What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-09-18 08:00:00 | ICO Inundated With False Data Breach Reports Since GDPR Came Into Force (lien direct) | Following the Information Commissioner’s Office (ICO) report that reveals it has been receiving 500 reports by telephone per week since GDPR came into force, a third of which are considered to be unnecessary or fail to meet the threshold for a data incident, Lillian Tsang, Senior Data Protection and Privacy Consultant from Falanx Group, explains why this over-reporting is … The ISBuzz Post: This Post ICO Inundated With False Data Breach Reports Since GDPR Came Into Force | Data Breach | ||
|
2018-09-14 15:55:03 | Freshmenu Fails To Inform Users Of Data Breach (lien direct) | It’s been reported that cloud kitchen platform Freshmenu has come under severe attack over allegations that it chose to keep under wraps a data breach two years ago that exposed the personal information of over 110,000 users. The incident from July 2016 was brought to light this week by data breach-tracker HaveIBeenPwned.com. As per HIBP, a breach in the systems of Freshmenu … The ISBuzz Post: This Post Freshmenu Fails To Inform Users Of Data Breach | Data Breach | ||
 |
2018-09-14 13:00:00 | Things I Hearted this Week, 14th September 2018 (lien direct) |
With everything that keeps going on in the world of security, and the world at large, most eyes were focused on Tim Cook as he and his merry men took to the stage and announce the latest and greatest in Apple technology.
There didn’t seem to be anything totally mind-blowing on the phone end. Just looked to be more bigger, faster, and powerful versions of the iPhones at eye-watering prices.
The Apple watch now has a built-in FDA-approved ECG heart monitor. Which is pretty cool as an early-warning system that a stroke is imminent - I assume to allow you to take some smart HDR selfies, apply the correct filters, and post to Instagram before you collapse.
But enough about that, let’s get down to business.
British Airways Breached
BA suffered a rather large breach which included payment information (including CVV) and personal details.
While the investigation is ongoing, some security experts believe the breach was caused due to malicious code being injected into one of the external scripts in its payment systems.
British Airways hack: Infosec experts finger third-party scripts on payment pages | The Register
As an affected customer, I accept that companies get breached. But the advice seemed pretty poor.
British Airways breached | J4vv4D
Boards need to get more technical - NCSC
The government is calling on business leaders to take responsibility for their organisations’ cyber security, as the threat from nation state hackers and cyber criminal gangs continues to rise. Ciaran Martin, head of NCSC believes that cybersecurity is a mainstream business risk and that corporate leaders need to understand what threats are out there, and what are the most effective ways of managing the risks. They need to understand cyber risk in the same way they understand financial risk, or health and safety risk.
NCSC issues new advice for business leaders as Ciaran Martin admits previous guidance was “unhelpful” | New Statesman
Hunting in O365 logs
Cloud is great, but sometimes making sense of the logs can be a pain. If you’re struggling with O365 logs, then this document could be really useful.
Detailed properties in the Office 365 audit log | Microsoft
GCHQ data collection violated human rights, Strasbourg court rules
GCHQ’s methods in carrying out bulk interception of online communications violated privacy and failed to provide sufficient surveillance safeguards, the European court of human rights has ruled in a test case judgment.
But the Strasbourg court found that GCHQ’s regime for sharing sensitive digital intelligence with foreign governments was not illegal.
It is the first major challenge to the legality of UK intelligence agencies intercepting private communications in bulk, following Edward Snowden’s whistleblowing revelations.
