What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-10-27 14:42:29 | Expert Commentary: Massive Nitro Data Breach Impacts Microsoft, Google, Apple, More (lien direct) | A massive data breach suffered by the Nitro PDF service has impacted many well-known organizations, including Google, Apple, Microsoft, Chase, and Citibank. Claimed to be used by over 10 thousand business customers and 1.8 million licensed users, Nitro is an application used to create, edit, and sign PDFs and digital documents. On October 21, Nitro … The ISBuzz Post: This Post Expert Commentary: Massive Nitro Data Breach Impacts Microsoft, Google, Apple, More | Data Breach | ||
 |
2020-10-27 13:24:47 | Fragomen law firm data breach exposed Google employee\'s data (lien direct) | Immigration law firm Fragomen has disclosed a data breach that exposed current and former Google employees’ personal information. Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP, one of the most prominent US law firms covering immigration law, disclosed a data breach. The security breach exposed current and former Google employees’ personal information after […] | Data Breach | ||
 |
2020-10-27 10:47:20 | Law firm used by Google confirms data breach (lien direct) | Law firm Fragomen, Del Rey, Brensen and Loewy have confirmed they have suffered a data breach which involved the personal information of both current and former Google employees. The law firm based in New York provides companies with employment verification screening services in order to determine whether potential employees are authorized to work in the […] | Data Breach | ||
|
2020-10-26 22:02:42 | Nitro PDF data breach might impact major companies, including Microsoft, Google, and Apple (lien direct) | Nitro PDF suffered a massive data breach that impacts many major organizations, including Apple, Chase, Citibank, Google, and Microsoft. A massive data breach suffered by the Nitro PDF might have a severe impact on well-known organizations, including Google, Apple, Microsoft, Chase, and Citibank. Nitro Software, Inc. develops commercial software used to create, edit, sign, and […] | Data Breach | ||
 |
2020-10-26 12:44:39 | Therapy patients blackmailed for cash after clinic data breach (lien direct) | Stolen data appears to have included personal identification records and notes about therapy sessions. | Data Breach | ||
|
2020-10-26 08:18:20 | COVID-19 vaccine manufacturer suffers a data breach (lien direct) | Dr. Reddy's, the Indian contractor for Russia's “Sputinik V” COVID-19 vaccine was hit with a cyber-attack that forced the company to close its plants. Indian COVID-19 vaccine manufacturer Dr. Reddy's Laboratories was hit with a cyber attack that forced it to shut down its plants in Brazil, India, Russia, the U.K., and the U.S.. According […] | Data Breach | ||
|
2020-10-23 10:23:34 | Experts Reacted On Pharma Giant Pfizer Exposes Patient Data On Unsecured Cloud Storage (lien direct) | It has been reported that Global pharmaceutical giant Pfizer Inc. has suffered a data breach with patient information found exposed on unsecured cloud storage. Discovered and publicised yesterday, the exposed data was found on a misconfigured Google Cloud storage bucket. The data included hundreds of conversations between Pfizer's automated customer support software and people using its prescription pharmaceutical … The ISBuzz Post: This Post Experts Reacted On Pharma Giant Pfizer Exposes Patient Data On Unsecured Cloud Storage | Data Breach | ||
 |
2020-10-22 15:48:01 | Affected by a Data Breach? Here Are Five Security Steps You Should Take (lien direct) | 
Five Tips to Secure Your Credit Card Data From This Recent Data Breach Users share their personal information with companies for multiple reasons. Whether they're checking into a hotel room, using a credit card to make a purchase at their favorite food spot, or collecting rewards points at a local coffee shop, consumers give companies […]
|
Data Breach | ★★ | |
 |
2020-10-21 12:00:00 | Are You One COVID-19 Test Away From a Cybersecurity Disaster? (lien direct) | One cybersecurity failure can result in a successful ransomware attack or data breach that could cause tremendous damage. There's no need to panic, but neither is there time to ignore the issue. | Ransomware Data Breach | ||
 |
2020-10-21 10:00:00 | Training Trainers: How IBM Uses Data Breach Simulations to Build Real-World Competency (lien direct) | Threat intelligence and response teams need to be ready to respond to an increasing barrage of risks and changes. To be exact, this is where breach-and-attack-simulation (BAS) comes in. Most groups use BAS platforms to validate security controls against various types of data breaches. Meanwhile, IBM Security saw that it could also be very useful as […] | Data Breach | ||
