What's new arround internet

Src Date (GMT) Titre Description Tags Stories Notes
no_ico.png 2019-05-24 21:11:05 Comments On 300% Increase In Mobile Fraud (lien direct)

A new RSA report reveals that fraud attacks from mobile apps increased 300% in just the first quarter of this year.   Expert comments:   Don Duncan, Security Engineer at NuData Security:  “Retail mobile eCommerce sales in the U.S. is expected to reach $338 billion by 2020 according to Statistica. Combine smaller screens with more people hurrying to shop …

The ISBuzz Post: This Post Comments On 300% Increase In Mobile Fraud appeared first on Information Security Buzz.

no_ico.png 2019-05-24 20:30:01 Another Zero-day Vulnerability In Microsoft\'s Latest Operating Systems (lien direct)

Following the news that another zero-day vulnerability was discovered in Microsoft’s latest operating systems, security experts commented below. Rahim Jina, COO and Co-founder at Edgescan: “Most of the zero-days reported are local privilege escalation vulnerabilities, meaning that they can only be used when someone already has a certain level of access to the target host. Generally these would be considered …

The ISBuzz Post: This Post Another Zero-day Vulnerability In Microsoft’s Latest Operating Systems appeared first on Information Security Buzz.

no_ico.png 2019-05-24 19:30:00 Commuters Of London Will Have Their Mobile Wi-Fi Data Collected From July (lien direct)

The BBC is reporting that tube commuters in London will have their mobile Wi-Fi data collected from July as a part of a scheme to improve journeys.   Paul Norris, Senior Systems Engineer, EMEA at Tripwire: “It is important that these mass-collections of data are monitored and regulated. There is nothing inherently risky in collecting information that …

The ISBuzz Post: This Post Commuters Of London Will Have Their Mobile Wi-Fi Data Collected From July appeared first on Information Security Buzz.

no_ico.png 2019-05-24 19:30:00 Cybersecurity Is A Market For Lemons (lien direct)

I recently attended CYBERUK which is the UK government’s flagship cybersecurity event hosted by the National Cyber Security Centre (NCSC). The event features world-class speakers, and opportunities for interaction between the public and private sectors. It was a fascinating couple of days, partly as Becrypt is working with government on projects featured at the event, but it was also …

The ISBuzz Post: This Post Cybersecurity Is A Market For Lemons appeared first on Information Security Buzz.

no_ico.png 2019-05-24 16:25:02 TalkTalk Data Breach Customer Details Found Online (lien direct)

It has been reported that TalkTalk failed to inform some 4500 people that their data was compromised in the 2015 breach. Viewers contacted BBC Watchdog Live about concerns that their details had been breached by TalkTalk. But the company had told them that their details were not compromised. The BBC consumer show investigated and found the personal details of approximately 4,500 …

The ISBuzz Post: This Post TalkTalk Data Breach Customer Details Found Online appeared first on Information Security Buzz.

no_ico.png 2019-05-23 21:30:03 Trickbot Variant (lien direct)

A new variant of the Trickbot banking trojan has been discovered by security researchers at Trend Micro* that is using a redirected URL in spam email to spread malware. The redirected URL is a way to get around spam filters.     Expert Comments:   Mike Bittner, Associate Director of Digital Security and Operations at The Media Trust: …

The ISBuzz Post: This Post Trickbot Variant appeared first on Information Security Buzz.

no_ico.png 2019-05-23 18:26:05 Windows 10 Zero-Day Exploit Code Released Online (lien direct)

A security researcher has published today demo exploit code on GitHub for a Windows 10 zero-day vulnerability. The zero-day is what security researchers call a local privilege escalation (LPE), ZDNet reported.  LPE vulnerabilities can’t be used to break into systems, but hackers can use them at later stages in their attacks to elevate their access on compromised hosts from …

The ISBuzz Post: This Post Windows 10 Zero-Day Exploit Code Released Online appeared first on Information Security Buzz.

no_ico.png 2019-05-23 16:26:02 Comcast Wants To Track Your Bedroom And Bathroom Habits (lien direct)

