What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-12-10 22:40:39 | Tech unicorn UiPath discloses data breach (lien direct) | EXCLUSIVE: UiPath admits to accidentally exposing a sensitive file containing the personal details of some of its registered users. | Data Breach | ||
 |
2020-12-10 17:54:40 | Fake data breach alerts used to steal Ledger cryptocurrency wallets (lien direct) | A phishing scam is underway that targets Ledger wallet users with fake data breach notifications used to steal cryptocurrency from recipients. [...] | Data Breach | ||
 |
2020-12-10 08:03:00 | FireEye breach explained: How worried should you be? (lien direct) | Cybersecurity firm FireEye announced Tuesday that a sophisticated group of hackers, likely state-sponsored, broke into its network and stole tools the company's experts developed to simulate real attackers and test the security of its customers. While this is a worrying development, it's unlikely that this will result in a significant risk increase to organizations, as some offensive tool leaks did in the past. [ How much does a data breach cost? Here's where the money goes. | Get the latest from CSO by signing up for our newsletters. ] | Data Breach Tool | ||
 |
2020-12-08 15:00:00 | Data Encryption: Simplifying Enterprise Key Management (lien direct) | Data encryption can help prevent malicious users and rogue processes from taking control of sensitive data. According to the 2020 Cost of a Data Breach report, the use of encryption is a top factor in reducing that cost. But, encrypted data is only as safe as the encryption keys. The IT or security teams must carefully manage […] | Data Breach | ||
 |
2020-12-07 17:23:10 | Experian predicts 5 key data breach targets for 2021 (lien direct) | The pandemic warfare will shift to vaccine supply chains, home networks, and data from telemedicine visits in the new year. | Data Breach | ||
 |
2020-12-04 10:53:17 | Israeli insurance company extorted by BlackShadow hackers (lien direct) | An Israeli insurance company has suffered a data breach with the attackers demanding almost $1 million in bitcoin as a ransom to prevent the companies stolen data being exposed. On November 30 the cybercrime group BlackShadow tweeted that they hacked into Shirbit, an Israeli insurance company, and had stolen files during the attack. “A huge […] | Data Breach | ||
 |
2020-12-03 12:00:00 | Two cybersecurity hygiene actions to improve your digital life in 2021 (lien direct) | This blog was written by an independent guest blogger. It is that time of year again where we start planning resolutions for the coming year. A good start is putting cybersecurity on the top of the list whether you are a business or individual. According to a University of Maryland study, Hackers attack every 39 seconds, on average 2,244 times a day. It may be even higher now that more of us are working remotely because of Covid19 and the attack surface has greatly expanded in numbers and vulnerability. Clearly, with the plethora of breaches, spams, and ransomware we already experienced in 2020, we need to be better prepared in 2021. What are a couple of cybersecurity hygiene action upgrades that will improve outcomes in 2021? #1 Passwords Poor passwords have always been viewed as the low hanging fruit for hackers as the easiest way into the crown jewels of data. Yet, many still use common passwords such as #132456 #password, or birthdays that pose little barriers to letting the bad guys access your accounts, In fact, a UK National Cyber Security Centre 2019 survey analysis discovered that 23.2 million victim accounts from all parts of the world used 123456 as a password. Another 7.8 million data breach victims chose a 12345678 password. More than 3.5 million people globally picked up the word "password" to protect access to their sensitive information. Now that we have all become creatures of social media, hackers can use social engineering tactics by exploring your social media accounts that often highlight pet names (quite often used as passwords - I admit I have been guilty of that too) or other identifiable items that may give clues to passwords and interests. What is particularly alarming is that there are algorithmic programs that can also utilize public social sites and marketing information to “guess” passwords. Actions: remedies are easy to get beyond that bad habit of using easy passwords to crack. Do not use default passwords on your devices and when you do create passwords make them complicated. Consider making them long or using phrases with letters, numbers and characters. Also, do not use the same password for multiple accounts. Make it difficult for hackers to get in with one try. Make their challenges more difficult by using multifactor or biometric authentication such as a fingerprint, facial recognition, or texts to verify it is you when you sign in. And if you