|
2020-10-20 13:27:47 | Albion Games Online Forum Suffers Data Breach – Experts Insight (lien direct) | A hacker has breached the forum of Albion Online, a popular free medieval fantasy MMORPG, and stole usernames and password hashes, the game maker disclosed on Saturday. “The intruder was able to access forum user profiles, which include the email addresses connected to those forum accounts,” said Sandbox Interactive GmbH, the company behind Albion Online. The attacker also … The ISBuzz Post: This Post Albion Games Online Forum Suffers Data Breach – Experts Insight | Data Breach | ||
 |
2020-10-20 03:00:00 | Avoiding the snags and snares in data breach reporting: What CISOs need to know (lien direct) | Failing to report sensitive data breaches to US regulatory and law enforcement agencies just got more dangerous and confusing for CISOs and their organizations. If that failure is seen as a coverup, such as paying ransoms for retrieving sensitive data, it could lead to steep fines or jail time. | Data Breach Guideline | ||
|
2020-10-19 10:39:06 | British Airways fined £20 million for data breach (lien direct) | British Airways have been fined £20 million by the Information Commissioner’s Office (ICO) following a data breach from 2018 which affected 400,000 customers. The 2018 breach affected customers confidential personal and credit card data. The incident happen when British Airway’s systems were compromised by attackers, who modified customer details when they were inputted in order […] | Data Breach | ||
 |
2020-10-19 09:47:14 | Albion Online game maker discloses data breach (lien direct) | Game maker says intruder gained access to its forum database by exploiting a vulnerability. | Data Breach | ||
|
2020-10-19 09:19:00 | Experts Reacted On News: British Airways Fined £20m For Data Breach (lien direct) | British Airways has been fined £20m for failing to protect the personal and financial details of more than 400,000 customers, according to Business Live. This follows an investigation by the Information Commissioner’s Office (IC)) after the airline was the subject to a cyber-attack, which it did not detect for more than two months, in 2018. The … The ISBuzz Post: This Post Experts Reacted On News: British Airways Fined £20m For Data Breach | Data Breach | ||
|
2020-10-16 17:16:59 | Britain\'s information commissioner fines British Airways for 2018 Hack (lien direct) | Britain's information commissioner has fined British Airways 20 million pounds for the 2018 hack that exposed data of 400,000 customers. In September 2018, British Airways suffered a data breach that exposed the personal information of 400,000 customers. The hackers potentially accessed the personal data of approximately 429,612 customers and staff. Exposed data included names, addresses, […] | Data Breach Hack | ||
 |
2020-10-16 16:55:26 | Having saved credit card details in plaintext since 2015, British Airways is fined £20 million (lien direct) | British Airways has been fined £20 million (US $26 million) following a data breach which saw its systems hacked and the personal and payment card information of 400,000 customers stolen. Read more in my article on the Hot for Security blog. | Data Breach | ||
|
2020-10-16 12:27:59 | 300 Million Credit Cards From Dickey\'s BBQ Customers Sold On Dark Web – Expert Perspective (lien direct) | Krebs On Security is reporting that a popular dark web outlet for stolen credit cards is selling more than three million new card records this week, the result of a multi-year data breach at 100+ Dickey’s Barbeque Restaurant locations across the US. A Gurucul expert offers some perspective. The ISBuzz Post: This Post 300 Million Credit Cards From Dickey's BBQ Customers Sold On Dark Web – Expert Perspective | Data Breach | ||
|
2020-10-16 09:52:17 | British Airways fined £20m over data breach (lien direct) | The fine is the largest ever issued by the Information Commissioner's Office. | Data Breach | ||
 |
2020-10-15 20:44:44 | Breach at Dickey\'s BBQ Smokes 3M Cards (lien direct) | One of the digital underground's most popular stores for peddling stolen credit card information began selling a batch of more than three million new card records this week. KrebsOnSecurity has learned the payment card data was stolen in a two-year-long data breach at more than 100 Dickey's Barbeque Restaurant locations around the country. | Data Breach | ||
|
2020-10-15 15:00:00 | Barnes & Noble Warns Customers About Data Breach (lien direct) | Famed bookseller says non-financial data was exposed in a new attack. | Data Breach | ||
|
