What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-10-02 10:15:21 | Health insurer pays almost $40M to settle cyberattack from 2015 (lien direct) | The health insurance company behind Blue Cross-Blue Shield, Anthem, will pay almost $40 million in order to settle a cyberattack from 2015 which compromised the personal information of around 79 million people, according to officials. On Wednesday the health insurance company announced that they have agreed to pay $39.5 million in order to settle an […] | |||
|
2020-10-01 10:56:17 | Microsoft Outlook down for four hours worldwide (lien direct) | Microsoft Outlook was down for four hours worldwide, with Outlook.com, as well as the Outlook desktop and mobile applications all being affected. The outage began at 2 AM ET, with some users still struggling to load or access their emails worldwide. Microsoft published a support update which said, “we're collecting additional data from the affected […] | |||
|
2020-10-01 10:42:02 | Amazon One Launch: Palm scanning for secure payments (lien direct) | Amazon has announced the launch of their new payment system, Amazon One, for use in shops which processes secure payments through the wave of a hand. The scanners work by registering an image of a user’s palm when they hover their hand in-mid air for a few seconds. The scanners will be trialled in two […] | |||
|
2020-10-01 10:38:41 | Twitter hires a new CISO – Rinki Sethi (lien direct) | Twitter has hired a new CISO, Rinki Sethi, following their very high profile breach back in July. The breach saw hackers targeting the company’s internal admin tools, allowing hackers access to high profile accounts, spreading cryptocurrency scams. Sethi has a long history working in cybersecurity with previous employers including IBM, Palo Alto Networks and Rubrik. […] | |||
|
2020-09-30 16:29:10 | Almost 60% of Brits don\'t know they\'ve been hacked, survey finds (lien direct) | As some of you may be aware, October is European Cybersecurity Month. Although more and more people are becoming aware of how cyber secure their technology is, more work needs to be done. According to research from ESET of 2,000 Brits, 31% of them remain unconcerned by cybersecurity. There is no better time than now […] | |||
|
2020-09-30 10:21:52 | Microsoft defence report outlines how criminals are becoming more sophisticated (lien direct) | Microsoft had released its Digital Defence Report detailing how cybercriminals are becoming more sophisticated in how they carry out their attacks. Looking at data from the past year, the report shows how these attacks are becoming harder to spot, meaning they are targeting even the savviest of people. What’s more, the report shows that ransomware […] | Ransomware | ||
|
2020-09-30 09:46:20 | Major watch maker, Swatch hit with cyberattack (lien direct) | After the detection of an attack on the weekend, Swatch has shut down some of their technology systems, affecting some of their operations. The shutdown was carried out on a precautionary basis to ensure no further damage was done. Swatch has stated that they hope their services will resume to normal soon. https://www.itnews.com.au/news/swatch-shuts-down-some-technology-systems-after-cyber-attack-554090 | |||
|
2020-09-30 09:44:55 | HP Device Manager has a dangerous backdoor (lien direct) | HP Device Manager is a popular software that allows IT administrators to manage their HP Thin Client devices. However, it has a backdoor database user account which can undermine the network security. Founder of Cognitous Cyber Security, Nick Bloor, discovered that an insecure user account had been set-up by an HP Inc programmer in a […] | |||
|
2020-09-29 10:56:08 | Universal Health Services hit by ransomware attack (lien direct) | One of the U.S.’s largest hospital chains, Universal Health Services Inc., experienced a malicious software attack which resulted in their computer systems being taken offline, crippling their computers and leading to cancelled surgeries and diverted ambulances. Unfortunately, it was reported that this attack resulted in four deaths after patients had to be redirected to different […] | Ransomware Guideline | ||
|
2020-09-29 10:53:41 | Flightrade24 suffered sufficient attacks (lien direct) | Popular flight tracking website, Flightrader24 has suffered sufficient attacks leaving it unavailable for its users whilst the problem is being fixed. There is no update on when their services will fully resume. Flightrader24 offers detailed tracking on thousands of commercial and private jets all over the world. The website gives information on the model, age […] | |||