GCHQ data collection violated human rights, Strasbourg court r |
Data Breach Threat Guideline | Tesla | |
|
2018-09-13 14:30:00 | Npower Investigating Personal Data Breach (lien direct) | Npower is urgently investigating how the personal details of around 5,000 of its customers were shared via letters sent out in the post and web security company High-Tech Bridge’s CEO Ilia Kolochenko commented below. Ilia Kolochenko, CEO at High-Tech Bridge: “If the overall scope of the incident is limited to 5,000 customers and does not disclose anything … The ISBuzz Post: This Post Npower Investigating Personal Data Breach | Data Breach | ||
 |
2018-09-13 03:00:00 | Wanted: Data breach risk ratings, because not all breaches are equal (lien direct) | I recently downloaded every known, recorded data breach by the Privacy Rights Clearinghouse, which has been the most thorough and stalwart public recorder of data breaches in the United States for over two decades. The data file contained just over 8,600 data breaches. I found a few dupes and some missing or erroneous information, but overall, it's the best public, non-profit, and free source you're going to find. | Data Breach | ||
|
2018-09-11 19:30:02 | Over 5,000 Customers Affected By Park By Phone Breach (lien direct) | It has been reported that over 5,000 people have been affected by the data breach at Cork City's Park by Phone service, it emerged last night. The council stated that no personal bank account or credit/debit card details were accessed, no account balances were altered and no passwords were compromised, however it warned users of the service that it was … The ISBuzz Post: This Post Over 5,000 Customers Affected By Park By Phone Breach | Data Breach | ||
|
2018-09-11 19:24:01 | BA Cyber Attack Down To Malicious Code Exploited By Hackers (lien direct) | A cyber-security firm has said it found a malicious script injected into the British Airways website, which could be the cause of a recent data breach that affected 380,000 transactions. A RiskIQ researcher analysed code from BA’s website and app around the time when the breach began, in late August. He claimed to have discovered evidence of a … The ISBuzz Post: This Post BA Cyber Attack Down To Malicious Code Exploited By Hackers | Data Breach | ||
 |
2018-09-11 13:03:04 | MageCart crime gang is behind the British Airways data breach (lien direct) | An investigation conducted by researchers at RiskIQ revealed that the responsible of the British Airways data breach is a crime gang tracked as MageCart. The responsible of the recently disclosed British Airways data breach is a crime gang tracked as MageCart. The group has been active since at least 2015 and compromised many e-commerce websites to steal payment card and […] | Data Breach | ★★★ | |
|
2018-09-10 13:50:00 | Security Experts Comments – British Airways Data Breach (second series) (lien direct) | News broke late last night that 380,000 sets of critical information from BA customers had been stolen. The airline said personal and financial details of customers making bookings had been compromised. BA said the breach took place between 22:58 BST on 21 August and 21:45 BST on 5 September. IT security experts commented below. Mayur Upadhyaya, Managing Director, EMEA at Janrain: … The ISBuzz Post: This Post Security Experts Comments – British Airways Data Breach (second series) | Data Breach | ||
|
2018-09-10 11:34:04 | Gift Card Exchange System Hit By Hackers (lien direct) | The giftcard/exchange system of the clothing chain C&A in Brazil has suffered a data breach at the hands of a hacking group known as Fatal Error Crew. Don Duncan, Security Engineer at NuData Security: “Hackers went for the gift card platform and were able to expose the ID numbers of gift cards, email addresses, the … The ISBuzz Post: This Post Gift Card Exchange System Hit By Hackers | Data Breach | ||
 |
2018-09-10 11:13:04 | Russian Charged in JPMorgan Chase Hack Extradited to US (lien direct) | A Russian national who’s been accused of hacking into JPMorgan Chase’s network in 2014 and stealing details for more than 83 million customers has been extradited to the United States to face hacking, wire fraud and other charges. View full story ORIGINAL SOURCE: Data Breach Today | Data Breach Hack | ||
|
2018-09-10 03:00:00 | What is the cost of a data breach? (lien direct) | Data breaches are getting more expensive Image by Getty ImagesThe average cost of a data breach has risen to $3.86 million, according to a new report from IBM. The latest version of its annual report shows a 6.6 percent increase in costs; including direct losses, indirect costs related to time and effort in dealing with a breach, and lost opportunities such as customer churn as result of bad publicity. |
Data Breach | ||
 |
2018-09-08 16:43:00 | Peeled onions and a Minus Touch: Verizon data breach digest lifts the lid on theft tactics (lien direct) | The 2018 report gives us a glimpse of tactics hackers are using today in the name of data exfiltration. | Data Breach | ||
|
2018-09-07 14:15:02 | Security Experts Comments – British Airways Data Breach (lien direct) | In response to the news that British Airways has launched an “urgent” investigation and notified police after hundreds of thousands of customers' personal and financial details were stolen, IT security experts commented below. Jake Moore, Security Specialist at ESET: “After a large scale incident like this, fraudsters from around the world will inevitably jump at the chance … The ISBuzz Post: This Post Security Experts Comments – British Airways Data Breach | Data Breach | ||
 |
2018-09-07 11:00:00 | British Airways Issues Apology for Severe Data Breach (lien direct) | The airline "is deeply sorry" for its worst-ever cyberattack, which has affected 380,000 customers. | Data Breach | ||
|
2018-09-07 10:49:01 | BA website and mobile app suffers data breach (lien direct) | The chief executive of British Airways has apologised for what he has called a very sophisticated breach of the firm’s security systems. Alex Cruz told the BBC that hackers carried out a “sophisticated, malicious criminal attack” on its website.The airline said personal and financial details of customers making bookings had been compromised. About 380,000 transactions ... | Data Breach | ||
 |
2018-09-07 07:22:00 | British Airways boss apologises for \'illicit\' data breach (lien direct) | The airline says personal and financial details of customers making online bookings were compromised. | Data Breach | ||
 |
2018-09-07 00:23:00 | British Airways Hacked – 380,000 Payment Cards Compromised (lien direct) | British Airways, who describes itself as "The World's Favorite Airline," has confirmed a data breach that exposed personal details and credit-card numbers of up to 380,000 customers and lasted for more than two weeks.
