What's new arround internet

Src Date (GMT) Titre Description Tags Stories Notes
no_ico.png 2019-03-25 21:27:04 Millions Of Emails Exposed In Oregon DHS Data Breach (lien direct)

News recently broke that the emails of over 350k clients of the Oregon Department of Human Services (DHS) have potentially been compromised after 9 employees were the target of a spear phishing campaign.  It left 2 million emails potentially exposed.   The Oregon Department of Human Services announced that roughly 2 million emails with Protected Health Information …

The ISBuzz Post: This Post Millions Of Emails Exposed In Oregon DHS Data Breach appeared first on Information Security Buzz.

no_ico.png 2019-03-25 18:19:01 Facial Recognition Implemented By US Customs & Border Protection (lien direct)

The US Customs and Border Protection program called Biometric Exit has already been rolled out in 17 airports in the US. While passenger convenience is enhanced, there are some privacy concerns that have been raised. Facial recognition in airports: "The US Customs and Border Protection program, called Biometric Exit, is in 17 airports… The agency …

The ISBuzz Post: This Post Facial Recognition Implemented By US Customs & Border Protection appeared first on Information Security Buzz.

no_ico.png 2019-03-25 15:04:03 Zero-day In WordPress SMTP Plug-in (lien direct)

The Easy WP SMTP Plug-in that is used by WordPress site owners to configure the SMTP settings of their site server’s outgoing emails, is being leveraged by hacker groups to create backdoor admin accounts and redirecting users to tech support scams. Both NinTechNet and Defiant – cybersecurity companies have reported the attacks. Does your WordPress website have either 'Easy …

The ISBuzz Post: This Post Zero-day In WordPress SMTP Plug-in appeared first on Information Security Buzz.

no_ico.png 2019-03-25 13:30:04 From Preparation To Implementation: How To Fully Adopt Automation In 2019 (lien direct)

The last 12 months have seen a shift in how enterprises view automation and its benefits to their security and DevOps teams. Last year, it was found that more than three-quarters of organisations would like the ability to automate some of the day-to-day manual tasks related to their security information and event management (SIEM) systems. Yet, many …

The ISBuzz Post: This Post From Preparation To Implementation: How To Fully Adopt Automation In 2019 appeared first on Information Security Buzz.

no_ico.png 2019-03-25 12:10:00 UK Finance 2018 Fraud Statistics (lien direct)

Yesterday UK Finance, the UK\'s industry trade body, published its annual report into the UK\'s payment industry fraud, Fraud the Facts 2019.      The report reveals that in 2018:  Criminals stole £1.2 billion through fraud and scams:  Unauthorised financial fraud losses across payment cards, remote banking and cheques totalled £844.8 million, an increase of 16% compared to 2017  Authorised push payment scams resulted in gross …

The ISBuzz Post: This Post UK Finance 2018 Fraud Statistics appeared first on Information Security Buzz.

no_ico.png 2019-03-25 11:45:00 Rise In DDoS Attack Size (lien direct)

Global research has revealed the scale and quantity of DDoS (Distributed Denial of Service) attacks increased significantly across 2018 with attacks reaching 400Gbps in size or larger.  EfficientIP secures brands including Netflix, IKEA and the London Stock Exchange against exactly these types of attacks.  Specialists in network security with expert knowledge in DDoS attacks, its latest Global DNS Threat Report shows:  Although …

The ISBuzz Post: This Post Rise In DDoS Attack Size appeared first on Information Security Buzz.

no_ico.png 2019-03-22 23:27:03 80 Percent Of Spear Phishing Attacks Involve Brand Impersonation (lien direct)

Following the news that cybersecurity firm Barracuda Networks has published a report on spear phishing which reveals that over 80% of attempts involve brand impersonation, Corin Imai, Senior Security Advisor at DomainTools commented below. Corin Imai, Senior Security Advisor at DomainTools: “Unfortunately, aside from investing in an efficient email filtering software, there is little that organisations and private individuals …

The ISBuzz Post: This Post 80 Percent Of Spear Phishing Attacks Involve Brand Impersonation appeared first on Information Security Buzz.

