What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-03-21 10:30:02 | When Is a Data Breach a Data Breach? (lien direct) | A data breach remains a common headline in the news cycle. A different company, website or social network reports a security issue almost daily. If it feels like using the internet has become a risky endeavor, the feeling is accurate. But what exactly classifies an event as a data breach? The world wide web is […]… Read More | Data Breach | ||
 |
2019-03-20 10:30:03 | Kathmandu Clothing Retailer Probes Possible Card Skimming Data Breach (lien direct) | Outdoor clothing retailer Kathmandu announced that it is investigating a potential breach of customer card data harvested from its websites. In a statement posted to the New Zealand Exchange (NZE), the firm said it was notifying potentially affected customers directly, advising them to contact their banks and card providers: “Kathmandu has recently become aware that between January … The ISBuzz Post: This Post Kathmandu Clothing Retailer Probes Possible Card Skimming Data Breach | Data Breach | ||
 |
2019-03-19 22:58:04 | 99% Of SMEs Do Not Have Sufficient Skills To Prevent Cyberattacks. (lien direct) | An alarming cybersecurity skills shortage has been exposed with just one in five companies revealed to have sufficient in-house capability to protect critical assets from attack, a study has found. 96% of those hit by a data breach in the last year report that inadequate security testing was at least somewhat responsible for the issue. […] | Data Breach | ||
|
2019-03-14 11:01:02 | Outdoor retailer Kathmandu hit by data breach. (lien direct) | Kathmandu, an outdoor wear and equipment retailer, revealed that it suffered a data breach that disclosed its customers' credit card and personal information. The New Zealand-based company stated that unknown intruders allegedly gained access to its online trading website for over a month between January 8, 2019, and February 12, 2019. Kathmandu stated the hackers […] | Data Breach | ||
 |
2019-03-14 08:51:05 | NEW TECH: CyberGRX seeks to streamline morass of third-party cyber risk assessments (lien direct) | When Target fired both its CEO and CIO in 2014, it was a wake-up call for senior management. The firings came as a result of a massive data breach which routed through an HVAC contractor's compromised account. C-suite execs across the land suddenly realized something similar could happen to them. So they began inundating their […] | Data Breach | ||
 |
2019-03-11 16:31:00 | Equifax Was Aware of Cybersecurity Weaknesses for Years, Senate Report Says (lien direct) | The massive Equifax data breach that impacted 148 million Americans in 2017 was the result of years of poor cybersecurity practices, a new Staff Report from the United States Senate's Permanent Subcommittee on Investigations reveals. | Data Breach | Equifax | |
|
2019-03-11 16:15:05 | Record-Setting Verifications.io Data Breach (lien direct) | News of a second major data breach took place because of unprotected databases and servers, which has now left 763 million unique emails from Verifications.io exposed. This breach just equipped cybercriminals with 763 million opportunities to commit fraud, but it also exposed “business intelligence data,” including employee and revenue figures, in an unusual circumstance. there's a … The ISBuzz Post: This Post Record-Setting Verifications.io Data Breach | Data Breach | ||
 |
2019-03-11 00:52:01 | Citrix Data Breach – Iranian Hackers Stole 6TB of Sensitive Data (lien direct) | Popular enterprise software company Citrix that provides services to the U.S. military, the FBI, many U.S. corporations, and various U.S. government agencies disclosed last weekend a massive data breach of its internal network by "international cyber criminals."