So who exactly are victims?
In a statement released by British Airways on Thursday, customers booking flights on its website (ba.com) and British Airways mobile app between
|
Data Breach | ||
|
2018-09-06 21:24:02 | British Airways hacked, attackers stole details of 380,000 customers (lien direct) | Personal and payment card information of 380,000 British Airways customers were stolen by attackers, stolen data did not include travel or passport details. British Airways was hacked, customer personal and payment card information of 380,000 were stolen by attackers, the stolen data did not include travel or passport details. The company published a data breach notification […] | Data Breach | ||
 |
2018-09-06 18:43:02 | British Airways Hacked With Details of 380,000 Cards Stolen (lien direct) | British Airways said Thursday that the personal and financial details of customers making bookings between August 21 and September 5 were stolen in a data breach involving 380,000 bank cards. | Data Breach | ||
|
2018-09-06 16:00:00 | Report: Data Breaches Hit Share Prices, Too (lien direct) | A data breach has a measurable impact on stock price, according to a report looking at incidents from the past six years | Data Breach | ||
|
2018-09-06 09:09:01 | International clothing chain C&A in Brazil suffered a data breach (lien direct) | The clothing chain C&A in Brazil suffered a cyber attack on its gift card/exchange system last week, hackers leaked data on Pastebin. The International fashion retail clothing chain C&A in Brazil suffered a data breach, the company confirmed hackers hit its gift card platform. Hackers accessed to records belonging to customers who purchased gift cards, exposed data includes ID […] | Data Breach | ||
|
2018-09-06 03:00:00 | Why security pros are addicted to FUD and what you can do about it (lien direct) | After more than 30 years in the security industry, I must confess, I am (sadly) still addicted to FUD. For example, one recent morning I clicked (and tweeted) these cyber headline stories: Augusta University Health Reports Major Data Breach Superdrug denies data breach Health Data Breach Victim Tally for 2018 Soars Judge approves Anthem's $115M data breach settlement Indeed, big data breach stories and other major security incidents that keep offering large doses of fear, uncertainty and doubt (FUD) to the world, just keep drawing me back. | Data Breach | ||
|
2018-09-05 15:15:01 | Data Breach Reports To The ICO Increase By 75% (lien direct) | It has been revealed that data breaches are up 75% in two years, finds a report from the Information Commissioner (ICO). The report, which used data gathered under the Freedom of Information Act, found most data breach cases to be applicable to human error in some way. Offering insight are the following security experts: Bob Egner, VP … The ISBuzz Post: This Post Data Breach Reports To The ICO Increase By 75% | Data Breach | ||
|
2018-09-03 20:07:05 | Premera Blue Cross accused of destroying evidence in data breach lawsuit (lien direct) | Class-action lawsuit plaintiffs claim US health insurer Premera Blue Cross intentionally destroyed evidence despite ongoing litigation. | Data Breach | ||
|
2018-09-03 16:04:03 | DATA BREACH REPORTS TO INFORMATION COMMISSIONER INCREASE BY 75% (lien direct) | The number of reports of data security incidents received by the Information Commissioner (“ICO”) has increased by 75 per cent over the past two years, according to new analysis1 by Kroll, a global leader in risk mitigation and investigative services. The findings, obtained from a request made under the Freedom of Information Act and ... | Data Breach Guideline | ||
 |
2018-08-31 14:00:03 | Air Canada admits app data breach included customers\' passport details (lien direct) |  All 1.7 million users of Air Canada's mobile app have had their passwords reset by the company following a security breach which saw hackers compromise up to 20,000 accounts last week.