no_ico.png 2019-03-22 21:16:03 Russian Hackers Target EU Elections (lien direct)

It has been reported today that Russian hackers have targeted European government systems ahead of the EU parliament election.According to researchers, two state-sponsored hacking groups, APT28 and Sandworm, used spear phishing - the practice of sending out emails designed to look like they\'re from a trusted party - in an attempt to obtain government information.   https://t.co/zUI5H6d8QQ Evidence mounts that Russian …

The ISBuzz Post: This Post Russian Hackers Target EU Elections appeared first on Information Security Buzz.

no_ico.png 2019-03-22 19:15:03 Fake CDC Emails Warning Of Flu Pandemic Push Ransomware (lien direct)

A new malspam campaign is being conducted that is pretending to be from the Centers for Disease Control and Prevention (CDC) about a new Flu pandemic. Attached to the emails are a malicious attachment that when opened will install the GandCrab v5.2 Ransomware on the target’s computer.  First discovered by MyOnlineSecurity, these emails are being sent from email addresses that are impersonating …

The ISBuzz Post: This Post Fake CDC Emails Warning Of Flu Pandemic Push Ransomware appeared first on Information Security Buzz.

no_ico.png 2019-03-22 18:07:02 Bank Payment Scams Claim 84,000 Victims (lien direct)

The BBC has today reported that scams in which criminals trick bank customers into paying them money out of their bank accounts jumped by 45% in the second half of last year. Over the whole of last year, more than 84,000 bank customers fell victim, some losing tens of thousands of pounds. Banks say scam merchants are shifting their attention …

The ISBuzz Post: This Post Bank Payment Scams Claim 84,000 Victims appeared first on Information Security Buzz.

no_ico.png 2019-03-22 16:30:04 Zero-Day In WordPress SMTP Plugin Abused By Two Hacker Groups (lien direct)

It has been reported that a zero-day WordPress plugin has been exploited in the wild by at least two hacker groups. The vulnerability can be used to change site settings, create admin accounts to use as backdoors and then hijack traffic from the hacked sites.  Satnam Narang, Senior Research Engineer at Tenable: “According to Web Technology Surveys (w3techs), WordPress …

The ISBuzz Post: This Post Zero-Day In WordPress SMTP Plugin Abused By Two Hacker Groups appeared first on Information Security Buzz.

no_ico.png 2019-03-22 15:30:01 Police Federation Breach (lien direct)

It has been reported that the Police Federation of England and Wales (PFEW) has confirmed that it has been dealing with a ransomware attack on its computer systems. The PFEW was able to respond quickly to an alert from its cyber-security n Saturday 9th March, with cyber experts rapidly reacting to isolate the malware to stop it from spreading …

The ISBuzz Post: This Post Police Federation Breach appeared first on Information Security Buzz.

no_ico.png 2019-03-22 14:30:03 Security Of Enterprise Wireless Networks (lien direct)

Providing enterprise network security is becoming an increasingly complex undertaking, as the number of threats emanating from the Internet continues to grow. Hackers continue to find new ways to attack systems and steal data. Dealing with these threats is highly complex. While numerous reviews like this may indicate that virtual private networks can protect you …

The ISBuzz Post: This Post Security Of Enterprise Wireless Networks appeared first on Information Security Buzz.

no_ico.png 2019-03-22 12:55:00 Experts Comments: Facebook Employees Has Access To Hundreds Of Millions Of User Passwords In Plain Text For Years (lien direct)

The passwords of millions of Facebook users were accessible by up to 20,000 employees of the social network, it has been reported.  Security researcher Brian Krebs broke the news about data protection failures, which saw up to 600 million passwords stored in plain text.  #facebook messed it again? Yes. Plaintext passwords stored for years on their …

The ISBuzz Post: This Post Experts Comments: Facebook Employees Has Access To Hundreds Of Millions Of User Passwords In Plain Text For Years appeared first on Information Security Buzz.

no_ico.png 2019-03-21 21:36:00 ZOLL Medical Device Data Breach Caused By Third Party (lien direct)