Citrix said it was warned by the FBI on Wednesday of foreign hackers compromising its IT systems and stealing "business documents," |
Data Breach | ||
 |
2019-03-08 17:30:00 | Citrix Hacked by \'International Cybercriminals\' (lien direct) | FBI informed Citrix this week of a data breach that appears to have begun with a 'password spraying' attack to steal weak credentials to access the company's network. | Data Breach | ||
 |
2019-03-08 11:51:01 | Insecure Database Leads to Over 800 Million Records Data Breach (lien direct) | An unprotected 140+ GB MongoDB database led to the discovery of a huge collection of 808,539,939 email records, with many of them also containing detailed personally identifiable information (PII). [...] | Data Breach | ||
 |
2019-03-07 07:39:03 | (Déjà vu) Whitefly espionage group was linked to SingHealth Singapore Healthcare Breach (lien direct) | Security experts at Symantec linked the massive Singapore Healthcare breach suffered by SingHealth to the ‘Whitefly’ cyberespionage group. In 2018, the largest healthcare group in Singapore, SingHealth, has suffered a massive data breach that exposed personal information of 1.5 million patients who visited the clinics of the company between May 2015 and July 2018. Stolen […] | Data Breach | ||
|
2019-03-06 17:30:04 | Verizon Refocuses The Cyber Investigations Spotlight On The World Of Insider Threats (lien direct) | The Verizon Data Breach Investigations Report (DBIR) series opened the doors to the world of cybercrime – now, this dataset and caseload analysis has been refocused on the role of the insider – forming the Verizon Insider Threat Report. Twenty percent of cybersecurity incidents and 15 percent of the data breaches investigated within the Verizon 2018 DBIR originated … The ISBuzz Post: This Post Verizon Refocuses The Cyber Investigations Spotlight On The World Of Insider Threats | Data Breach Threat | ||
|
2019-03-05 18:34:05 | Rush Health System Reports Data Breach Affecting 45,000 (lien direct) | Rush System for Health says personal information from about 45,000 patients may have been compromised in a data breach. | Data Breach | ||
|
2019-03-04 06:52:03 | Data Breach Cost Marriott $28 Million So Far (lien direct) | The massive data breach disclosed by Marriott last year has cost the company $28 million to date, most of which has been covered by insurance, the hotel giant revealed last week in its earnings report for the last quarter of 2018. | Data Breach | ||
|
2019-02-28 11:46:01 | (Déjà vu) Topps.com Sports Collectible Site Exposes Payment Info in MageCart Attack. (lien direct) | Last week, the sports trading card and collectible company Topps issued a data breach notification stating that it was affected by an attack, which possibly exposed the payment and address information of its customers. This type of attack is called a MageCart attack, which is when attackers hack a site to inject a malicious script into a site’s […] | Data Breach Hack | ||
|
2019-02-27 17:10:01 | Topps.com Sports Collectible Site Exposes Payment Info in MageCart Attack (lien direct) | The sports trading card and collectible company Topps disclosed issued a data breach notification stating that it was affected by an attack, which possibly exposed the payment and address information of its customers. [...] | Data Breach | ||
 |
2019-02-27 14:02:05 | Why businesses fear cyberattacks from ex-employees more than nation states (lien direct) | A major data breach would likely shut down half of SMBs permanently, according to an AppRiver report. | Data Breach | ||
|
2019-02-25 14:30:01 | PoS Provider Hack That Affected Customers At 130 Locations (lien direct) | Point-of-Sale Solutions Provider – North County Business Products was hacked and credit-card stealing malware was put on the networks of clients across the country like Dunn Brothers Coffee, Zipps Sports Grill and Someburros outlets. POS Firm Hacked, Malware Deployed at 130+ Outlets: Clients of North County Business Products hit by data breach https://t.co/nNCAXYZbof pic.twitter.com/y5FZkGZh8C — Shah Sheikh (@shah_sheikh) February 22, … The ISBuzz Post: This Post PoS Provider Hack That Affected Customers At 130 Locations | Data Breach Malware Hack | ||
|
2019-02-25 13:22:05 | California Introduces New Data Breach Notification Law (lien direct) | California Attorney General Xavier Becerra and Assemblymember Marc Levine last week introduced a new piece of legislation that would require organizations to notify consumers if their passport or biometric information has been compromised in a data breach. | Data Breach | ||
|