|
2020-09-28 13:49:45 | The changing role of the CISO in uncertain times (lien direct) | COVID-19 has dramatically altered the world of cybersecurity and gravened the threat poised to companies that are increasingly shifting assets online, beyond the safety of the firewall. In this new reality, where cyberattacks are constant and security barriers porous, the guarantee in keeping organisations safe now lies beyond simple prevention. The pandemic has proven a […] | Threat | ||
|
2020-09-28 11:12:05 | Google removes 17 apps that contain malware (lien direct) | In the last week, Google has removed 17 apps from the Play Store that have been detected as being infected with the ‘Joker’ malware. This breach was spotted by security researchers from Zscaler, have said this type of malware gains access to the user’s messages, contacts and other personal information as well as signing the […] | Malware | ||
|
2020-09-28 10:55:30 | Worlds biggest banks helping criminals and terrorist embezzle money (lien direct) | The Financial Crimes Enforcement Network (FinCEN), a department within the Treasury has released a set of files outlining how some of the biggest banks in the world are moving trillions of dollars in transactions for presumed terrorists and drug cartels. However, FinCEN has no authority to stop such money laundering and the US government has […] | |||
|
2020-09-28 10:29:51 | New phishing scams detected targeting political opinions (lien direct) | A report published by Mimecast has discovered a new type of phishing email scam targeting people’s political opinions, particularly as the US election closes in. Cybercriminals have begun impersonating political organisations, mimicking their domains, slogans, and even getting people to donate to fake organisations. Mimecast researchers have discovered new website registrations under the name ‘Donald […] | |||
|
2020-09-28 00:48:48 | Strategies for overcoming male domination in cyber (lien direct) | People come into cyber security from a wide range of backgrounds, but the usual image is of a core cadre of techies depicted as having progressed from being boys in bedrooms hacking into games – but that's not true, rather, it was only ever part of the picture, with women also involved in every step […] | |||
|
2020-09-25 15:38:54 | Preventing fraud during a global pandemic (lien direct) | Amongst the many challenges that Covid-19 has created and exacerbated within the business landscape, fraud has been one of the most widespread. Recent weeks have proved that scams don’t diminish during a pandemic. In fact, during this time of crisis, many fraudsters have taken advantage, targeting individuals whilst they are at their most vulnerable and […] | |||
|
2020-09-25 11:25:29 | Seven out of ten CISOs fear that cyberwarfare is an impending threat (lien direct) | A global report by Bitdefender recently found that seven out of ten CISOs (71%) fear that cyberwarfare is an impending threat to their organisation, while more than a fifth (22%) of these CISOs confess to not having a plan in place to defend against such risks. These findings are incredibly alarming, especially after the recent […] | Threat | ||
|
2020-09-25 11:05:23 | Facebook takes down accounts linked to Russian interference in US election (lien direct) | Facebook has removed three networks of fake accounts, suspected to be linked to Russian intelligence organisation leaking documents in the effort to meddle in the US election. Facebook has said the accounts were suspended for using fake identities as well as beaching other inauthentic behaviours. These accounts have been linked to Russian intelligence organisation in […] | ★★★★★ | ||
|
2020-09-25 11:01:49 | Israeli intelligence helps deter hacking attempts in UAE (lien direct) | On Tuesday the UAE Head of NCSC Muhammad Al-Kuwaiti reported that the intel that Israel are sharing has helped to deter and amend any hacking attempts. For the first time the Israeli and UAE cyber chiefs, al-Kuwaiti and Israel National Cyber Directorate (INCD) Chief Yigal Unna, appeared at a virtual conference at Tel Aviv University. […] | ★★★★★ | ||
|
2020-09-24 14:48:33 | Why an increase in remote worker VPN use risks enterprise security (lien direct) | For many of us, our home has become our workplace over the past few months, and a full return to the office still appears a remote prospect. The COVID-19 pandemic has proved that employees from across different industries can work efficiently from home. A recent PwC Survey found that 84% of employees feel able to […] | |||
|
