What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2017-11-27 21:50:47 | MY TAKE: Why Uber\'s flaunting of disclosure laws should ignite security regulations (lien direct) | Think it was a mere coincidence that Uber disclosed its catastrophic data breach on the Tuesday before Thanksgiving? Fat chance. Uber's new CEO Dara Khosrowshahi almost certainly calculated the diminished notoriety to be gained by announcing the hack on the eve of the year's most distraction-packed, four-day weekend. Related article: The implications of Deloitte breach […] | Deloitte Uber | ||
 |
2017-11-21 12:12:51 | Investment in AI set to rise by 2020 (lien direct) | >85% of senior exec’s plan to invest in AI and IoT by 2020, according to research published by Deloitte. Read Full Story ORIGINAL SOURCE: Help Net Security | Deloitte | ||
 |
2017-10-31 04:31:29 | Deloitte sponsorship helps progress of Bletchley cyber school (lien direct) | Sponsorship will provide hundreds of places on online Qufaro CyberEPQ course | Deloitte | ||
 |
2017-10-11 01:03:01 | Sécurité : 50% des français utilisent leur smartphone perso au bureau (lien direct) | L'évolution des mentalités et l'ultra-mobilité comme nécessité absolue ont effacé la frontière entre pro et perso, surtout lorsqu'il s'agit de l'usage du smartphone. C'est ce que démontrent les derniers chiffres de Deloitte et Kaspersky.  |
Deloitte | ||
|
2017-10-02 21:12:43 | Hacker Eye on the Consultant Guy: Deloitte and the Art of spotting Vulnerable Firms from the Outside (lien direct) | In the latest Security Ledger podcast, we analyze the breach of Deloitte by talking to two people who spend a lot of time judging the security of firms by how they look to the outside world. Dan Tentler of the firm Phobos Group tells us what he found out about Deloitte doing some fast and dirty open source research. Also: we talk to Stephen...Read the whole entry... _!fbztxtlnk!_ https://feeds.feedblitz.com/~/463606098/0/thesecurityledger -->»
Related StoriesHacker Eye on the Consultant Guy: Deloitte and the Art of spotting Vulnerable Firms from the Outside - EnclosureAfter Equifax: What Makes a Good CSO? Also: App Sec is a Mess. We Talk about Why.After Equifax: What Makes a Good CSO? Also: App Sec is a Mess. We Talk about Why. - Enclosure
|
Equifax Deloitte | ||
|
2017-10-02 17:49:11 | ROUNDTABLE: The implications of Deloitte data breach, especially following hacks of Equifax, SEC (lien direct) | By Byron V. Acohido The astonishing rash of disclosures of data breaches at top-tier organizations continues. Big Four accounting firm Deloitte has joined Equifax and the U.S. Securities and Exchange Commission in going public about a catastrophic loss of sensitive data. Ironically, Deloitte a few years ago branched from its core auditing and tax services […] | Equifax Deloitte | ||
 |
2017-10-02 16:59:47 | A week in security (September 25 – October 01) (lien direct) |
A compilation of security news and blog posts from the 25th of September to the 1st of October. We touched on that new macOS High Sierra keychain vulnerability, the Deloitte breach, BlueBorne, crypto mining, and others.
Categories:
Security world
Week in security
Tags: bluebornecrypto miningdavid sanchezdeloitte hackHigh SierraJerome Segurakeychain vulnerabilityNathan CollierrecapThomas Reedweekly blog roundupWilliam Tsing
(Read more...)
|
Deloitte | ||
 |
2017-09-29 13:00:55 | Threatpost News Wrap, September 29, 2017 (lien direct) | The macOS Keychain attack, Signal's new private contact discovery service, the Deloitte hack, and a handful of mobile stock trading app vulnerabilities are discussed. | Deloitte | ★★★★★ | |
 |
2017-09-29 09:54:51 | Deloitte Hacked – Client Emails, Usernames & Passwords Leaked (lien direct) |  It seems to be non-stop lately, this time it's Deloitte Hacked, which has also revealed all kinds of publically accessible resources that really should be more secure (VPN, RDP & Proxy services).
The irony is that Deloitte positions itself as a global leader in information security and offers consulting services to huge clients all over the planet, now it seems they don't take their own advice. Honestly this is not all that uncommon, it's human nature to leave your own stuff last as it doesn't directly impact revenue or value (until you get hacked).
Read the rest of Deloitte Hacked – Client Emails, Usernames & Passwords Leaked now! Only available at Darknet.
|
Guideline | Deloitte | |
|
2017-09-28 16:00:58 | Deloitte breached by hackers for months (lien direct) |
On September 25, 2017, Deloitte announced that they detected a breach of the firm's global email server via a poorly secured admin email in March of this year. We go over the breach and provide suggestions for Deloitte's cybersecurity clients.