2019-02-22 12:32:01 | Proposed Bill Would Strengthen California\'s Data Breach Notification Law (lien direct) | A new bill would strengthen California’s data breach notification law by expanding the types of information of whose exposure businesses are legally obligated to inform their customers. On 21 February, California Attorney General Xavier Becerra and Assembly Member Marc Levine (D-San Rafael) revealed AB 1130. This bill would require businesses to notify customers of a […]… Read More | Data Breach | ||
|
2019-02-22 11:20:00 | New Legislation Builds on California Data Breach Law (lien direct) | This bill requires businesses to notify consumers of compromised passport numbers and biometric data. | Data Breach | ||
 |
2019-02-21 12:01:00 | (Déjà vu) 7 mobile security threats you should take seriously in 2019 (lien direct) | Mobile security is at the top of every company's worry list these days - and for good reason: Nearly all workers now routinely access corporate data from smartphones, and that means keeping sensitive info out of the wrong hands is an increasingly intricate puzzle. The stakes, suffice it to say, are higher than ever: The average cost of a corporate data breach is a whopping $3.86 million, according to a 2018 report by the Ponemon Institute. That's 6.4 percent more than the estimated cost just one year earlier. [ Learn how SandBlast Mobile simplifies mobile security. | Get the latest from CSO by signing up for our newsletters. ] | Data Breach | ||
|
2019-02-20 15:30:00 | POS Vendor Announces January Data Breach (lien direct) | More than 120 restaurants were affected by an incident that exposed customer credit card information. | Data Breach | ||
|
2019-02-20 09:08:03 | Security breach at North Country PoS firm hits hundreds of US restaurants and Hotels (lien direct) | North Country Business Products POS (point-of-sale) and security solutions provider announced a data breach that affected hundreds of U.S. restaurants and hotels. North Country Business Products point-of-sale and security solutions provider announced a data breach, the company is currently used by 6500 customers around the Midwest. “North Country Business Products, Inc. (“North Country”), today announced that a recent data […] | Data Breach | ||
|
2019-02-19 20:07:05 | Breach at PoS Firm Hits Hundreds of U.S. Restaurants, Hotels (lien direct) | Point-of-sale (PoS) solutions provider North Country Business Products, whose products are used at over 6,500 locations across the United States, recently disclosed a data breach that resulted in the exposure of payment card data. | Data Breach | ||
|
2019-02-19 18:10:00 | Cards Used at 137 Restaurants Exposed by Point-of-Sale Breach (lien direct) | North Country Business Products point-of-sale and security solutions provider with roughly 6500 customers around the Midwest has disclosed a data breach which led to the exposure of payment information for clients who used their credit and debit cards at 137 restaurants. [...] | Data Breach | ||
 |
2019-02-19 11:32:01 | LandMark White data breach could impact Westpac property service customers (lien direct) | Westpac Group says names, addresses, and contact details may have been exposed through the third party breach. | Data Breach | ||
 |
2019-02-19 08:29:05 | 450,000 usernames and passwords stolen from Coinmama cryptocurrency broker (lien direct) |  Coinmama, a site that is supposed to “make it fast, safe and fun” to buy Bitcoins and Etherium with a credit card, has suffered a data breach that has resulted in almost half a million customers having their personal details breached.
Read more in my article on the Hot for Security blog.
|
Data Breach | ||
|
2019-02-19 03:00:00 | Review: SlashNext is like shooting phish in a barrel (lien direct) | Using social engineering in conjunction with malicious program delivery, a technique known as phishing, remains one of the biggest threats to the cybersecurity landscape. If human users can be tricked into taking an action such as downloading malware, connecting with a compromised website, or even providing their credentials directly to criminals, it often overrides many of the automatic protections that cyber defenses offer. It's become so popular and so successful that the most recent Verizon Data Breach Investigations Report puts phishing and social engineering attacks at the center of 93 percent of breaches in 2018. | Data Breach | ||
|
2019-02-18 13:28:04 | Wendy\'s Reaches $50 Million Settlement With Banks Over Data Breach (lien direct) | US fast food restaurant chain Wendy's announced recently that it has reached a settlement with the thousands of financial institutions impacted by the data breach suffered by the company in 2015 and 2016. | Data Breach | ||
 |
2019-02-15 22:30:01 | Data Breach Bonanza: Dating Apps, Equifax, Mass Credential Dumps (lien direct) | Data-exposure "lowlights" for the week ending Feb. 15, 2019. | Data Breach | Equifax | |
|