2020-09-24 11:02:07 | Facebook removes over 150 accounts linked to Philippine military (lien direct) | Facebook has removed several accounts linked to the Philippines military and police for breaching the social media platform’s government interference guidelines. A full investigation of these accounts was brought to Facebook’s attention after information was brought to them by Rappler, an independent news sources in the Philipines. The operation has been linked back to those […] | |||
|
2020-09-24 10:43:27 | More than one in five UK employees have received COVID-19 phishing emails (lien direct) | A report by Webroot has found that more than one in five UK employees (22%) have received a COVID-19 related phishing email. The Webroot survey gathered data from 7,000 office workers worldwide and found that employees are receiving 34% more emails than they were last year. The survey also showed that business needs to remain […] | |||
|
2020-09-24 10:29:38 | Cybersecurity threats on the rise from COVID-19, study finds (lien direct) | Netwrix has released its 2020 Cyber Threats Report aiming to understand the different threats industry professionals experience and how they respond to them, particularly in the time of COVID-19 with more employees working from home. The report outlines how 1 in 4 organisations feel they were exposed to more threats during the pandemic than they […] | |||
|
2020-09-23 13:37:50 | Rushed test and trace services put consumer privacy and health at risk (lien direct) | Since its launch in late May, the UK government's Test and Trace service has been contentious. Not only has its efficacy been thrown into question by reports it's failing to contact thousands who may have contracted COVID-19, but the Department of Health has also been forced to admit it launched the initiative without accounting for […] | |||
|
2020-09-23 13:03:44 | (Déjà vu) People who have WOWED us over 25 years (lien direct) | Yvonne Eskenzi, founder and director of Eskenzi PR & Marketing celebrates 25 years in business with a series of discussions with experts and trailblazers of the cybersecurity industry. Episode 2, Yvonne talks with Stu Sjouwerman Founder and CEO of KnowBe4 about what drives him to succeed, the job role Director of Shenanigans, and how to […] | |||
|
2020-09-23 12:07:10 | (ISC)2 study reveals vastly improved perceptions about cybersecurity professionals (lien direct) | Today, (ISC)² has released the findings of their 2020 Cybersecurity Perception Study, which gives the opinions of 2,500 men and women working in cybersecurity from the UK and US. Overall, the research outlines a positive change in attitude towards working in the industry. This report comes at an important time as we close in on […] | |||
|
2020-09-23 11:41:16 | The dangers of \'dark\' data in M&A deals (lien direct) | It's a fact perhaps not so widely known that 40% of acquiring companies going through an M&A discovered a cybersecurity problem during the post-acquisition integration. What this would indicate is that acquirers aren't being given the right information about the data security in the company they are buying. That's pretty shocking considering the level of […] | |||
|
2020-09-23 11:13:35 | The Invisible Risk (lien direct) | If you haven't seen this video on attention, please do so, it's just over a minute long. The video is by Christopher Chabris and Daniel Simons, both authors of the book, ”The Invisible Gorilla,” in which they reveal the numerous ways our intuitions can deceive us. In essence, much like we react to the video above, we […] | |||
|
2020-09-23 10:22:12 | Russian cybergang targeting Russian businesses (lien direct) | A newly identified cybercrime group has been repeatedly targeting Russian businesses with malware and ransomware as security firm Group-IB has found. Oleg Skulkin, Group-IB’s senior DFIR analyst states that “this is very unusual for Russian-speaking gangs who have this unspoken rule about not working within Russia and post-Soviet countries.” The group go by the name […] | Ransomware Malware | ||
|
2020-09-23 10:21:42 | Long Island hospital experiences data breach (lien direct) | Stony Brook University Hospital recently issued a warning to patients about a ransomware attacks which potentially exposed their personal data. Stony Brook University Hospital is the only tertiary care center and Regional Trauma Center in Long Island, and is just one of many recent hospitals to experience a data breach. The hospital contacted patients to […] | Ransomware Data Breach | ||
|