want to make things less stressful on your memory (we all forget our passwords), consider using a security token and/or password manager. The bottom line is that secure passwords are a basic step to stronger cyber hygiene. #2 Phishing Phishing is the tool of choice for many hackers. Phishing is commonly defined as a technique of hackers to exfiltrate your valuable data, or to spread malware. Anyone can be fooled by a targeted phish, especially when it appears to be coming as a personal email from someone higher up the work chain, or from a bank, organization or a website you may frequent. Usually the phishing malware comes via email attachments but can also be web-based. According to an analysis by Webroot, 46,000 new phishing sites are created every day and 1.385 million new, unique phishing sites are created each month. At a more granular level, the firm Wandera says that a new phishing site launches every 20 seconds. Advances in technologies have made it easier for hackers to phish. They can use readily available digital graphics, apply social engineering data, and a vast array of phishing tools, including some automated by machine learning. Phishing is often accompanied by ransomware and a tactic for hackers is to target leadership a | Ransomware Data Breach Malware Tool Vulnerability Threat Guideline | ||
 |
2020-12-02 14:59:19 | COMMENT: AspenPointe Warns 295K Patients Of Data Breach exposing Their Personal Identifiable Information And Health Data (lien direct) | It was reported that the nonprofit U.S. healthcare provider AspenPointe has notified patients of a data breach. In a media statement, AspenPointe said they discovered unauthorised access to their network in September… The ISBuzz Post: This Post COMMENT: AspenPointe Warns 295K Patients Of Data Breach exposing Their Personal Identifiable Information And Health Data | Data Breach | ||
|
2020-12-01 11:00:00 | The Future of Cybersecurity: How to Prepare for a Crisis in 2020 and Beyond (lien direct) | When it comes to the future of cybersecurity, an ounce of prevention is worth far more than a pound of cure. According to the Ponemon Institute and IBM Security’s 2020 Cost of a Data Breach Report, enterprises that designated an incident response (IR) team, developed a cybersecurity incident response plan (CSIRP) and tested their plan […] | Data Breach | ||
|
2020-11-30 13:12:44 | Healthcare provider AspenPointe data breach affects 295K patients (lien direct) | U.S. healthcare provider AspenPointe notified patients of a data breach stemming from a September 2020 cyberattack that enabled attackers to steal protected health information (PHI) and personally identifiable information (PII). [...] | Data Breach | ||
|
2020-11-27 10:07:06 | Networking equipment vendor Belden discloses data breach (lien direct) | Belden says hackers accessed a limited number of company's file servers. | Data Breach | ||
 |
2020-11-27 08:23:46 | Canon publicly confirms August ransomware attack and data breach (lien direct) | Canon finally confirmed that it has suffered a ransomware attack in early August that resulted in the theft of data from its servers. Canon has finally confirmed that it was the victim of a ransomware attack in early August and that the threat actors also stole data from its servers. In August, ZDNet first revealed […] | Ransomware Data Breach Threat | ||
|
2020-11-25 23:09:03 | Belden discloses data breach as a result of a cyber attack (lien direct) | Belden, the manufacturer of networking and cable products, disclosed a data breach, threat actors have stolen employee and business information. The manufacturer of networking and cable products Belden disclosed a data breach, the company revealed that attackers gained “unauthorized access and copying of some current and former employee data, as well as limited company information […] | Data Breach Threat | ||
|
2020-11-25 14:24:15 | Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach (lien direct) | Retail giant Home Depot has agreed to a $17.5 million settlement in a multi-state investigation of the data breach that the company suffered in 2014. The US largest home improvement retailer giant Home Depot agrees to $17.5 million settlement over the 2014 data breach. In 2014, Home Depot revealed that the data breach impacted 56 million customers […] | Data Breach | ||
|
2020-11-25 10:07:21 | Home Depot agrees to $17.5 million settlement over 2014 data breach (lien direct) | The US retailer's point-of-sale systems were infected with malware. | Data Breach | ||
|
2020-11-24 03:00:00 | (Déjà vu) 8 types of phishing attacks and how to identify them (lien direct) | Every data breach and online attack seems to involve some kind of phishing attempt to steal password credentials, to launch fraudulent transactions, or to trick someone into downloading malware. Indeed, Verizon's 2020 Data Breach Investigations Report finds that phishing is the top threat action associated with breaches.Enterprises regularly remind users to beware of phishing attacks, but many users don't really know how to recognize them. And humans tend to be bad at recognizing scams. | Data Breach Threat | ||