Medical device company ZOLL has announced a data breach of patient information involving a third-party provider, stating:  On January 24, 2019, ZOLL learned of a data security incident that impacted the personal and medical information of some patients. As a precaution, ZOLL is providing this notice to make potentially affected patients aware of the incident and provide information on …

The ISBuzz Post: This Post ZOLL Medical Device Data Breach Caused By Third Party appeared first on Information Security Buzz.

no_ico.png 2019-03-21 19:15:05 Windows, Netflix Users Hit By Targeted Phishing Campaigns (lien direct)

In response to reports from Windows Defender Security Intel that AmEx and NetFlix customers are being hit with well-crafted phishing campaigns to get their credit card information, an expert with Centripetal Networks offers thoughts.  Colin Little, Senior Threat Analyst at Centripetal Networks:  Phishing emails are one of the highest-risk intrusion methods to date. They are easy to craft, easy to …

The ISBuzz Post: This Post Windows, Netflix Users Hit By Targeted Phishing Campaigns appeared first on Information Security Buzz.

no_ico.png 2019-03-21 14:02:05 New Carbanak Malware Attacks (lien direct)

ZDNet is reporting that the notoriously well-known threat group Fin7, also known as Carbanak, is back with a new set of administrator tools and never-before-seen forms of malware.  Fin7 has been active since at least 2015 and since the group’s inception has been connected to attacks against hundreds of companies worldwide.    Byron Rashed, Vice President of …

The ISBuzz Post: This Post New Carbanak Malware Attacks appeared first on Information Security Buzz.

no_ico.png 2019-03-21 12:30:05 Open Source Intelligence [OSINT] And Insecurity (lien direct)

Through robust research, and commercial engagements covering a 10 year period, it may be attested that the element of Open Source Intelligence is not only a major source of exposure, and potential exploitation point for Cyber Attackers; but that it can be the very key to exploitation in the majority of successful Cyber Attacks against …

The ISBuzz Post: This Post Open Source Intelligence [OSINT] And Insecurity appeared first on Information Security Buzz.

no_ico.png 2019-03-21 11:48:02 MyPillow And Amerisleep Hit By Magecart (lien direct)

Cybersecurity researchers at RiskIQ discovered the two newly identified Magecart attacks targeting the bedding retailers MyPillow and Amerisleep. Magecart is a term used to describe different hacking groups specialised in implanting malicious code on the e-commerce websites. The Magecart injected the digital card skimmer on their websites to steal payment information at the checkout page.  It\'s a bed breach and beyond.https://t.co/UykuBmPYwq — CNET News (@CNETNews) March 20, 2019 …

The ISBuzz Post: This Post MyPillow And Amerisleep Hit By Magecart appeared first on Information Security Buzz.

no_ico.png 2019-03-21 10:55:00 Google Photos Bug Exposed The Location & Time Of Users\' Pictures (lien direct)

It has been reported that a vulnerability in the web version of Google Photos allowed websites to learn a user’s location history based on the images they stored in the account. The flaw affected the Google Photos search endpoint that allows users to quickly find pictures based on aggregated metadata, such as geo-location and date of creation, …

The ISBuzz Post: This Post Google Photos Bug Exposed The Location & Time Of Users’ Pictures appeared first on Information Security Buzz.

no_ico.png 2019-03-20 21:42:04 Cyber Security As A Service (lien direct)

Cyber security becomes more complex, more expensive and more frustrating year on year. The threat landscape is changing too fast. The data management and privacy compliance demands are onerous and expensive. The business risks are too high. Companies can simply no longer place the burden of cyber security and cyber resilience on an IT Manager; …

The ISBuzz Post: This Post Cyber Security As A Service appeared first on Information Security Buzz.

no_ico.png 2019-03-20 18:37:03 New Mirai Botnet Is Coming For Your Connected Screens (lien direct)

A strain of the botnet malware Mirai has emerged focused on a wider set of embedded internet-connected devices. Researchers at Palo Alto this week stated that a variant of the notorious Internet-of-Things infector is now looking to hijack TVs and projectors designed to display information and adverts, as well as the usual broadband routers, network-attached storage boxes, and IP-enabled …