Not content with bringing TV, broadband and phone services to your home, Comcast is now developing a healthcare device that will use sensors to monitor your vitals and habits. According to TechRadar, Comcast’s device will use sensors to monitor whether you’re spending more time in bed than normal, and whether you’re making more trips than usual to …

The ISBuzz Post: This Post Comcast Wants To Track Your Bedroom And Bathroom Habits appeared first on Information Security Buzz.

no_ico.png 2019-05-23 14:15:01 Organisations See Huge Rise In Encryption Implementation Following GDPR Enforcement (lien direct)

More than half of organisations enforce encryption of data on all mobile devices and removable media  Apricorn, the leading manufacturer of software-free, 256-bit AES XTS hardware-encrypted USB drives, today announced findings from a survey highlighting the rise in encryption technology post GDPR enforcement. Two thirds (66%) of respondents now hardware encrypt all information as standard, which is a positive step …

The ISBuzz Post: This Post Organisations See Huge Rise In Encryption Implementation Following GDPR Enforcement appeared first on Information Security Buzz.

no_ico.png 2019-05-23 13:30:00 LinkedIn Certificate Outage – Lesson Learnt (lien direct)

It was reported this morning that when some users noticed on Tuesday that when they tried to access LinkedIn from their desktop or laptop computer they were greeted by an alert that said the connection was not secure. It turned out that the company had forgotten to renew the TLS certificate for its lnkd.in URL shortener. The company quickly took action …

The ISBuzz Post: This Post LinkedIn Certificate Outage – Lesson Learnt appeared first on Information Security Buzz.

no_ico.png 2019-05-21 23:30:02 Adware Behaving Like Malware (lien direct)

Two Canadian Researchers from Concordia University in Montreal report that adware behaves like malware and should be classified as such. In a research paper*, the two reviewed Wajam, a software that injects ads into browser traffic and found that it uses techniques employed by malware for browser process injection attacks.    Expert Comments:   Mike Bittner, Associate Director …

The ISBuzz Post: This Post Adware Behaving Like Malware appeared first on Information Security Buzz.

no_ico.png 2019-05-21 23:14:04 Cloud Security Alliance Study Identifies New And Unique Security Challenges In Native Cloud, Hybrid And Multi-cloud Environments (lien direct)

Holistic cloud visibility and control over increasingly complex environments are essential for successful deployments in various cloud scenarios    The Cloud Security Alliance (CSA), the world\'s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment, and AlgoSec, the leading provider of business-driven network and cloud security management …

The ISBuzz Post: This Post Cloud Security Alliance Study Identifies New And Unique Security Challenges In Native Cloud, Hybrid And Multi-cloud Environments appeared first on Information Security Buzz.

no_ico.png 2019-05-21 21:30:03 Another WannaCry May Be Coming – Are You Ready? (lien direct)

The vulnerability is severe enough that Microsoft took a pretty unusual step in releasing updates for Windows XP and Server 2003 in addition to currently supported versions of Windows that are affected.    Unlike WannaCry, this threat is seen as extremely easy to exploit. It took a leaked NSA tool to exploit the WannaCry vulnerability, whereas the fear …

The ISBuzz Post: This Post Another WannaCry May Be Coming – Are You Ready? appeared first on Information Security Buzz.

no_ico.png 2019-05-21 20:30:01 Car Manufacturers Be Aware – Bluetooth Module Could Lead To Vehicle Shut Down By Hackers (lien direct)

According to new research uncovered by security specialists, Pen Test Partners, who were investigating the systems within Tesla vehicles, found that if hackers could attach an ELM327 Bluetooth module to the interface, they would have the ability to analyse the traffic and read CAN messages. If left in, a hacker could also potentially shut the car down.  Experts Comments:  Martin Jartelius, …

The ISBuzz Post: This Post Car Manufacturers Be Aware – Bluetooth Module Could Lead To Vehicle Shut Down By Hackers appeared first on Information Security Buzz.

no_ico.png 2019-05-21 18:38:05 Google Restricts Huawei\'s Access To Android Operating System (lien direct)

It has been reported that Google has suspended Huawei\'s access to updates of its Android operating system and chipmakers have reportedly cut off supplies to the Chinese telecoms company, complying with orders from the US government as it seeks to blacklist Huawei around the world. According to the story, Chipmakers such as Intel, Qualcomm, Xilinx, …