Read more in my article on the Hot for Security blog.
|
Data Breach | ||
 |
2018-08-30 11:18:01 | Police Investigating Data Breach at Chinese Hotel Group (lien direct) | Local authorities are currently investigating a data breach at a Chinese hotel group that could have exposed customers’ personal information. According to the Xinhua state news agency, Shanghai police launched an investigation into a data security incident involving Chinese hotel management company Huazhu Hotels Group Ltd. A report from Beijing News reveals that the trouble […]… Read More | Data Breach | ||
|
2018-08-30 10:11:04 | Air Canada suffers major data breach (lien direct) | Air Canada’s app has suffered a data breach resulting in the suspected loss of thousands of its customers’ personal details. View Full Story ORIGINAL SOURCE: BBC | Data Breach | ||
|
2018-08-30 09:23:00 | Air Canada data breach – 20,000 users of its mobile app affected (lien direct) | Air Canada data breach – The incident was confirmed by the company and may have affected 20,000 customers (1%) of its 1.7 million mobile app users. The data breach of the day is the one suffered by Air Canada that may have affected 20,000 customers (1%) of its 1.7 million mobile app users. The news […] | Data Breach | ★★ | |
|
2018-08-30 00:32:00 | Air Canada Suffers Data Breach - 20,000 Mobile App Users Affected (lien direct) | Air Canada has confirmed a data breach that may have affected about 20,000 customers of its 1.7 million mobile app users.
The company said it had "detected unusual log-in behavior" on its mobile app between August 22 and 24, during which the personal information for some of its customers "may potentially have been improperly accessed."
The exposed information contains basic
|
Data Breach | ||
|
2018-08-29 18:06:02 | Air Canada app data breach involves passport numbers (lien direct) | Experts warn that the theft of passport details could be "severe" for those affected. | Data Breach | ||
|
2018-08-29 16:19:02 | Air Canada Alerts Customers of Mobile App Breach, 20,000 Users Affected (lien direct) | Air Canada announced on Wednesday that approximately 20,000 customers may have had their personal information compromised after a data breach in its mobile app. As a result, the airline says it locked down all 1.7 million accounts until users update their passwords. In a notice to customers on its website, Air Canada says it first detected […]… Read More | Data Breach | ||
|
2018-08-29 14:30:00 | Passport Numbers Exposed in Air Canada Data Breach (lien direct) | Mobile app hit in cyberattack that compromised 20K user accounts. | Data Breach | ||
 |
2018-08-29 11:52:00 | Air Canada Mobile App Users Affected By Data Breach (lien direct) | Air Canada informed today 20,000 of its mobile app users that information listed under their profile may have been accessed without authorization. [...] | Data Breach | ||
|
2018-08-28 19:30:05 | NEWS: Complaints Are Up By 160% Since GDPR Came Into Force (lien direct) | In light of the news that data breach complaints are up by 160% since GDPR came into force, David Emm, Principal Security Researcher at Kaspersky Lab commented below. David Emm, Principal Security Researcher at Kaspersky Lab: “Given the growing focus on data protection issues, following the implementation of GDPR (General Data Protection Regulation), it's unfortunate that complaints … The ISBuzz Post: This Post NEWS: Complaints Are Up By 160% Since GDPR Came Into Force | Data Breach | ||
|
2018-08-28 12:15:00 | Atlas Quantum Data Breach (lien direct) | Recently Atlas Quantum, a cryptocurrency investment platform, announced a data breach that exposed the personal details of about 261,000 users. The compromised information includes names, phone numbers, email addresses and account balances of Atlas Quantum users. Anurag Kahol, CTO at Bitglass: “The Atlas Quantum data breach suggests that crypto services remain a high-profile target for hackers. Even those … The ISBuzz Post: This Post Atlas Quantum Data Breach | Data Breach | ||
 |
2018-08-28 10:24:04 | MY TAKE: As phishers take aim at elections, why not train employees to serve as phishing police? (lien direct) | If there is a data breach or some other cybersecurity incident, a phishing attack was probably involved. Over 90 percent of incidents begin with a phishing email. One of the more infamous hacks in recent years, the DNC data breach, was the result of a phishing attack. Related: Carpet bombing of phishing emails endures Phishing […] | Data Breach | ||
|
2018-08-27 12:30:01 | The Consequences Of The Superdrug Data Breach (lien direct) | It was reported that Superdrug had warned its online customers to change their passwords after criminals claimed to have obtained their personal details. The chain said the group claimed they had stolen details of 20,000 customers. IT security experts commented below. Dr Guy Bunker, SVP of Products at Clearswift: “The first thing to consider as a consequence of this breach … The ISBuzz Post: This Post The Consequences Of The Superdrug Data Breach | Data Breach | ||
|