The ISBuzz Post: This Post New Mirai Botnet Is Coming For Your Connected Screens appeared first on Information Security Buzz.

no_ico.png 2019-03-20 15:17:04 UK Unprepared For Cyber Attacks Against CNI (lien direct)

It has been reported that according to the National Audit Office (NAO), the UK government has “failings” in the way it is planning to protect the UK’s critical infrastructure from cyber-attacks.The warning came in a National Audit Office (NAO) assessment of the UK’s national cyber-defence plan. The government is increasingly worried that these essential sectors will be targeted by foreign …

The ISBuzz Post: This Post UK Unprepared For Cyber Attacks Against CNI appeared first on Information Security Buzz.

no_ico.png 2019-03-20 15:04:00 Payment Service Directive (PSD2) And Security (lien direct)

The Payment Services Directive (PSD2) will go into effect with some new rules in September of 2019 and could have some unexpected consequences according to a report from iovation and Aite Group. The report says the new, stricter requirements for fraud prevention, could push more fraud towards the US.  Ryan Wilk, VP of Customer Success at NuData …

The ISBuzz Post: This Post Payment Service Directive (PSD2) And Security appeared first on Information Security Buzz.

no_ico.png 2019-03-20 14:00:05 Top London Attractions Suffered Over 100 Million Attacks (lien direct)

Following the news that London\'s top tourist attractions, such as Kew Gardens and the Natural History Museum, have been hit by over 100 million cyber attacks in the past few years, please see a comment below from Jake Moore, cyber security specialist at ESET. Jake Moore, Cyber Security Specialist at ESET: “Hackers may assume that popular tourist attractions …

The ISBuzz Post: This Post Top London Attractions Suffered Over 100 Million Attacks appeared first on Information Security Buzz.

no_ico.png 2019-03-20 13:30:04 SSH Client PuTTY Security Patches (lien direct)

It has been reported that SSH client PuTTY has received numerous security patches. The fixes implemented on PuTTY over the weekend include new features plugging a plethora of vulns in the Telnet and SSH client, most of which were uncovered as part of an EU-sponsored HackerOne bug bounty.  PuTTY SSH client received security updates fixing several dangerous vulnerabilities at …

The ISBuzz Post: This Post SSH Client PuTTY Security Patches appeared first on Information Security Buzz.

no_ico.png 2019-03-20 12:30:04 Gnosticplayers Drops 4th Round Of Stolen Records On DreamMarket (lien direct)

In response to the news that the hacking group Gnosticplayers has just dropped a 4th round of stolen records on the dark web market DreamMarket, experts with OneSpan, Centripetal Networks and CyberSaint offer perspective. Byron Rashed, VP of Marketing at Centripetal Networks: “This is a classic example of a highly skilled and motivated threat actor that has successfully infiltrated networks and …

The ISBuzz Post: This Post Gnosticplayers Drops 4th Round Of Stolen Records On DreamMarket appeared first on Information Security Buzz.

no_ico.png 2019-03-20 11:15:03 On Norsk Hydro Cyber Attack (lien direct)

One of the world’s biggest aluminium producers has switched to manual operations at its Norwegian smelting facilities following a cyber-attack. Hydro, which employs more than 35,000 people in 40 countries, says the attack began on Monday night and is ongoing. A spokesman told the BBC that he could not yet confirm what type of cyber-attack the Norwegian firm was …

The ISBuzz Post: This Post On Norsk Hydro Cyber Attack appeared first on Information Security Buzz.

no_ico.png 2019-03-20 10:30:03 Kathmandu Clothing Retailer Probes Possible Card Skimming Data Breach (lien direct)

Outdoor clothing retailer Kathmandu announced that it is investigating a potential breach of customer card data harvested from its websites. In a statement posted to the New Zealand Exchange (NZE), the firm said it was notifying potentially affected customers directly, advising them to contact their banks and card providers: “Kathmandu has recently become aware that between January …

The ISBuzz Post: This Post Kathmandu Clothing Retailer Probes Possible Card Skimming Data Breach appeared first on Information Security Buzz.