The ISBuzz Post: This Post Google Restricts Huawei’s Access To Android Operating System appeared first on Information Security Buzz.

no_ico.png 2019-05-21 18:35:05 Instagram – Unsecured Database Exposed (lien direct)

A massive database containing contact information of millions of Instagram influencers, celebrities and brand accounts has been found online. The database, hosted by Amazon Web Services, was left exposed and without a password allowing anyone to look inside. At the time of writing, the database had over 49 million records - but was growing by the hour. …

The ISBuzz Post: This Post Instagram – Unsecured Database Exposed appeared first on Information Security Buzz.

no_ico.png 2019-05-21 15:45:02 Blockchain Systems: Known Attack Vectors And Countermeasures (lien direct)

There is no bulletproof digital network, and blockchain doesn\'t stand out from the rest in this regard. However, the attacks targeting distributed ledgers differ from the ones used to compromise conventional computer networks. These exploitation scenarios rely on tampering with the process of achieving consensus to alter the data added to the ledger. 51% attack …

The ISBuzz Post: This Post Blockchain Systems: Known Attack Vectors And Countermeasures appeared first on Information Security Buzz.

no_ico.png 2019-05-21 15:30:00 Not Another GDPR Comment (lien direct)

Experts Comments:   Joseph Carson, Chief Security Scientist & Advisory CISO at Thycotic: The EU GDPR has been positive for the Information Security industry as it has forced many companies to re-evaluate their cybersecurity posture and better understand the type of personal information they have been collecting on EU citizens.    It means that companies who are regulated …

The ISBuzz Post: This Post Not Another GDPR Comment appeared first on Information Security Buzz.

no_ico.png 2019-05-21 10:45:04 Adding A Recovery Phone Number To Your Google Account Can Block Up To 100% Of Automated Bots (lien direct)

Google published a blog post highlighting their research that showed that simply adding a recovery phone number to your Google Account can block up to 100% of automated bots, 99% of bulk phishing attacks, and 66% of targeted attacks that occurred during our investigation. Expert Comments: Jake Moore, Security Specialist at ESET: “All of the …

The ISBuzz Post: This Post Adding A Recovery Phone Number To Your Google Account Can Block Up To 100% Of Automated Bots appeared first on Information Security Buzz.

no_ico.png 2019-05-21 10:26:04 GDPR: The Best Strategy For International Businesses (lien direct)

The EU\'s General Data Protection Regulation (GDPR) was created with the aim of homogenising data privacy laws across the EU. GDPR also applies to organisations outside the EU, if they monitor EU data subjects, or offer goods and services to them. The GDPR applies to personal data, which is defined as any information relating to …

The ISBuzz Post: This Post GDPR: The Best Strategy For International Businesses appeared first on Information Security Buzz.

no_ico.png 2019-05-20 19:30:01 One Year On And 84% Of UK Consumers Don\'t Think GDPR Has Been Effective (lien direct)

Three-fifths (59%) of consumers would feel more secure if their personal information was protected by their fingerprint  Despite the introduction of the General Data Protection Regulation (GDPR) in May last year, research from IDEX Biometrics Asa has revealed UK consumers don\'t feel their personal information is any safer. In fact, 84% of respondents don\'t think GDPR …

The ISBuzz Post: This Post One Year On And 84% Of UK Consumers Don\'t Think GDPR Has Been Effective appeared first on Information Security Buzz.

no_ico.png 2019-05-20 16:30:01 Top 50 Internet Site Stack Overflow Breached (lien direct)

Developer knowledge sharing site Stack Overflow has confirmed hackers breached its systems, but said customer data is unaffected.  Stack Overflow, founded in 2008, has more than 50 million monthly active users who use the site to share code and knowledge. It remains one of the top 50 most popular sites on the web, according to rankings by internet analytics …

The ISBuzz Post: This Post Top 50 Internet Site Stack Overflow Breached appeared first on Information Security Buzz.

no_ico.png 2019-05-20 15:30:00 Microsoft RDP Pre-authentication Vulnerability (lien direct)