2020-10-15 09:08:38 | Barnes & Noble confirms cyberattack, suspected customer data breach (lien direct) | The bookseller's security incident also impacted Nook services. | Data Breach | ||
 |
2020-10-14 13:30:00 | Security All In Podcast: Live Episode with Cybereason CEO Lior Div (lien direct) |
With each major data breach the role of the Chief Information Security Officer becomes more complex, and more crucial. Ditch whatever preconception you may have-these individuals manage risk on a daily basis, with one foot in the world of business and another in the world of cybersecurity. |
Data Breach | ||
|
2020-10-10 13:04:07 | Carnival confirms data breach as a result of the August ransomware attack (lien direct) | Carnival Corporation, the world’s largest cruise line operator, has confirmed a data breach as a result of the august ransomware attack. Carnival Corporation, the world’s largest cruise line operator, has confirmed a data breach as a result of the ransomware attack that took place in August. Ransomware operators have stolen the personal information of customers, […] | Ransomware Data Breach | ||
|
2020-10-10 08:36:03 | Children and parent info exposed in Georgia DHS data breach (lien direct) | The personal and health data of children and adults involved in Child Protective Services cases was exposed. | Data Breach | ||
|
2020-10-09 13:57:54 | Expert Insight: CPS Under Fire Again After Data Breach Cases Jump 18% (lien direct) | The UK's Crown Prosecution Service (CPS) has recorded over 1600 data breaches over the course of a year, including scores of unauthorized disclosures classed as “severe,” it has emerged. The data featured in the CPS annual report revealed a total of 1627 recorded data breaches in the 2019-20 financial year, up 18% from the previous … The ISBuzz Post: This Post Expert Insight: CPS Under Fire Again After Data Breach Cases Jump 18% | Data Breach | ||
|
2020-10-07 11:12:54 | Customer records stolen in Chowbus data breach (lien direct) | Chowbus, the Asian food delivery service owned by Fantuan Group Inc., has experienced a data breach which has resulted in thousands of customers records being stolen. It is unknown how the breach happened, but Chowbus has stated that customers data has been stolen, including names, phone numbers, physical addresses and email addresses. Chowbus have claimed […] | Data Breach | ||
|
2020-10-07 10:54:33 | Experts On Gardai Investigate Major Data Breach At Limerick Hospital (lien direct) | University Hospital Limerick has launched an investigation into a major data breach in which a rogue non-HSE employee leaked personal details belonging to more than 600 patients, including 95 children, to the internet, the Limerick Leader reported exclusively this morning. This data belonging to 630 patients, including 95 children, was taken from an automated system that is … The ISBuzz Post: This Post Experts On Gardai Investigate Major Data Breach At Limerick Hospital | Data Breach Guideline | ||
 |
2020-10-05 08:24:19 | Combien vous coûterait une fuite de données ? (lien direct) | Les brèches de données sont plus fréquentes qu'on ne le croit. Et leur coût peut s'avérer très élevé si l'incident a exposé des données personnelles ou s'il est le résultat d'une cyber attaque. Le coût moyen d'une brèche de données a diminué de 1,5 % d'une année sur l'autre, coûtant aux entreprises 3,86 millions de dollars US par incident, selon le rapport 2020 Cost of a Data Breach Report d'IBM. L'étude annuelle a analysé les données de 524 entreprises qui, bien qu'étant basées dans 17 pays et régions et opérant (...) - Points de Vue | Data Breach | ||
|
2020-10-03 16:40:12 | Blackbaud – Data Breach Expert Comment (lien direct) | Blackbaud recently confirmed that bank details and passwords may have been stolen in a charity hack. Blackbaud suffered a data breach back in May, but the attack has resurfaced with new information coming out. The software developer originally paid the ransomware and confirmed bank details were not leaked. While the question around whether to pay … The ISBuzz Post: This Post Blackbaud – Data Breach Expert Comment | Ransomware Data Breach | ||
 |
2020-10-01 14:10:28 | 96% of Organizations Use Open Source Libraries but Less Than 50% Manage Their Library Security Flaws (lien direct) |  Most modern codebases are dependent on open source libraries. In fact, a recent research report sponsored by Veracode and conducted by Enterprise Strategy Group (ESG) found that more than 96 percent of organizations use open source libraries in their codebase. But ??? shockingly ??? less than half of these organizations have invested in specific security controls to scan for open source vulnerabilities.