no_ico.png 2019-03-20 09:13:03 UK Cybersecurity Efforts In Protecting Critical Infrastructure Criticised By Audit Office (lien direct)

The BBC has reported today that the government has been told there are “failings” in the way it is planning to protect the UK’s critical infrastructure from cyber-attacks. The warning came in a National Audit Office (NAO) assessment of the UK’s national cyber-defence plan. The government is increasingly worried that these essential sectors will be targeted by foreign states seeking …

The ISBuzz Post: This Post UK Cybersecurity Efforts In Protecting Critical Infrastructure Criticised By Audit Office appeared first on Information Security Buzz.

no_ico.png 2019-03-20 08:54:03 MySpace\'s Data Migration Data Loss (lien direct)

MySpace has lost over 50 million songs that were uploaded to the site between the years of 2003-15, due to a server migration error.    Report: Myspace has lost all the photos, videos, and music its users uploaded between 2003 and 2015 due to data corruption during a server migration project (@doctorow / Boing Boing)https://t.co/zuHKi8ikxbhttps://t.co/bL4lB6mVBs — Techmeme …

The ISBuzz Post: This Post MySpace\'s Data Migration Data Loss appeared first on Information Security Buzz.

no_ico.png 2019-03-15 23:04:01 National Cyber Security Programme Faces Criticism (lien direct)

Following the news that the National Cyber Security Programme is facing criticism over the way it was set up in 2016, and therefore is unlikely to meet its targets, Jake Moore, Cyber Security Specialist at ESET commented below.  Jake Moore, Cyber Security Specialist at ESET: “In 2016, £1.9billion may have sounded like a huge financial injection but cyber security …

The ISBuzz Post: This Post National Cyber Security Programme Faces Criticism appeared first on Information Security Buzz.

no_ico.png 2019-03-15 19:00:01 Cambridge Analytica Scandal – One Year On (lien direct)

In light of the one-year anniversary of the Cambridge Analytica scandal on Sunday 17th March, please see below for a comment from Jasmit Sagoo, senior director at Veritas. Jasmit explains how in the last year, the way consumers create and share data has changed, as have their expectations of how businesses should use their data.   Jasmit Sagoo, Senior Director at Northern …

The ISBuzz Post: This Post Cambridge Analytica Scandal – One Year On appeared first on Information Security Buzz.

no_ico.png 2019-03-15 14:30:01 The Three Big Ways iOS App Development Will Change In The Next Five Years (lien direct)

I have always loved Heraclitus\' teaching of, “No man ever steps in the same river twice.” It is a reminder of the impermanence of life. Though the Greek who lived 2500 years ago was speaking in broad terms, he very well could have been speaking about iOS app development. Although he finished his quote with, …

The ISBuzz Post: This Post The Three Big Ways iOS App Development Will Change In The Next Five Years appeared first on Information Security Buzz.

no_ico.png 2019-03-15 14:30:00 Gearbest Misconfiguration Exposes 1.5M Records (lien direct)

News broke that Gearbest, a Chinese online shopping giant, exposed 1.5 million records on an Elasticsearch server that was not protected with a password, allowing anyone to search the database. The exposed information includes names, addresses, phone numbers, email addresses, customer orders, products purchased, and in some cases, passport numbers and other national ID data. Gearbest ranks as one …

The ISBuzz Post: This Post Gearbest Misconfiguration Exposes 1.5M Records appeared first on Information Security Buzz.

no_ico.png 2019-03-15 11:45:02 New PoS Malware Discovered Targeting The Hospitality And Entertainment Industry (lien direct)

Researchers have uncovered a new cybercrime campaign that is targeting restaurants, cinemas and other retailers in the entertainment and hospitality industries with point-of-sale (POS) malware, with the aim to steal credit card information from customers. Going by the name of DMSniff, the malware is thought to have originated in 2016 but has managed to keep a low profile since. The key targets of DMSniff are small- and medium-sized companies …

The ISBuzz Post: This Post New PoS Malware Discovered Targeting The Hospitality And Entertainment Industry appeared first on Information Security Buzz.

no_ico.png 2019-03-15 11:30:02 New Malware Plaguing Hospitality & Entertainment Industries (lien direct)