It has been reported that fears of a massive global computer virus outbreak have prompted Microsoft to issue security updates for very old versions of its Windows software.One patch is for Windows XP, which debuted in 2001 and Microsoft stopped supporting in 2014. Microsoft said the patch closed a hole that could be used to spread a virus. Malicious …

The ISBuzz Post: This Post Microsoft RDP Pre-authentication Vulnerability appeared first on Information Security Buzz.

no_ico.png 2019-05-20 14:50:02 Hacking Tesla Cars- How Leaving A Bluetooth Diagnostics Module Connected Is A Bad Idea (lien direct)

According to new research from Pen Test Partners, hackers could attach an ELM327 Bluetooth module to analyse the traffic and read CAN messages. If left in, a hacker could shut the car down.  Bluetooth 5.5" X3 Large Screen Car HUD Head Up Display With Built-in ELM327 Module 44.99USDhttp://t.co/FipBlxjYbu pic.twitter.com/V7vPghihGX — obd16shop.com (@OBD16shop) August 26, 2015 Dennis Kengo Oka, Senior Solution …

The ISBuzz Post: This Post Hacking Tesla Cars- How Leaving A Bluetooth Diagnostics Module Connected Is A Bad Idea appeared first on Information Security Buzz.

no_ico.png 2019-05-17 21:30:04 From Cinema To Reality – Three Things Every Business Can Learn From Disaster Movies (lien direct)

We all enjoy thinking about \'what if\' scenarios – what if the sun stopped shining? Or what if an alien spacecraft landed on Earth? This is probably why disaster movies are so popular.  They somehow suspend our disbelief, generate excitement and anticipation, and deliver regular box office dividends. In fact, Titanic is still the second most …

The ISBuzz Post: This Post From Cinema To Reality – Three Things Every Business Can Learn From Disaster Movies appeared first on Information Security Buzz.

no_ico.png 2019-05-17 18:34:02 Facebook Removes Israeli-based Influence Campaign (lien direct)

News broke this afternoon that Facebook has identified a private Israel-based influence campaign aimed at disrupting elections in various countries and has canceled dozens of accounts that engaged in spreading disinformation. Nathaniel Gleicher, Facebook\'s head of cybersecurity policy, told reporters Thursday the tech giant had purged 65 accounts, 161 pages and dozens of groups.  Corin Imai, Senior Security …

The ISBuzz Post: This Post Facebook Removes Israeli-based Influence Campaign appeared first on Information Security Buzz.

no_ico.png 2019-05-17 15:45:05 GozNym Cyber-Crime Gang Which Stole Millions Busted (lien direct)

Following the news that an international crime gang which used the GozNym banking malware to steal $100m (£77m) from more than 40,000 victims has been dismantled, Roy Rashti, cybersecurity expert, BitDam commented below. Roy Rashti, Cybersecurity Expert at BitDam: “The “Goz” in GozNym stands for the notorious Gozi banker malware which, although not new, was very successfully co-opted and …

The ISBuzz Post: This Post GozNym Cyber-Crime Gang Which Stole Millions Busted appeared first on Information Security Buzz.

no_ico.png 2019-05-17 14:45:00 GDPR One Year Later – Cybersecurity Industry Comments (lien direct)

With the upcoming 1-year anniversary of GDPR, here are collected insights from 13 industry experts:  Great turnout for this mornings “GDPR one year on” event do-hosted with @HayesSolicitors Laura Fanning giving a great overview of practical applications of #GDPR and busting some myths around marketing. — BrianHonan (@BrianHonan) May 16, 2019 Experts Comments:   Colin …

The ISBuzz Post: This Post GDPR One Year Later – Cybersecurity Industry Comments appeared first on Information Security Buzz.

no_ico.png 2019-05-16 23:13:01 Microsoft Warns Against Critical, WannaCry-like Flaw (lien direct)

Microsoft\'s announcement urging users of older versions of Windows to apply a patch to protect against a potential widespread WannaCry-like attack. Two years on from the WannaCry attack, which affected computers in over 70 countries, Tanium\'s recent research showed that organisations are still struggling with patching hygiene, leaving their critical assets exposed.    This vulnerability is so bad that #Microsoft …