Why is it important to scan open source libraries?
For our State of Software Security: Open Source Edition report, we analyzed the security of open source libraries in 85,000 applications and found that 71 percent have a flaw. The most common open source flaws identified include Cross-Site Scripting, insecure deserialization, and broken access control. By not scanning open source libraries, these flaws remain vulnerable to a cyberattack. ツ?ツ?ツ?
Equifax made headlines by not scanning its open source libraries. In 2017, Equifax suffered a massive data breach from Apache Struts which compromised the data ??? including social security numbers ??? of more than 143 million Americans. Following the breach, Equifax's stock fell over 13 percent. The unfortunate reality is that if Equifax performed AppSec scans on its open source libraries and patched the vulnerability, the breach could have been avoided. ツ?
Why aren???t more organizations scanning open source libraries?
If 96 percent of organizations use open source libraries and 71 percent of applications have a third-party vulnerability, why is it that less than 50 percent of organizations scan their open source libraries? The main reason is that when application developers add third-party libraries to their codebase, they expect that library developers have scanned the code for vulnerabilities. Unfortunately, you can???t rely on library developers to keep your application safe. Approximately 42 percent of the third-party code pulled directly by an application developer has a flaw on first scan. And even if the third-party code appears to be free of flaws, more than 47 percent of third-party code has a transitive flaw that???s pulled indirectly from another library in use.
What are your options for managing library security flaws?
First off, it???s important to note that most flaws in open source libraries are easy to fix. Close to 74 percent of the flaws can be fixed with an update like a revision or patch. Even high priority flaws are easy to fix ??? close to 91 percent can be fixed with an update.
So, when it comes to managing your library security flaws, the concentration should not just be, ???How |
Data Breach Tool Vulnerability | Equifax | |
 |
2020-10-01 11:26:19 | A Simple Guide to Threat Hunting (lien direct) | Threats are continually changing and becoming more sophisticated. Making it impossible to buy a tool that detects every potential cyberthreat. You can help protect your business by taking a proactive approach to hunting threats. According to the 2020 Verizon Data Breach report, more than 25% percent of breaches took months or longer to discover This [...] | Data Breach Tool Threat | ||
 |
2020-09-29 14:00:00 | Weekly Threat Briefing: Federal Agency Breach, Exploits, Malware, and Spyware (lien direct) |
The various threat intelligence stories in this iteration of the Weekly Threat Briefing discuss the following topics: APT, Cyber Espionage, FinSpy, Magento, Taurus Project and Vulnerabilities. The IOCs related to these stories are attached to the Weekly Threat Briefing and can be used to check your logs for potential malicious activity. 
Figure 1 - IOC Summary Charts. These charts summarize the IOCs attached to this magazine and provide a glimpse of the threats discussed.