A new, stealth, point-of-sale malware campaign has been discovered by Flashpoint that targets the hospitality and entertainment industries to skim credit card information.  Don Duncan, Security Engineer at NuData Security:  “The hospitality and entertainment industries have been hit particularly hard this year by cybercriminals. Point of sale (POS) devices on the network have been the bullseye for hackers …

The ISBuzz Post: This Post New Malware Plaguing Hospitality & Entertainment Industries appeared first on Information Security Buzz.

no_ico.png 2019-03-15 11:15:00 Red Team Project Set Up To Help Secure Open-Source Software (lien direct)

It has been reported that at this week’s Open Source Leadership Summit, the Linux Foundation announced the Red Team Project. This has been set up as an incubator for open-source Red Team security tools. These include programs that support cyber range automation, containerised pentesting utilities, binary risk analysis, and standards validation programs.  Thomas Richards, Network and Red Team Practice Director at Synopsys: “This project is …

The ISBuzz Post: This Post Red Team Project Set Up To Help Secure Open-Source Software appeared first on Information Security Buzz.

no_ico.png 2019-03-14 23:21:04 US IoT Cybersecurity Bill (lien direct)

Legislation was introduced Monday that would create cybersecurity standards for internet-connected devices, the “internet of things.” The Internet of Things (IoT) Cybersecurity Improvement Act of 2019, introduced in the Senate by Sens. Mark Warner (D-Va.) and Cory Gardner (R-Colo.) and in the House by Reps. Will Hurd (R-Texas) and Robin Kelly (D-Ill.), would require established standards …

The ISBuzz Post: This Post US IoT Cybersecurity Bill appeared first on Information Security Buzz.

no_ico.png 2019-03-14 21:16:00 Ransomware Attack On The US Committee For Public Counsel Services (lien direct)

A ransomware attack on the Committee for Public Counsel Services (CPCS), the agency overseeing public defenders in the US, has caused a major slowdown – disabling email systems, delaying some hearings, and holding up payments for the private attorneys who represent clients.  They are not alone, Jackson County Georgia also reported paying out $400,000 in ransom …

The ISBuzz Post: This Post Ransomware Attack On The US Committee For Public Counsel Services appeared first on Information Security Buzz.

no_ico.png 2019-03-14 19:30:04 Phishing Attacks Hook Half Of UK Organisation Over The Past Two Years (lien direct)

Research by Sophos has revealed that almost half of UK businesses have been compromised by phishing attacks in the last two years.  The research explained that bigger firms (those with between 500 and 1,000 employees) are more likely to be affected by such attacks, despite 78% of them offering their staff enhanced cybersecurity training, compared …

The ISBuzz Post: This Post Phishing Attacks Hook Half Of UK Organisation Over The Past Two Years appeared first on Information Security Buzz.

no_ico.png 2019-03-14 17:00:03 Independent Professor Comments On The Facts & Fiction (lien direct)

Seemingly, the next evolution of technology will hinge on the successful launch of 5G. Driverless cars, video communication, remote devices, instant streaming and smart cities– all rely on pervasive and constant internet connection.  As we come to grips with a constantly connected world where all of our devices \'talk\' to each other, industries will find new …

The ISBuzz Post: This Post Independent Professor Comments On The Facts & Fiction appeared first on Information Security Buzz.

no_ico.png 2019-03-14 15:00:01 The Biometric Smart Card: Connecting The Digitally Excluded (lien direct)

Digital inclusion is the ability of individuals to access and use information and communication technologies (ICT). Even in today\'s hyper-connected and technologically advanced world, there are still those who struggle to access basic IT and are being excluded as a result. In fact, according to recent research, 11.5m people in the UK lack the basic …

The ISBuzz Post: This Post The Biometric Smart Card: Connecting The Digitally Excluded appeared first on Information Security Buzz.

no_ico.png 2019-03-14 14:30:02 Suspected DDoS Attack Takes Down Social Media Giants (lien direct)