The ISBuzz Post: This Post Microsoft Warns Against Critical, WannaCry-like Flaw appeared first on Information Security Buzz.

no_ico.png 2019-05-16 21:11:02 NEWS: Google Recalls Titan Keys Due To Newly Discovered Vulnerability (lien direct)

Not sure if it\'s on your radar for today but thought you might be interested in the news that Google is having to recall its Titan Security Keys after they were found to have a significant Bluetooth vulnerability which could allow hackers within 30 feet of their victim to gain access to their Google accounts …

The ISBuzz Post: This Post NEWS: Google Recalls Titan Keys Due To Newly Discovered Vulnerability appeared first on Information Security Buzz.

no_ico.png 2019-05-16 19:30:01 British Transport Police\'s Website Has Been Hacked (lien direct)

Recently, it was confirmed that the British Transport Police\'s website has been hacked. Whilst at first appeared to be a minor problem only affecting the \'newsroom section\' of the website, subsequent checks carried out by BTP, the National Cyber Security Centre and the National Crime Agency found “a small number” of staff details were leaked.   Expert …

The ISBuzz Post: This Post British Transport Police’s Website Has Been Hacked appeared first on Information Security Buzz.

no_ico.png 2019-05-16 16:30:03 One-Year GDPR Anniversary: Expert Commentary (lien direct)

Experts Comments:    Chris DeRamus, Co-founder and CTO at DivvyCloud:  “Since GDPR was implemented a year ago, it has sparked inspiration around the globe for similar data privacy regulations. We have already seen a few companies hit by GDPR fines, and they were far from frivolous. In fact, research from DLA Piper in February 2019, revealed that …

The ISBuzz Post: This Post One-Year GDPR Anniversary: Expert Commentary appeared first on Information Security Buzz.

no_ico.png 2019-05-16 14:50:01 Scottish Council Data Breach (lien direct)

In light of the news of a data breach by Scotland’s largest local authority, please find comment below from Jon Fielding, Managing Director, EMEA Apricorn. Jon Fielding, Managing Director, EMEA at Apricorn:  “It is frustrating to see incidents like these continue to occur when the remedy is so simple.  This breach of sensitive information by Scotland’s largest local authority …

The ISBuzz Post: This Post Scottish Council Data Breach appeared first on Information Security Buzz.

no_ico.png 2019-05-16 14:35:04 Russia Leaks PII Of 2.5 Million Citizens And Government Officials (lien direct)

ZDNet reported today that multiple Russian government sites have leaked the personal and passport information of over 2.25 million citizens, government employees, and high-ranking politicians. Ivan Begtin, co-founder of Informational Culture, a Russian NGO, has discovered and documented the leaks.    Paul Norris, Senior Systems Engineer, EMEA at Tripwire:   “The fact that the personal identifiable information that was …

The ISBuzz Post: This Post Russia Leaks PII Of 2.5 Million Citizens And Government Officials appeared first on Information Security Buzz.

no_ico.png 2019-05-15 21:19:00 Report: Most Organizations Are Dissatisfied With Their Web Application Firewalls (WAFs) (lien direct)

Ineffective protection, time-consuming management, high cost of ownership all play a role   Cequence Security, a provider of innovative software solutions that protect web, mobile, and API-based applications from cyberattacks, today released a new Ponemon Institute report – “The State of Web Application Firewalls”- showing that only 40% of organizations are satisfied with their WAF. The report is …

The ISBuzz Post: This Post Report: Most Organizations Are Dissatisfied With Their Web Application Firewalls (WAFs) appeared first on Information Security Buzz.

no_ico.png 2019-05-15 19:31:04 Experts Reactions On Intel Flaw Lets Hackers Siphon Secrets From Millions Of PCs (lien direct)

Researchers have uncovered yet another flaw in Intel’s hardware. It can allow attackers to eavesdrop on virtually every bit of raw data that a victim’s processor touches.   A supergroup of security researchers around the world found a new speculative execution attack against Intel chips that lets an attacker who can run code on a victim …

The ISBuzz Post: This Post Experts Reactions On Intel Flaw Lets Hackers Siphon Secrets From Millions Of PCs appeared first on Information Security Buzz.