Categories:
Business
Security world
Tags: breachcybersecuritydata breachdeloittehackedhackers
(Read more...)
|
Deloitte | ||
 |
2017-09-28 10:47:39 | Smashing Security podcast #045: Deloitte fail, CCleaner, and dotards on Twitter (lien direct) |  Deloitte suffers an embarrassing hack, CCleaner spreads malware, and Twitter explains why it isn't planning to ban Donald Trump from Twitter anytime soon.
|
CCleaner Deloitte | ||
 |
2017-09-26 20:00:28 | Deloitte Cyber Attack (lien direct) | The ISBuzz Post: This Post Deloitte Cyber Attack | Deloitte | ||
|
2017-09-26 18:42:47 | It\'s Not The Crime, It\'s The Coverup or the Chaos (lien direct) | Well, Richard Smith has “resigned” from Equifax. The CEO being fired is a rare outcome of a breach, and so I want to discuss what’s going on and put it into context, which includes the failures at DHS, and Deloitte breach. Also, I aim to follow the advice to praise specifically and criticize in general, … Continue reading "It’s Not The Crime, It’s The Coverup or the Chaos" | Equifax Deloitte | ||
|
2017-09-26 07:27:20 | Le cabinet Deloitte victime d\'une cyberattaque (lien direct) |  Le journal anglais The Guardian vient de révéler que le cabinet d'audit en sécurité Deloitte a été touché par une cyberattaque il y a un an. Cette dernière, découverte par le cabinet en mars, a dérobé plusieurs courriels confidentiels de clients. |
Deloitte | ||
 |
2017-09-25 21:17:54 | Piratage pour le géant de l\'audit Deloitte (lien direct) | Depuis au moins 6 mois, la société britannique Deloitte a été mise sous surveillance par des pirates informatiques. Les courriels entre les auditeurs et les clients de l’entreprise ont été interceptés. Voilà une nouvelle, nouvelle, nouvelle, nouvelle … fuite d’informations visant u... Cet article Piratage pour le géant de l’audit Deloitte est apparu en premier sur ZATAZ. | Deloitte | ||
 |
2017-09-25 20:12:46 | Source: Deloitte Breach Affected All Company Email, Admin Accounts (lien direct) | Deloitte, one of the world's "big four" accounting firms, has acknowledged a breach of its internal email systems, British news outlet The Guardian revealed today. Deloitte has sought to downplay the incident, saying it impacted "very few" clients. But according to a source close to the investigation, the breach dates back to at least the fall of 2016, and involves the compromise of all administrator accounts at the company as well as Deloitte's entire internal email system. | Deloitte | ||
|
2017-09-25 18:45:15 | Deloitte: \'Very Few Clients\' Impacted by Cyber Attack (lien direct) | Deloitte, one of the "big four" global accounting firms, admitted it fell victim to a cyber attack last year but downplayed the incident on Monday saying it only affected a few of its high profile clients. | Deloitte | ||
 |
2017-09-25 17:34:09 | Deloitte targeted by a cyber attack that exposed clients\' secret emails (lien direct) | The accountancy firm Deloitte announced it is has been targeted by a sophisticated hack that compromised its global email server. Today the accountancy firm giant Deloitte revealed that is has been targeted by a sophisticated hack that compromised the confidential emails and plans of some of its blue-chip clients. According to The Guardian that first reported the incident, hackers may have accessed company […] | Deloitte | ||
 |
2017-09-25 15:51:13 | Hackers Breached Deloitte, One of The "Big Four" Accounting Firms (lien direct) | Deloitte, one of the world's biggest accounting, auditing, and corporate finance consulting firms, has suffered a data breach. [...] | Deloitte | ||
 |
2017-09-25 15:50:00 | Breach at Deloitte Exposes Emails, Client Data (lien direct) | Intrusion may have resulted from company's failure to properly secure a key administrator account. | Deloitte | ||
 |
2017-09-25 15:45:40 | Deloitte Says \'Very Few\' Clients Hit by Hack (lien direct) | 
Deloitte said Monday that "very few" of the accounting and consultancy firm's clients were affected by a hack after a news report said systems of blue-chip clients had been breached.
|
Deloitte | ||
 |
2017-09-25 15:24:14 | Deloitte hit by data breach (lien direct) | The corporate finance giant says "very few" clients are affected. | Deloitte | ||
 |
2017-09-25 15:01:00 | Deloitte confirms hack exposed email system (lien direct) | It's said that a lack of two-factor authentication on an administrator's account failed to keep attackers out. | Deloitte | ||
|
2017-09-25 10:57:47 | Deloitte breach underlines need for better authentication (lien direct) | A breach of Deloitte's email system, which may have exposed client details, emphasises the need for two-factor authentication and the monitoring of systems administrators | Deloitte | ||
 |
2017-09-25 10:31:14 | Deloitte Hacked - Cyber Attack Exposes Clients\' Emails (lien direct) | Another day, another data breach. This time one of the world's "big four" accountancy firms has fallen victim to a sophisticated cyber attack.