Trending Cyber News and Threat Intelligence
German-made FinSpy Spyware Found in Egypt, and Mac and Linux Versions Revealed
(published: September 25, 2020)
Security Researchers from Amnesty International have identified new variants of FinSpy, spyware that can access private data and record audio/video. While used as a law enforcement tool, authoritarian governments have been using FinSpy to spy on activists and dissidents. Spreading through fake Flash Player updates, the malware is installed as root with use of exploits, and persistence is gained by creating a logind.pslist file. Once a system is infected with the malware, it has the ability to run shell scripts, record audio, keylogging, view network information, and list files. Samples have been found of FinSpy for macOS, Windows, Android, and Linux.
Recommendation: Defense-in-depth (layering of security mechanisms, redundancy, fail-safe defense processes) is the best way to ensure safety from threat actors, including a focus on both network and host-based security. Prevention and detection capabilities should also be in place. Furthermore, all employees should be educated on the risks of spearphishing and how to identify such attempts.
MITRE ATT&CK: [MITRE ATT&CK] Logon Scripts - T1037 | [MITRE ATT&CK] Standard Application Layer Protocol - T1071
Tags: Amnesty, Android, Backdoor, Linux, macOS, FinSpy, Spyware
Magento Credit Card Stealing Malware: gstaticapi
(published: September 25, 2020)
Security researchers, at Sucuri, have identified a malicious script, dubbed “gstaticapi,” that is designed to steal payment information from Magento-based websites. The script first attempts to find the “checkout” string in a web browser URL and, if found, will create an element to the web pages header. This allows the JavaScript to handle external code-loading capabilities that are used to process the theft of billing and payment card information.
Recommendation: Sometimes webmasters discover that one of their sites has been compromised months after the initial infection. Websites, much like personal workstations, require constant maintenance and upkeep in order to adapt to the latest threats. In addition to keeping server software up to date, it is critical that all external-facing assets are monitored and scanned for vulnerabilities. The ability to easily restore from backup, incident response planning, and customer communication channels should all be established before a breach occurs.
MITRE ATT&CK: [MITRE ATT&CK] Command-Line Interface - T1059 | [MITRE ATT&CK] Input Capture - T1056 | [MITRE ATT&CK] Data Encoding - T1132
T |
Data Breach Malware Vulnerability Threat | APT 19 | ★★★★★ |
|
2020-09-29 06:05:00 | BrandPost: How to Defend Against Today\'s Top 5 Cyber Threats (lien direct) | Cyber threats are constantly evolving. As recently as 2016, Trojan malware accounted for nearly 50% of all breaches. Today, they are responsible for less than 7%.That's not to say that Trojans are any less harmful. According to the 2020 Verizon Data Breach Investigations Report (DBIR), their backdoor and remote-control capabilities are still used by advanced threat actors to conduct sophisticated attacks.Staying ahead of evolving threats is a challenge that keeps many IT professionals awake at night. Understanding today's most important cyber threats is the first step toward protecting any organization from attack. | Data Breach Malware Threat | ||
|
2020-09-25 12:00:00 | 3 Biggest Factors in Data Breach Costs and How To Reduce Them (lien direct) | The cost of a data breach has increased slightly in the last six years on average. Costs are up 10% since 2014 to $3.86 million, according to the annual Cost of a Data Breach Report, published by IBM Security and based on research conducted by the Ponemon Institute. Three areas in particular proved to have […] | Data Breach | ||
|
2020-09-23 12:01:56 | Experts On News that Data of more than 500,000 referees stolen in ransomware attack (lien direct) | It has been reported that ArbiterSports, the official software provider for the NCAA (National Collegiate Athletic Association), and many other US leagues have announced it fended off a ransomware attack. In a data breach notification letter filed with multiple states across the US, the company said that despite detecting and blocking the hackers from encrypting its … The ISBuzz Post: This Post Experts On News that Data of more than 500,000 referees stolen in ransomware attack | Ransomware Data Breach | ||
|