2020-09-23 10:05:39 | Two rogue employees cause Shopify breach (lien direct) | The Online e-commerce platform Shopify experienced a security breach caused by two rogue employees who accessed customer transaction details from merchants on the site. Shopify has estimated that under 200 of their one million online stores were affected by the breach. The breach is currently being investigated by the FBI and other law enforcement agencies […] | |||
|
2020-09-22 16:14:22 | Providing a duty of care in critical communications for business continuity (lien direct) | In a rapidly changing environment, an organisation needs to be able to anticipate, prepare for, respond and adapt to incremental change and sudden disruptions in order to survive and prosper. This organisational resilience is a strategic capability and goes beyond just crisis management. It involves learning from experiences and adopting best practices to deliver business […] | |||
|
2020-09-22 11:41:25 | FBI reveal Chinese data mining scheme (lien direct) | In a congressional hearing last week, FBI Director Christopher Wray stated that China has been involved in massive data mining scheme that has likely stolen the personal information of nearly half the countries population. Wray also gave new details on the scale of Chinese hacking efforts, outlining an attack back in 2017 when credit bureau […] | |||
|
2020-09-22 11:17:14 | Eyewear giant Luxottica hit with cyberattack (lien direct) | Luxottica, who owns popular eyewear brands Ray Ban, Oakley, Micheal Kors, Prada, Chanel and many more has faced severe technical issues resulting in the shutting down of their offices in Agordo and Sedico, Italy as well as their online portal system. Customers reported that the websites for some of Luxottica’s major retailers were not working, […] | |||
|
2020-09-22 11:01:51 | Cyber attacks have tripped in India in the last 2 months (lien direct) | Since Covid-19 and an increase of people working from home across the world, there has been an increase in cyberattacks in India. These cyberattacks typically focus on compromising digital systems of both public and private businesses. The Indian government has found that the country has experienced over 3.5 lakh cybersecurity incidents in July and August, […] | |||
|
2020-09-21 16:04:47 | Understanding PCI SSF compliance standards and its benefits (lien direct) | The PCI Security Standards Council (PCI SSC) released a new framework known as the PCI Software Security Framework (SSF) to secure modern payment software. The new framework is a collection of standards and programs that were built to secure the design and development of payment software. With the introduction of SSF, the existing standard – […] | |||
|
2020-09-21 14:04:35 | CISA Releases Emergency Directive on Microsoft Windows Netlogon Remote Protocol (lien direct) | The Cybersecurity and Infrastructure Security Agency (CISA) has released Emergency Directive (ED) 20-04 addressing a critical vulnerability- CVE-2020-1472-affecting Microsoft Windows Netlogon Remote Protocol. An unauthenticated attacker with network access to a domain controller could exploit this vulnerability to compromise all Active Directory identity services. Earlier this month, exploit code for this vulnerability was publicly released. Given the nature […] | Vulnerability | ||
|
2020-09-21 12:30:29 | Tweet Chat: Exploring the hidden world of Shadow Code (lien direct) | In the latest IT Security Guru Tweet chat, we were joined by PerimeterX, a leading voice in the world of application security, and a host of other voices from across the Infosec spectrum: Analysts, technical experts, members of the C-suite and professional bodies came together to discuss the emergence of shadow code, a new term […] | Guideline | ||
|
2020-09-21 10:58:55 | Head of NCSC steps down (lien direct) | After 23 years of being a civil servant and the head of the National Cyber Security Centre (NCSC), Ciaran Martin is stepping down and passing the reins onto Lindy Cameron. The NCSC, a band of GCHQ was created to help protect and prevent hackers, from the likes of Russia and China infiltrating our infrastructures. Martin […] | |||
|
2020-09-21 10:45:22 | Experian data breach is not contained, despite claims it has (lien direct) | Experian recently experienced a data breach, which they claim has been contained, but it appears that it has not been. The breach exposed the personal information of 24 million South Africans, 800,000 business, and the bank accounts of 25,000 firms. The credit information company claim to have seized and deleted all data, but it appears […] | Data Breach | ||
|