A suspected DDoS attack has taken down the world’s largest social media companies. Facebook, Instagram, WhatsApp and more are all suffering for problems that are stopping people getting online through websites and apps.It is not clear if the outages are connected. But they all mysteriously began at the same time, and are being felt across the world.  Tim Helming, Director …

The ISBuzz Post: This Post Suspected DDoS Attack Takes Down Social Media Giants appeared first on Information Security Buzz.

no_ico.png 2019-03-14 13:30:03 F5 Discovers “CryptoSink” Monero-Mining Campaign (lien direct)

Researchers at F5 Labs, the threat intelligence arm of F5 Networks, have uncovered a new malware campaign dubbed “CryptoSink” used deploy an XRM (Monero) mining operation targeting Elastisearch systems.    Key features include:  The campaign exploits a five-year-old vulnerability (CVE-2014-3120) in Elasticsearch systems running on Windows and Linux  On Linux, it delivers several previously unknown malwares which weren\'t detected …

The ISBuzz Post: This Post F5 Discovers “CryptoSink” Monero-Mining Campaign appeared first on Information Security Buzz.

no_ico.png 2019-03-13 21:09:05 UK Business PCs Have A One In 10 Chance Of Malware Infection In 2019 (lien direct)

Avast\'s Global PC Risk Report uncovers global risk ratio of the most \'at risk\' countries  One in every nine business PCs around the world is at risk of infection from malware at any time, according to new research by Avast (LSE:AVST), a global leader in cybersecurity. Pakistan, Vietnam and China topped the list of riskiest places to be a …

The ISBuzz Post: This Post UK Business PCs Have A One In 10 Chance Of Malware Infection In 2019 appeared first on Information Security Buzz.

no_ico.png 2019-03-13 19:00:03 Sensitive Data Leaked Due To Misconfigured Box Accounts (lien direct)

TechCrunch is reporting that companies are leaking sensitive data due to misconfigured Box accounts.  Some of the companies that exposed corporate or customer data from their Box enterprise accounts:• Apple• Amadeus• Discovery• Edelman• Herbalife• Schneider Electric• …and Boxhttps://t.co/uJUtNqz2OT — Zack Whittaker (@zackwhittaker) March 11, 2019 Pravin Kothari, CEO at CipherCloud: “In the past, applications were inside the …

The ISBuzz Post: This Post Sensitive Data Leaked Due To Misconfigured Box Accounts appeared first on Information Security Buzz.

no_ico.png 2019-03-13 15:15:01 Watering Hole Attack That Leverages Slack (lien direct)

A new watering hole attack is leveraging SLACK, a collaborative platform that lets users create and use their own workspaces, to send command-and-control communications without being detected. The new approach was discovered by Trend Micro.   We can’t paste this image from the Clipboard, but you can save it to your computer and insert it from there. Expert …

The ISBuzz Post: This Post Watering Hole Attack That Leverages Slack appeared first on Information Security Buzz.

no_ico.png 2019-03-13 13:54:05 Yatron Ransomware Plans To Spread Using EternalBlue NSA Exploits (lien direct)

A new Ransomware-as-a-Service called Yatron is being promoted on Twitter that plans on using the EternalBlue and DoublePulsar exploits to spread to other computers on a network. This ransomware will also attempt to delete encrypted files if a payment has not been made in 72 hours.  BleepingComputer was first notified about the Yatron RaaS by a security researcher who goes by the name A Shadow. Since …

The ISBuzz Post: This Post Yatron Ransomware Plans To Spread Using EternalBlue NSA Exploits appeared first on Information Security Buzz.

no_ico.png 2019-03-13 11:55:00 Blue Whale – Still Offering Advice (lien direct)

The debate on the subject of self-half images hosted on Instagram seems to have got lost in translation by the Press, MP\', and the incumbent Agencies who are supposed to be empowered to look after the on-line welfare of young people. Here, all of those expressing interest seem to be missing the real point. It …

The ISBuzz Post: This Post Blue Whale – Still Offering Advice appeared first on Information Security Buzz.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21

Information mise à jours le: 2019-03-26 04:01:32
Voir la liste des sources.

Mon email:

Vous souhaitez ne rien manquer: Notre RSS (filtré) Twitter