2020-09-23 10:21:42 | Long Island hospital experiences data breach (lien direct) | Stony Brook University Hospital recently issued a warning to patients about a ransomware attacks which potentially exposed their personal data. Stony Brook University Hospital is the only tertiary care center and Regional Trauma Center in Long Island, and is just one of many recent hospitals to experience a data breach. The hospital contacted patients to […] | Ransomware Data Breach | ||
|
2020-09-21 22:51:48 | Alleged Activision hack, 500,000 Call Of Duty players impacted (lien direct) | Over 500,000 Activision accounts may have been hacked in a new data breach that the gaming firm suffered on September 20. More than 500,000 Activision accounts may have compromised as a result of a data breach suffered by the gaming firm on September 20, reported the eSports site Dexerto. According to Dexerto, the login for Activision […] | Data Breach | ||
|
2020-09-21 19:06:56 | Experts On Major Activision Hack Reportedly Compromises Over 500k CoD Accounts (lien direct) | Over 500,000 Activision accounts have reportedly been hacked in a new Activision data breach on September 20, leaving Call of Duty players in limbo. All Call of Duty players should be on notice after a major Activision hack has left millions of accounts in limbo. As of the time of publishing, over 500,000 Activision accounts … The ISBuzz Post: This Post Experts On Major Activision Hack Reportedly Compromises Over 500k CoD Accounts | Data Breach Hack | ||
|
2020-09-21 13:35:42 | Focus on Fixing, Not Just Finding, Vulnerabilities (lien direct) |  When investing in an application security (AppSec) program, you expect to see a return on your investment. But in order to recognize a return, your organization needs to determine what success looks like and find a way to measure and prove that the program is meeting your definition of success.
For those just starting on their AppSec journey, success might be eliminating OWASP Top 10 vulnerabilities or lowering flaw density. But as you begin to mature your program and work toward continuous improvements, you should start measuring your program against key performance indicators (KPIs) like fix rate. Fix rate is used to indicate how fast your organization is closing ??? or remediating ??? flaws. The formula for fix rate is the number of findings closed divided by the number of findings open. As you can see in the diagram below, of the 6,609 flaws, 2,581 flaws areツ?open and 4,028 are closed. This means that flaws are remediated at a rate of 16 percent. The faster your organization fixes flaws, the lower the chances of an exploit. For the sake of continuous improvement, you should be finding that your organization is improving its fix rate by remediating flaws faster year over year.
ツ?
Using Veracode Analytics to examine fix rate and prove AppSec success.
Using Veracode Analytics custom dashboards, you can examine your total fix rate or break it out by application, scrum team, business unit, or geographical location. These dashboards can be shared with stakeholders and executives to show areas where your fix rate is improving or areas that need additional attention and resources.
When examining fix rate across applications, you should be finding that your more critical applications have a better fix rate. If that???s not the case, you need to be examining the application security policies you have in place for fixing flaws. High-severity and highly exploitable flaws should be prioritized over low-severity flaws with a lower chance of exploitability. The same logic applies to applications: High-risk applications storing large amounts of sensitive data should be prioritized.
When examining the fix rate across scrum teams and locations, you should find that teams and geographical locations are continuously improving their fix rate. If not, you should use the data to tailor future security trainings or to ask stakeholders and executives for additional resources.
How does fix rate impact return on investment?
By remediating flaws faster, you are reducing the chance of an exploit which could cost your business thousands ??? even millions ??? to resolve. For example, Capital One had a third-party vulnerability that was not remediated, and it led to a massive data breach which exposed its customer???s social security numbers and bank account numbers. It cost Capital One approximately 150 million dollars to resolve the matter.
Faster time to remediation also means faster time to production. Once developers fix all of the flaws defined in their policy, code can be moved to production. If code is moved to production at a faster rate, an organization ??? and its customers ??? can start recognizing value from the application sooner.
ツ?