|
2020-11-24 03:00:00 | 8 types of phishing attack and how to identify them (lien direct) | Every data breach and online attack seems to involve some kind of phishing attempt to steal password credentials, to launch fraudulent transactions, or to trick someone into downloading malware. Indeed, Verizon's 2020 Data Breach Investigations Report finds that phishing is the top threat action associated with breaches.Enterprises regularly remind users to beware of phishing attacks, but many users don't really know how to recognize them. And humans tend to be bad at recognizing scams. | Data Breach Threat | ||
 |
2020-11-19 18:30:00 | Iowa Hospital Alerts 60K Individuals Affected by June Data Breach (lien direct) | The data breach began with a compromised employee email account. | Data Breach | ||
 |
2020-11-18 11:00:31 | How to prevent expensive data breaches in the cloud (lien direct) | Security has become a major concern for customers of cloud service storage providers as more organizations migrate sensitive data and services to the cloud. A recent Ermetic survey found that nearly 80 percent of companies had experienced at least one cloud data breach in the past 18 months, while 43 percent reported 10 or more… | Data Breach | ||
|
2020-11-17 13:32:26 | Ticketmaster Fined £1.25m Over Payment Data Breach (lien direct) | The UK's Information Commissioner’s Officer confirmed on Friday that it was fining Ticketmaster £1.25 million in relation to a data breach of the ticketing firm's website back in 2018. The ISBuzz Post: This Post Ticketmaster Fined £1.25m Over Payment Data Breach | Data Breach | ||
|
2020-11-16 10:45:39 | Expert Insight: Info Of 27.7 Million Texas Drivers Exposed In Vertafore Data Breach (lien direct) | According to ZDNet, Vertafore, a provider of insurance software, has disclosed this week a data breach, admitting that a third-party accessed the details of 27.7 million Texas drivers. The incident… The ISBuzz Post: This Post Expert Insight: Info Of 27.7 Million Texas Drivers Exposed In Vertafore Data Breach | Data Breach | ||
|
2020-11-15 13:06:59 | Security Affairs newsletter Round 289 (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. Creative Office 365 phishing inverts images to avoid detection bots Luxottica data breach exposes info of LensCrafters and EyeMed patients Pwn2Own Tokyo Day 3: Team Flashback crowned Master of Pwn […] | Data Breach | ||
 |
2020-11-13 17:04:48 | Ticketmaster Scores Hefty Fine Over 2018 Data Breach (lien direct) | The events giant faces a GDPR-related penalty in the U.K., and more could follow. | Data Breach | ||
 |
2020-11-13 12:06:30 | Ticketmaster fined £1.25m over payment data breach (lien direct) | More than nine million people may have had their details stolen in the 2018 cyber-attack. | Data Breach | ||
|
2020-11-13 10:38:17 | Animal Jam Kids\' Virtual World Hit By Data Breach, Impacting 46m Accounts: Expert Commentary (lien direct) | The immensely popular children’s online playground Animal Jam has suffered a data breach impacting 46 million accounts. This is confirmed when a hacker shared two databases belonging to Animal Jam… The ISBuzz Post: This Post Animal Jam Kids’ Virtual World Hit By Data Breach, Impacting 46m Accounts: Expert Commentary | Data Breach | ||
|
2020-11-13 10:37:04 | Stock photo service 123RD suffered major data breach (lien direct) | The stock photo service 123RF has recently suffered a data breach after their database containing 8.3 million users records has been hacked and put up for sale on a hacker forum. Over the weekend a data breach broker put 123RF's database of 8.3 million users records online following a data breach. The database includes personal […] | Data Breach | ||
|
2020-11-13 10:13:08 | Vertafore data breach exposed data of 27.7 million Texas drivers (lien direct) | Vertafore announced that information of 27.7 million Texas drivers has been exposed in a data breach caused by a human error. Vertafore announced that information of 27.7 million Texas drivers has been accidentally exposed due to a human error. The company disclosed this security breach this week, data was stored on an unsecured external storage […] | Data Breach | ||
|
2020-11-13 05:40:03 | Info of 27.7 million Texas drivers exposed in Vertafore data breach (lien direct) | Vertafore blames incident on human error after user data was stored on an unsecured external storage service. The files were accessed by an external party. | Data Breach | ||
|