2020-09-21 10:19:31 | Email bungle exposed University of Tasmania students\' personal information (lien direct) | The University of Tasmania has realised an official apology after an email bugle released around 20,000 students personal details to the universities entire faculty. The information was made public from Microsoft Office365’s SharePoint platform, which was used by the institution to store, share and access files. The information was accessible to all users who had […] | |||
|
2020-09-18 14:00:22 | Shift Left Becomes Shift Everywhere, (lien direct) | Earlier this week, Synopsys Inc. published the eleventh version of the Building Security In Maturity Model (BSIMM) looking at the software security practices across 130 different organisations in a variety of industries including financial services, FinTech, independent software vendors, cloud, healthcare, Internet of Things, insurance and retail. BSIMM11 outlines the work of over 8,000 software security professionals who are guiding […] | |||
|
2020-09-18 13:18:10 | Indian government computers compromised (lien direct) | Back at the beginning of the month, computers containing highly sensitive information about government officials and national security were compromised due to a breach at the National Informatics Centre, according to Delhi Police. The computers contained data regarding Indian Prime Minister Narendra Modi. The National Informatics Centre (NIC) organises and supports government communications, technologies and […] | |||
|
2020-09-18 11:35:18 | HMRC COVID-19 tax relief scam targets business owners (lien direct) | Business owners in the UK have been targetted by a phishing scam which captured sensitive information, such as passwords and payment details. The scam impersonated Her Majesty's Revenue and Customs (HMRC), as reported by accountancy firm Lanop Outsourcing. Business owners were targetted through emails supposedly from HMRC which claimed that the recipient’s VAT deferral application […] | |||
|
2020-09-18 11:12:32 | Ransomware attack on Californian schools stops remote learning (lien direct) | An attack on the Newhall District in Valencia is one of the many ransomware attacks targeting the education sector in America. As children head back to school and learning moves online it seems that schools are becoming a major target for ransomware attacks. This most recent attack of Californian schools targetted 10 different elementary schools, […] | Ransomware | ||
|
2020-09-17 16:08:49 | Microsegmentation and why it is a key element of network defence (lien direct) | Everyone has had to become accustomed to the phrase “social distancing” - the practise of using distance from others to minimise health threats. Inevitably, people have started using the analogy “digital distancing” to talk about similar ideas in information security. It's not exactly new to use disease metaphors in infosec - we already talk about […] | |||
|
2020-09-17 15:57:02 | Now is the time for security leaders to build business resilience (lien direct) | COVID-19 has accelerated years of digital transformation into just a few months, weeks, and even days. Accenture recently moved 1.2 million NHS workers to Microsoft Teams in less than a week. And we are not alone – Satya Nadella recently said that Microsoft had seen two years' worth of digital transformation in 2 months. This […] | |||
|
2020-09-17 15:45:51 | Businesses are confident that they have bots under control. They\'re wrong. (lien direct) | Businesses can make better decisions if they have a good idea of who is using their website. Are they young or old? Male or female? It turns out they are very likely not even people. The majority of web traffic is made up of automated bots, and a great deal of these are malicious. The […] | |||
|
2020-09-17 15:35:58 | Staying ahead in the regulatory race (lien direct) | Governments are playing catch-up across the world. Data privacy breaches from large tech companies, such as Nintendo and Marriott, are becoming more commonplace-and as a result are putting pressure on authorities to introduce stricter compliance policies to safeguard the public. As such, IT pros who live in countries that have implemented policies, such as GDPR, […] | |||
|
2020-09-17 14:53:14 | How to prevent a flood of security hacks by avoiding code leaks (lien direct) | This week sees us celebrate National Coding Week, an event designed to promote the vital role of coding and other digital skills in today's connected world. Coding, and the languages it uses, provides the bedrock on which we've built our digital world – a world which has become even more integral to everyday life given […] |
To see everything:
Our RSS (filtrered)