2019-02-15 21:30:00 | Equifax Data Breach A Sign Of Global Cyberwarfare? (lien direct) | The Equifax data breach in which millions of Americans had their personal details stolen may have been carried out by a foreign government in a bid to recruit U.S. spies, experts believe. Off the back of this, please see comments from Terry Ray, senior vice president and Imperva fellow who talks about how this is … The ISBuzz Post: This Post Equifax Data Breach A Sign Of Global Cyberwarfare? | Data Breach | Equifax | |
|
2019-02-15 11:15:04 | Coffee Meets Bagel dating app confirms data breach (lien direct) | The week closes with the news of another embarrassing data breach, the Coffee Meets Bagel confirmed a hack on Valentine’s Day. The dating app Coffee Meets Bagel confirmed that hackers breached its systems on Valentine’s Day and may have obtained access to users’ account data. The company notified the incident to account holders, the intrusion […] | Data Breach Hack | ||
|
2019-02-15 06:17:00 | (Déjà vu) Data breaches exposed 5 billion records in 2018. (lien direct) | The number of publicly known data breaches decreased last year compared to 2017, despite harsher breach notification rules going into effect in Europe. The number of compromised sensitive records also went down by more than a third, from 7.9 billion records to around 5 billion. [ How much does a data breach cost? Here's where the money goes. | Get the latest from CSO by signing up for our newsletters. ] According to a new report from security intelligence vendor Risk Based Security (RBS), over 6,500 incidents that resulted in compromised data have been publicly disclosed last year, two-thirds of them originating in the business sector. The government sector accounted for 13.9 percent, the medical sector for 13.4 percent and education for 6.5 percent. | Data Breach | ||
|
2019-02-14 15:15:01 | Coffee Meets Bagel Dating App Discloses Data Breach on Valentine\'s Day (lien direct) | As a Valentine's Day gift to all its users, online dating app Coffee Meets Bagel disclosed a data breach that contained user's email addresses and names. This data breach was discovered as part of a compilation of leaked credentials that was being sold on criminal marketplaces. [...] | Data Breach | ||
|
2019-02-14 12:55:03 | Millions Affected By 500px Data Breach (lien direct) | 500px online photography network suffered as data breach last summer around July 5, 2018 but the incident was not discovered until last week. The breach has affected 15 million photographers who signed up . The stolen data includes: users' names, email addresses, usernames, hashed passwords and birth date, gender and city/state/country if provided. 500px working … The ISBuzz Post: This Post Millions Affected By 500px Data Breach | Data Breach | ||
|
2019-02-13 13:32:05 | 4 ways your company can avoid a data breach (lien direct) | Only one in three organizations say they are confident they can prevent data breaches, according to Balbix. | Data Breach | ||
 |
2019-02-13 13:30:04 | What Have We Learned About Data Protection After Another Year of Breaches? (lien direct) | >In 2018, data protection became top of mind for organizations around the world. What lessons can we draw from to help improve regulatory compliance, data breach protection and risk management in 2019? | Data Breach | ||
|
2019-02-12 17:55:00 | Up to 100,000 Reported Affected in Landmark White Data Breach (lien direct) | Australian property valuation firm Landmark White exposed files containing personal data and property valuation details. | Data Breach | ||
|
2019-02-11 18:30:05 | (Déjà vu) EE Data Breach Led To \'Stalking\' Of EE Employee\'s Girlfriend (lien direct) | An EE customer has said she was stalked by an ex-partner who worked at the firm after he accessed her personal data without permission. Francesca Bonafede’s number was switched to a new handset and her address and bank details were accessed. She said the company failed to take the data breach seriously and she had … The ISBuzz Post: This Post EE Data Breach Led To ‘Stalking’ Of EE Employee’s Girlfriend | Data Breach | ||
|
2019-02-11 15:15:00 | OkCupid Denies Data Breach Amid Account Hack Complaints (lien direct) | Users on the dating website report hackers breaking into their accounts, changing email addresses, and resetting passwords. | Data Breach Hack | ||
|
2019-02-10 17:55:00 | Mumsnet Data Leak (lien direct) | Mumsnet, has experienced a data leak. Users logging into their accounts were given access to other users' details, with account information being “switched”. It appears this happened while Mumsnet was migrating services to the cloud. Parenting site Mumsnet hit by data breach https://t.co/7oPSzN1dxF — CRISP (@CrispSurv) February 10, 2019 Experts Comments below: Stephen Gailey, Solutions … The ISBuzz Post: This Post Mumsnet Data Leak | Data Breach | ||
 |
2019-02-08 23:05:05 | Parenting site Mumsnet hit by data breach (lien direct) | The flaw meant account holders saw some details of other users and their message history. | Data Breach | ||