2020-11-12 18:01:01 | 46M accounts were impacted in the data breach of children\'s online playground Animal Jam (lien direct) | The popular children’s online playground Animal Jam has suffered a data breach that affected more than 46 million accounts. Animal Jam is a safe, award-winning online playground for kids created by WildWorks. Kids aging 7 through 11 can play games, personalize their favorite animal, learn fun facts, and so much more. Animal Jam currently has […] | Data Breach | ||
|
2020-11-11 10:36:43 | (Déjà vu) Almost Four-In-Ten Data Breaches Are Caused By Stressed, Tired Employees (lien direct) | Egress' recent Outbound Email Security Report has revealed that stressed, tired employees are behind almost four in ten of the most severe data breach incidents. As stress levels rise, rushed employees are more likely to make simple… The ISBuzz Post: This Post Almost Four-In-Ten Data Breaches Are Caused By Stressed, Tired Employees | Data Breach | ||
|
2020-11-11 10:33:39 | Experts On 5.8 Million RedDoorz User Records For Sale On Hacking Forum (lien direct) | After suffering a data breach in September, a threat actor is selling a RedDoorz database containing 5.8 million user records on a hacker forum. RedDoorz is a Singapore-based hotel management & booking platform… The ISBuzz Post: This Post Experts On 5.8 Million RedDoorz User Records For Sale On Hacking Forum | Data Breach Threat | ||
|
2020-11-10 15:50:43 | Experts Reaction On Latest Mashable Data Breach (lien direct) | Mashable issued a statement on their website saying in part: This past Wednesday evening, November 4th, we learned that a hacker known for targeting websites and apps had posted a copy of a Mashable database to the internet. Based on our review, the database related to a feature that, in the past, had allowed readers to use … The ISBuzz Post: This Post Experts Reaction On Latest Mashable Data Breach | Data Breach | ||
|
2020-11-10 15:41:35 | Expert Comment On Big Basket Data Breach (lien direct) | Big Basket, India's leading online food and grocery store, became victim to a data breach exposing the data of 20 million customers. Cybersecurity experts commented below as part of our expert comment series. The ISBuzz Post: This Post Expert Comment On Big Basket Data Breach | Data Breach Guideline | ||
|
2020-11-10 11:12:08 | Mashable suffers data breach exposing users\' details (lien direct) | Mashable, a major tech and culture news website has recently experienced a data breach which has resulted in the personal data of their users being exposed online. On Sunday 8 November Mashable issued a statement confirming that their database had breached and that they had discovered that reader who use their social media sign-in feature […] | Data Breach | ||
|
2020-11-10 10:55:32 | RedDoorz user record for sale by threat actor on hacking forum (lien direct) | A threat actor is selling the RedDoorz database containing 5.8 million user record on a hacking forum following a data breach in September. RedDoorz is a hotel management and booking platform based in Singapore, which manages bookings for over 1,000 properties in Southeast Asia. Users can register an account to browse hotels and book reservation […] | Data Breach Threat | ||
|
2020-11-10 10:45:16 | Stressed Employees Behind 4 In 10 Data Breaches (lien direct) | Four-in-ten data breaches are caused by stressed, tired employees Our recent Outbound Email Security Report has revealed that stressed, tired employees are behind four in ten of the most severe data breach incidents. As stress levels rise, rushed employees are more likely to make simple mistakes such as sending an email to the wrong person, … The ISBuzz Post: This Post Stressed Employees Behind 4 In 10 Data Breaches | Data Breach | ||
|
2020-11-10 10:41:57 | World\'s largest eyewear company suffers data breach (lien direct) | Luxottica, the world’s largest eyewear company, has recently suffered a data breach which has resulted in the exposure of the personal information of Lenscrafters patients. The attack also affected Optical, EyeMed and other eye practices. Luxottica warned that “the personal information involved in this incident may have included: full name, contact information, appointment date and […] | Data Breach | ||
|
2020-11-09 13:54:52 | Millions of hotel guests have data exposed after Hotel Booking firm experiences breach (lien direct) | The Spanish developer Prestige software has experienced a data breach after misconfiguring an AWS bucket. The breach has lead to the exposure of their cloud database, and the data of millions of hotel guests. Prestige software is a platform which enables hotels to automate their availability on booking site such as Expedia. The misconfigured S3 […] | Data Breach Guideline | ||
|
2020-11-08 14:06:43 | Security Affairs newsletter Round 288 (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. 103,000 machines are still vulnerable to SMBGhost attacks A data breach broker is selling account databases of 17 companies Maze ransomware is going out of the business Nuclear Regulation Authority […] | Ransomware Data Breach | ||
