Scam Exposes Stolen Passwords (lien direct) | Check Point Research published a blog post on Thursday, explaining the phishing campaign, in which stolen information was discarded on WordPress domains. The attackers had been targeting the construction and energy sectors. The attack began with a fraudulent email template, mimicking Xerox/Xeros scan notifications, along with the victim’s name in the title or subject line. […] | |||
|
2021-01-21 15:28:30 | How did SolarWind Hackers evade Detection? (lien direct) | A report from the Microsoft 365 Defender Team, Microsoft Threat Intelligence Center (MSTIC), and Microsoft Cyber Defence Operations Center (CDOC) details how the SolarWinds hackers managed to remain undetected for so long. The report discloses new details including the steps and tools used to deploy the custom Cobalt Strike loaders (Teardrop, Raindrop, etc.) after the […] | Threat | Solardwinds | |
|
2021-01-21 11:41:09 | Barmak Meftah Joins Nozomi Networks Board of Directors (lien direct) | Nozomi Networks Inc., the leader in OT and IoT security, today announced that Barmak Meftah has joined Nozomi Networks' board of directors. Recognized globally as one of the most successful business leaders in enterprise security, Mr. Meftah has more than 25 years of experience building market-leading enterprise SaaS and cybersecurity companies. Most recently, he was […] | Guideline | ||
|
2021-01-20 13:31:18 | Airline Passenger Data Stolen by Hackers (lien direct) | For the past few years, a Chinese hacking group has been targeting the airline industry to obtain passenger data. Their goal was to track the movement of person of interest. The threat actor responsible has been given the name Chimera. The groups activities were first reported in 2020, and are thought to be nation state actors. […] | Threat | ||
|
2021-01-20 13:15:00 | Emails exposed to SolarWinds Hackers (lien direct) | SolarWinds attackers managed to gain access to internal emails via a different intrusion vector. This was confirmed by Malwarebytes, who stated that a second threat vector was used to infiltrate private emails with the use of password guessing or spraying and/or exploiting admin or service credentials. The vendor reported suspicious activity on December 15 and […] | Threat | ★★★ | |
|
2021-01-20 12:53:24 | Covid-19 and Brexit result in 70% of UK financial firms suffering cyber-attacks (lien direct) | New research by the Ponemon Institute and Keeper Security has found that 70% of the UK’s financial sector has experienced a cyber-attack in 2020. The researchers have warned that this increase in the rate of attacks could result in “disastrous consequences” if action is not taken. The report has also found that 59% of these […] |
To see everything:
Our RSS (filtrered)