 |
2019-02-08 20:13:01 | Women Needed in Cybersecurity (lien direct) | 2018 was an extremely intense year in the field of cybersecurity. The Verizon Data Breach Report confirmed 2,216 breaches across 65 countries. From what the experts say, we can expect 2019 to be intense as well. According to a report by Cybersecurity Ventures, it's predicted that by 2021 cybercrime will cost the world $6 trillion […] | Data Breach | ||
|
2019-02-08 10:20:04 | EE customer stalked by ex-partner following data breach. (lien direct) | An EE customer has said she was stalked by an ex-partner who worked at the firm, after he accessed her personal data without permission. Francesca Bonafede’s number was switched to a new handset and her address and bank details were accessed. She said the company failed to take the data breach seriously and she had […] | Data Breach | ||
|
2019-02-08 00:02:00 | EE data breach \'led to stalking\' (lien direct) | A customer's ex-partner accessed her new address and bank details, before turning up at her home. | Data Breach | ||
|
2019-02-06 10:43:00 | Report: Over 59,000 GDPR data breach notifications, but only 91 fines (lien direct) | Since the European Union's General Data Protection Regulation (GDPR) came into effect in May last year, EU organizations have reported almost 60,000 data breaches, but so far fewer than 100 fines have been issued by regulators. [ Learn how to protect personally identifiable information (PII) under GDPR. | Get the latest from CSO by signing up for our newsletters. ] | Data Breach | ||
|
2019-02-01 21:35:01 | Houzz Urges Password Resets After Data Breach (lien direct) | The decorating website said that account usernames, passwords and more have been compromised as part of a breach. | Data Breach | ||
|
2019-02-01 16:10:03 | Data Breach Fatigue Makes Every Day Feel Like Groundhog Day (lien direct) | >The incessant stream of high-profile data breaches can make every day seem like Groundhog Day. How can businesses combat data breach fatigue and rebuild trust through improved breach response? | Data Breach | ||
 |
2019-02-01 14:00:00 | Things I Hearted This Week, 1st Feb 2019 (lien direct) |
Hello February! I was doing some research last night and was surprised to discover that the Target breach is over five years old! Five years! I was sure it only happened a couple of years ago - but such is the fast-paced nature of the industry, and also I guess a testament to how certain major breaches become part of infosec folklore. Like TJX, or Heartland - and no, I’m not going to look up when any of those occurred because I’ll probably end up feeling a lot older than I already do.
Enough reminiscing - let’s get down to it.
The Big Five
There’s been a lot of things I didn’t heart this week, although for one reason or another they ended up in my list of things to talk about. So, if you’re wondering about the stories regarding Facebook and Apple, and also Google, then yes, I did see them, and no, I don’t fancy talking about them.
But speaking of large companies, Kashmir Hill has undertaken what is perhaps becoming my favourite piece of tech journalism ever. WIth detailed write ups and slick videos showcasing how she cut out the big five of Amazon, Facebook, Google, Microsoft, and Apple from her life, one week at a time.
Life without the tech giants | Gizmondo
Week 1, Amazon | Gizmondo
Week 2, Facebook | Gizmondo
Week 3, Google | Gizmondo
Considerations for When Your Apartment Goes “Smart”
Everything is getting ‘smart’ these days. By smart, I mean connected and vulnerable. So, what should you do if you live in an apartment where everyone is getting fancy new smart locks (or terribly insecure cheap locks depending on how you look at it).
Lesley Carhart recently found herself in the same position, and has written a really good post on security considerations if you ever find yourself in a similar position.
Security Things to Consider When Your Apartment Goes ‘Smart’ | tisiphone
Abusing Exchange: One API Call Away From Domain Admin
An attacker with just the credentials of a single lowly Exchange mailbox user can gain Domain Admin privileges by using a simple tool. Very good writeup here.
Abusing Exchange: One API call away from Domain Admin | dirkjanm.io
_(1)_(1).jpg)
Sending Love Letters
The "Love Letter" malspam campaign has now changed its focus to Japanese targets and almost doubled the volume of malicious attachments it delivers.
Love Letter Malspam Serves Cocktail of Malware, Heavily Targets Japan | Bleeping Computer
While we’re talking about Japan, a new law in Japan allows the nation's National Institute of Information and Communications Technology (NICT) to hack into citizens' personal IoT equipment as part of a survey of vuln |
Data Breach Hack | Yahoo |
To see everything:
Our RSS (filtrered)