|
2020-11-08 12:56:19 | Luxottica data breach exposes info of LensCrafters and EyeMed (lien direct) | A data breach suffered by Luxottica has exposed the personal and health information of patients of LensCrafters, Target Optical, and EyeMed. Luxottica Group S.p.A. is an Italian eyewear conglomerate and the world's largest company in the eyewear industry. As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, […] | Data Breach | ||
|
2020-11-02 08:31:41 | UK ICO fines hotel chain giant Marriott over data breach (lien direct) | The UK Information Commissioner’s Office fined US hotels group Marriott over the 2018 data breach that affected millions of customers worldwide. The UK Information Commissioner’s Office announced it has fined Marriott £18.4 million ($23.5 million) for multiple data breaches suffered by the company since 2018 that exposed the personal information of its customers. “The ICO has fined […] | Data Breach | ||
|
2020-11-02 08:31:26 | Marriott fined £18.4 million by UK watchdog over customer data breach (lien direct) | The fine has been slashed from over £99 million originally proposed In light of the pandemic. | Data Breach | ||
|
2020-11-01 11:11:49 | A data breach broker is selling account databases of 17 companies (lien direct) | A threat actor is offering for sale account databases containing an aggregate total of 34 million user records stolen from 17 companies. A data breach broker is selling account databases containing a total of 34 million user records stolen from 17 companies. The threat actor is advertising the stolen data since October 28 on a […] | Data Breach Threat | ||
 |
2020-10-30 20:31:28 | Vastaamo psychotherapy data breach sees the most vulnerable victims extorted (lien direct) |
A Finnish psychotherapy practice suffered a data breach (or two). Now its patients are receiving extortion messages.
Categories:
Cybercrime
Tags: data breachextortiongdprpatient recordsvastaamo
(Read more...)
|
Data Breach | ||
 |
2020-10-30 13:53:13 | Marriott data breach fine slashed to £18.4 million by UK regulator (lien direct) | Marriott International has been fined £18.4 million (US $23.8 million) for its failure to adequately protect the personal records 339 million guests. The fine, imposed by UK data regulator, the Information Commissioner's Office (ICO), is a massive 81% less than the £99.2 million fine originally imposed upon the hotel group last year. Read more in my article on the Hot for Security blog. | Data Breach | ||
|
2020-10-30 12:42:12 | Marriott Hotels fined £18.4m for data breach that hit millions (lien direct) | Up to 339 million people may have been hit in a cyber-attack on a chain later bought by Marriott. | Data Breach | ||
|
2020-10-29 03:00:00 | Supply chain attacks show why you should be wary of third-party providers (lien direct) | A supply chain attack, also called a value-chain or third-party attack, occurs when someone infiltrates your system through an outside partner or provider with access to your systems and data. This has dramatically changes the attack surface of the typical enterprise in the past few years, with more suppliers and service providers touching sensitive data than ever before. [ How much does a data breach cost? Here's where the money goes. | Get the latest from CSO by signing up for our newsletters. ] | Data Breach | ||
|
2020-10-28 10:16:09 | Finnish Psych Patients Blackmailed Following Breach – CEO Perspective (lien direct) | A data breach at Vastaamo, a Finnish nationwide psychotherapy practice, has resulted in the blackmailing of hundreds of patients. Excerpts (via Google Translator) of Vastaamo’s press release: “The Board of Directors of Psychotherapy Center has relieved the company’s CEO from office… On Wednesday, October 21, 2020, the psychotherapy center said that it had been the … The ISBuzz Post: This Post Finnish Psych Patients Blackmailed Following Breach – CEO Perspective | Data Breach | ||
|
2020-10-27 15:46:57 | Finnish therapy clinic\'s CEO fired after despicable data breach and blackmail threats (lien direct) | A Finnish psychotherapy clinic has dismissed its CEO in the wake of a disastrous data breach which has seen patients' personal details, as well as notes of what has been discussed in confidential therapy sessions, exposed... and clients blackmailed. | Data Breach | ||
|
2020-10-27 15:29:12 | Psychotherapy Clinic Data Breach – No Data Is Safe (lien direct) | Following the news of the data breach at Vastaamo Psychotherapy clinic in Finland, it’s clear that when it comes to ransom-worthy personal details no data is safe, no matter how sensitive. Taking risks with cybersecurity is no longer an option especially in the healthcare industry. The ISBuzz Post: This Post Psychotherapy Clinic Data Breach – No Data Is Safe | Data Breach |
To see everything:
Our RSS (filtrered)