2018-08-26 08:29:04 | Personal details of 37,000 Eir customers exposed after the theft of a laptop (lien direct) | Personal details of 37,000 Eir customers exposed after the theft of a laptop, including names, email addresses, phone numbers and account numbers. Eir, the fixed, mobile and broadband telecommunications company of Ireland, has suffered a data breach this week. Personal details of 37,000 Eir customers have been exposed according to the telecommunications company. The root cause of […] | Data Breach | ||
|
2018-08-24 13:40:00 | Cheddar\'s Scratch Kitchen Chain Suffers Data Breach (lien direct) | The cyberattack occurred sometime between Nov. 3, 2017, and Jan. 2, 2018. | Data Breach | ||
|
2018-08-23 09:49:00 | Medical records of high school students leaked in \'appalling\' data breach (lien direct) | Medication, healthcare records, and conditions were all posted online for the world to see. | Data Breach | ||
|
2018-08-20 13:30:00 | Augusta University Health Reports Major Data Breach (lien direct) | Over 400K individuals affected by the breach, which was the result of a successful phishing attack that occurred in September 2017. | Data Breach | ||
|
2018-08-18 17:00:02 | 2.6 billion records exposed in 2,308 disclosed data breaches in H1 (lien direct) | According to a report from cyber threat intelligence firm Risk Based Security some 2.6. billion data records have been exposed in data breached in the first half of 2018. According to a new report titled “Mid-Year 2018 Data Breach QuickView” published by the cyber threat intelligence company Risk Based Security some 2.6. billion data records have been exposed […] | Data Breach Threat | ||
 |
2018-08-17 19:27:01 | Indian Bank Hit in $13.5M Cyberheist After FBI ATM Cashout Warning (lien direct) | On Sunday, Aug. 12, KrebsOnSecurity carried an exclusive: The FBI was warning banks about an imminent "ATM cashout" scheme about to unfold across the globe, thanks to a data breach at an unknown financial institution. On Aug. 14, a bank in India disclosed hackers had broken into its servers, stealing nearly $2 million in fraudulent bank transfers and $11.5 million unauthorized ATM withdrawals from more than two dozen cash machines across multiple countries. | Data Breach | ||
|
2018-08-17 08:40:00 | IDG Contributor Network: Balancing cybersecurity and regulatory compliance (lien direct) | Rigorous regulations like GDPR and California's Consumer Privacy Act will only become more prevalent, as long as our current cybersecurity landscape continues to suffer the near-crippling data breach affliction. Attackers seem to be one step ahead of defenders, constantly changing their attack vectors as new technologies become available, such as artificial intelligence and automated bots. But is coming up with new laws protecting or hindering our progress?Regulatory compliance over cybersecurity As witnessed overseas, many companies are struggling to stay compliant with standards like GDPR, and are more focused on meeting the minimum requirement rather than proper security policies, which hackers can easily find weaknesses in. The result of regulatory requirements is that they become outdated fairly quickly in the cyber world. What's worse, regulation outlines that are made publicly available essentially provide hackers a roadmap to breaking through defenses. By the time governing bodies overseeing these standards implement measures to fix these vulnerabilities, it' already too late. Businesses are exhausting time, manpower and capital on regulatory compliance that is inherently vulnerable, rather than fool-proof defenses that will protect all stakeholders. | Data Breach | ★★★★ | |
 |
2018-08-16 13:35:03 | Some 2.6 billion data records exposed in first half of 2018 (lien direct) | The newly-released report provides an overview of the data breach landscape in the first half of this year | Data Breach | ★★★★★ | |
|
2018-08-13 03:00:00 | 3 reasons companies fail to assess the scope of a data breach (lien direct) | First comes the embarrassing breach announcement. Then, a few days or weeks later, another one -- a few million stolen records were missed the first time around. Then another announcement, with another upward correction. With each new revelation, the hacked organization loses credibility and faces greater liability. | Data Breach | ||
|
2018-08-10 15:35:05 | Hackers phish Butlin\'s holiday camp chain, access customers\' personal data (lien direct) |  Fabled British holiday camp chain Bultin's has admitted that it has suffered a data breach that may have exposed details of 34,000 guests.
Read more in my article on the Hot for Security blog.
|
Data Breach | ||
|
2018-08-10 06:40:00 | How did the TimeHop data breach happen? (lien direct) | In July 2018, TimeHop, in a very transparent manner, discussed the breach of their service which affected approximately 21 million records, some of which included personal identifying information (PII) such as name, email, phone number, and date of birth, while others contained variants.Reviewing the sequence of events, we see that a trusted insider placed the company's data at risk when their employee credentials were used by a third-party to log into TimeHop's Cloud Computing Environment. How the intruder obtained the employee's log-in credentials is unknown. | Data Breach |
To see everything:
Our RSS (filtrered)