For additional methods on proving AppSec success, check out our re |
Data Breach Vulnerability | ||
|
2020-09-21 10:45:22 | Experian data breach is not contained, despite claims it has (lien direct) | Experian recently experienced a data breach, which they claim has been contained, but it appears that it has not been. The breach exposed the personal information of 24 million South Africans, 800,000 business, and the bank accounts of 25,000 firms. The credit information company claim to have seized and deleted all data, but it appears […] | Data Breach | ||
|
2020-09-20 09:39:26 | Security Affairs newsletter Round 282 (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. Gaming hardware manufacturer Razer suffered a data leak CIRWA Project tracks ransomware attacks on critical infrastructure Popular Marketing Tool exposes data of users of dating sites Staples discloses data breach […] | Ransomware Data Breach Tool | ||
|
2020-09-18 04:06:25 | CTO On Ransomware Attack On University Hospital New Jersey (lien direct) | In reference to the news of the recent ransomware attack on University Hospital New Jersey (UHNJ) – it was reported the institution has suffered a massive 48,000 document data breach after a ransomware operation leaked their stolen data. Furthermore it was found that the SunCrypt ransomware operation has leaked the data have leaked a 1.7 … The ISBuzz Post: This Post CTO On Ransomware Attack On University Hospital New Jersey | Ransomware Data Breach | ||
|
2020-09-17 14:01:48 | The Dunkin\' Donuts data breach leaves a very bad taste in the mouth (lien direct) | Despite repeated warnings Dunkin' Donuts failed to investigate evidence of a significant data breach, didn't reset passwords, and didn't warn customers... for years. | Data Breach | ||
|
2020-09-15 15:04:55 | Covid-19 data breach: FM \'doesn\'t know\' when ministers first told (lien direct) | Mark Drakeford says he only learned of a data breach involving 18,000 people on Monday. | Data Breach | ||
 |
2020-09-15 11:28:40 | Security Incident at VA Exposed 46K Veterans\' Information (lien direct) | The Office of Management at the U.S. Department of Veterans Affairs (VA) disclosed a security incident involving the personal data of 46,000 veterans. The VA detailed the data breach in a statement published on its website on September 14. According to this press release, the VA’s Financial Services Center (FSC) discovered that unauthorized actors had […]… Read More | Data Breach | ||
|
2020-09-15 08:51:58 | Experts Reaction On Staples Data Breach (lien direct) | Staples has informed some customers that data relating to their orders has been accessed without permission, but dubbed the data as ‘Non-sensitive” according to researcher Troy Hunt. Cybersecurity experts reacted below. The ISBuzz Post: This Post Experts Reaction On Staples Data Breach | Data Breach | ||
|
2020-09-15 08:35:36 | Expert Reaction On Personal Information Of 46,000 Veterans Was Compromised In Data Breach (lien direct) | It has been reported that the Department of Veterans Affairs notified veterans Monday morning of a data breach that resulted in the exposure of 46,000 veterans’ personal information. This breach took place when an unauthorized users tries to access an application within the Financial Service Center (FSC) to steal payment. The techniques used by the … The ISBuzz Post: This Post Expert Reaction On Personal Information Of 46,000 Veterans Was Compromised In Data Breach | Data Breach | ||
|
2020-09-15 03:00:54 | Using the Cost of a Data Breach to Maximize Your ROI on Your Security Tools (lien direct) | The 2020 Cost of Data Breach report from IBM and the Ponemon is out. It provides a detailed analysis of causes, costs and controls that appeared in their sampling of data breaches. The report is full of data, and the website allows you to interact with its information so that you can do your own […]… Read More | Data Breach | ||
|
2020-09-14 21:15:15 | Over 18K COVID-19 Patients\' Data Mistakenly Exposed by NHS Trust (lien direct) | A National Health Service (NHS) Trust revealed that it had mistakenly uploaded the personal information of over 18,000 people who had previously tested positive for coronavirus 2019 (COVID-19). On September 14, Public Health Wales announced in a web statement that the data breach had occurred back on the afternoon of August 30, 2020. This notice […]… Read More | Data Breach |
To see everything:
Our RSS (filtrered)