no_ico.png 2019-05-15 19:18:04 Uniqlo Data Breach Commentary (lien direct)

Fast Retailing, the company behind multiple Japanese retail brands, announced that the UNIQLO Japan and GU Japan online stores have been hacked and third parties accessed 461,091 customer accounts following a credential stuffing attack. Information accessed includes customer names, addresses, phone numbers, email addresses, genders, dates of birth, purchase history, clothing measurements and partial payment …

The ISBuzz Post: This Post Uniqlo Data Breach Commentary appeared first on Information Security Buzz.

no_ico.png 2019-05-15 16:30:04 San Francisco Is The First US City To Ban Facial Recognition – Experts Comments (lien direct)

Following the news that San Francisco has become the first city to ban the use of facial recognition in local agencies, such as law enforcement, please see a comment below from Matthew Aldridge, Senior Solution Architect at Webroot, who believes that while the technology can work well, the risk of biometric data being stolen is too great …

The ISBuzz Post: This Post San Francisco Is The First US City To Ban Facial Recognition – Experts Comments appeared first on Information Security Buzz.

no_ico.png 2019-05-15 14:50:02 Turkish Law On Data Breaches GDPR Report (lien direct)

Turkey\'s first comprehensive data protection law was being launched in April 2016. The 2016 Law on the Protection of Personal Data (“Turkish Data Protection Law”) is based largely on EU Data Protection Law. As a candidate state for EU membership, Turkey aligns much of its legal system with EU law. Turkish data protection law consequently …

The ISBuzz Post: This Post Turkish Law On Data Breaches GDPR Report appeared first on Information Security Buzz.

no_ico.png 2019-05-14 23:01:04 WhatsApp Vulnerability Exploited To Install Spyware (lien direct)

It has been reported that a “targeted” surveillance attack was discovered in WhatsApp, hackers were able to remotely install surveillance software on phones and other devices using a major vulnerability in WhatsApp. The attack targeted a \'select number\' of users and was orchestrated by \'an advanced cyber actor”.   Social Media Reaction: “WhatsApp encourages people to upgrade to the latest …

The ISBuzz Post: This Post WhatsApp Vulnerability Exploited To Install Spyware appeared first on Information Security Buzz.

no_ico.png 2019-05-14 19:43:05 Attackers Grabbing Payment Info From 4600 Sites (lien direct)

Hackers have injected malicious code into Alpaca forms and Picreel, an analytics service to steal payment information and passwords according to Security researcher Willhelm DeGroot.* DeGroot who discovered the attack believes more than 4,600 websites have been affected.  Supply chain attack of the week: @Picreel_ marketing software got hacked last night, their 1200+ customer sites are now leaking data to …

The ISBuzz Post: This Post Attackers Grabbing Payment Info From 4600 Sites appeared first on Information Security Buzz.

no_ico.png 2019-05-14 18:37:04 Cisco Router Bug Has Global Implications (lien direct)

WIRED reported yesterday that a security bug in a Cisco router has massive global implications. According to the article, to compromise the routers, researchers from the security firm Red Balloon exploited two vulnerabilities. The first is a bug in Cisco\'s IOS operating system-not to be confused with Apple’s iOS-which would allow a hacker to remotely obtain root access …

The ISBuzz Post: This Post Cisco Router Bug Has Global Implications appeared first on Information Security Buzz.

no_ico.png 2019-05-14 17:38:03 Unprotected Elasticsearch Server Leaves 85% Of All Panama Citizens Data Exposed (lien direct)

A security researcher has discovered an Elasticsearch server that was left connected to the internet without a password, or firewall protection and has leaked what appears to be personal records and patient information for roughly 85 percent of Panama’s citizens.   Experts Comments: Hugo van den Toorn, Manager Offensive Security at Outpost24: “At first glance, it seems an …

The ISBuzz Post: This Post Unprotected Elasticsearch Server Leaves 85% Of All Panama Citizens Data Exposed appeared first on Information Security Buzz.

no_ico.png 2019-05-14 16:45:02 NBA Team Indiana Pacers Hit By Data Breach (lien direct)

The Indiana Pacers, a major franchise team in the NBA was hit by a data breach between October 15, 2018, and December 4, 2018. Pacers Sports & Entertainment (PSE), which also manages operations of the Bankers Life Fieldhouse arena, said that unauthorized access to several of its employee accounts had been gained by “unknown actors”. The news …

The ISBuzz Post: This Post NBA Team Indiana Pacers Hit By Data Breach appeared first on Information Security Buzz.

no_ico.png 2019-05-13 23:52:02 Hackers Are Collecting Payment Details, User Passwords From 4,600 Sites (lien direct)

It has been reported that hackers have breached analytics service Picreel and open-source project Alpaca Forms and have modified JavaScript files on the infrastructure of these two companies to embed malicious code on over 4,600 websites,  Hackers have breached analytics service Picreel and open-source project Alpaca Forms and have modified JavaScript files on the infrastructure of these two companies to …

The ISBuzz Post: This Post Hackers Are Collecting Payment Details, User Passwords From 4,600 Sites appeared first on Information Security Buzz.

no_ico.png 2019-05-13 23:30:04 Unsecured SMS Spam Operation Discovered (lien direct)

It has been reported that a massive SMS spamming operation kicked out tens of millions of text messages, pestering unsuspecting recipients with links to fake sites flogging loans and free money. The operation was simple but smart. The system processed vast batches of phone numbers and curated custom messages on the fly with links to the fake sites. These …

The ISBuzz Post: This Post Unsecured SMS Spam Operation Discovered appeared first on Information Security Buzz.

no_ico.png 2019-05-13 20:30:01 AT&T Alien Labs Researcher Finds Sharepoint Vulnerability Exploited In The Wild (lien direct)

AT&T Alien Labs researcher Chris Doman has seen a number of reports of active exploitation of a vulnerability in Microsoft Sharepoint (CVE-2019-0604).  One report by the Saudi Cyber Security Centre appears to be primarily targeted at organisations within the kingdom.  An earlier report by the Canadian Cyber Security Centre identified similar deployment of the tiny China Chopper web-shell to gain an initial foothold.  SharePoint CVE-2019-0604 …

The ISBuzz Post: This Post AT&T Alien Labs Researcher Finds Sharepoint Vulnerability Exploited In The Wild appeared first on Information Security Buzz.

no_ico.png 2019-05-13 19:30:01 Apps On Android Phones Present Threats To Security And Privacy (lien direct)

Its been reported that the apps bundled with many Android phones are presenting threats to security and privacy greater than most users think. This according to a paper (PDF) from university researchers in the US and Spain who studied the pre-installed software that 214 different vendors included in their Android devices. They found that everyone from the hardware builders to mobile …

The ISBuzz Post: This Post Apps On Android Phones Present Threats To Security And Privacy appeared first on Information Security Buzz.

no_ico.png 2019-05-13 19:15:02 Survey Says: Microsoft Migration Isn\'t As Easy As It Sounds (lien direct)

A recent survey-report commissioned by 1E, Getting Your House in Order, was completed by 600 senior IT decision makers in the US and UK, split evenly between IT Operations and IT Security specialists. The intent was to see if, in the wake of so many devastating cyber-attacks in the last few years, lessons had been …

The ISBuzz Post: This Post Survey Says: Microsoft Migration Isn\'t As Easy As It Sounds appeared first on Information Security Buzz.

no_ico.png 2019-05-13 18:50:03 US Government Unveils New North Korean Hacking Tool (lien direct)

It has been reported that yesterday the Department of Homeland Security and the FBI publicly identified a new North Korean malware capable of funnelling information from a victim’s computer network. Dubbed ElectricFish by government officials, the malware is the latest tool in North Korea’s hacking program, referred to as Hidden Cobra. The U.S. Cyber Emergency Response Team published a report warning the public …

The ISBuzz Post: This Post US Government Unveils New North Korean Hacking Tool appeared first on Information Security Buzz.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21

Information mise à jours le: 2019-05-27 08:01:36
Voir la liste des sources.

Mon email:

Vous souhaitez ne rien manquer: Notre RSS (filtré) Twitter