Global tax and auditing firm Deloitte has confirmed the company had suffered a cyber attack that resulted in the theft of confidential information, including the private emails and documents of some of its clients.
Deloitte is one of the largest
|
Deloitte | ||
|
2017-06-26 09:55:49 | Bankers Are Hiring Cyber-Security Experts to Help Get Deals Done (lien direct) | Companies and investment funds are adding an extra layer of scrutiny to acquisitions by screening targets for cybersecurity risks, as global computer attacks raise awareness. That's prompting offers specifically tailored to takeovers by a variety of players, from consultants like Deloitte LLP to software providers including Intralinks Holdings Inc. View Full Story ORIGINAL SOURCE: Bloomberg | Deloitte | ||
 |
2017-04-13 05:38:18 | Certification Marks for IoT Devices – A Suggestion to the FTC and California (lien direct) | According to a recent prediction detailed in the Deloitte Global TMT Predictions 2017 report, incidents of DDoS are expected to rise to 10 million attacks during the year. The escalation of DDoS, according to them, is primarily due to the growing base of insecure IoT devices, readily available online instructions for unskilled attackers, and rising uplink data speeds. One of the solutions Deloitte Global has recommended is certification marks for connected devices. They propose that device vendors should obtain security certification for their... | Deloitte | ★★★★ | |
 |
2017-02-27 16:09:38 | Responding to cyber threats in the terabit era (lien direct) | Prepare for a new wave of cutting-edge cyber attacks linked to emerging technologies like networked IoT devices. Deloitte vice chairman Paul Sallomi explains how hacks are evolving in the terabit era. | Deloitte | ||
|
2017-02-25 09:00:00 | Cyber Insurance Uptake Hampered By Skewed Data, Poor Communication (lien direct) | Only 29% of US businesses have cyber insurance; Deloitte outlines steps for insurance companies to improve risk models, communication, and policy sales. | Deloitte | ||
|
2017-02-15 02:01:00 | Deloitte Tackles Identity Management (lien direct) | At RSA Conference, Mike Wyatt, Managing Director of Deloitte Advisory Cyber Risk Service, discusses the identity management landscape and its growing importance, from "least privileges" to identity-as-a-service. | Deloitte | ||
|
2017-01-18 06:31:37 | 2017 may be crisis year for DDoS attacks, warns Deloitte (lien direct) | The proliferation of IoT devices and IoT exploit kits may make 2017 a turning point in DDoS attacks requiring new defence tactics, warns Deloitte | Deloitte | ||
|
2017-01-11 05:06:42 | Deloitte predicts major advances in mobile technology in 2017 (lien direct) | Deloitte's 16th TMT Predictions report highlights advances in mobile networking and device technology | Deloitte | ||
 |
2016-09-29 04:56:00 | Doctors: E-health records raise costs, don\'t help patient outcomes (lien direct) | Three out of four U.S. physicians believe that electronic healthcare records (EHRs) increase practice costs -- outweighing any efficiency savings -- and seven out of 10 think they reduce productivity, according to a new survey.Deloitte's "2016 Survey of US Physicians" released this week found little had changed since its last report two years ago, when doctors surveyed at the time generally held negative opinions of EHRs.The latest survey found nearly all physicians would like to see improvements in EHRs, with 62% calling for them to be more interoperable and 57% looking for improved workflow and increased productivity.To read this article in full or to leave a comment, please click here | Deloitte | ||
|
2016-09-20 17:05:00 | Lack Of Funding Stymies State CISOs (lien direct) | Governors, other state officials more aware of cyber threats, but confidence gap exists between IT and business managers, new Deloitte-National State Chief Information Officers (NASCIO) study finds. | Deloitte | ||
|
2016-09-15 09:00:00 | Stop Blaming Users. Make Security User-Friendly. (lien direct) | Jelle Niemantsverdriet of Deloitte explains how security improves if security tools and error messages educate users and 'put a smile on someone's face.' | Deloitte | ||
 |
2016-08-26 23:01:43 | Notes on that StJude/MuddyWatters/MedSec thing (lien direct) | I thought I'd write up some notes on the StJude/MedSec/MuddyWaters affair. Some references: [1] [2] [3] [4].The story so fartl;dr: hackers drop 0day on medical device company hoping to profit by shorting their stockSt Jude Medical (STJ) is one of the largest providers of pacemakers (aka. cardiac devices) in the country, around ~$2.5 billion in revenue, which accounts for about half their business. They provide "smart" pacemakers with an on-board computer that talks via radio-waves to a nearby monitor that records the functioning of the device (and health data). That monitor, "Merlin@Home", then talks back up to St Jude (via phone lines, 3G cell phone, or wifi). Pretty much all pacemakers work that way (my father's does, although his is from a different vendor).MedSec is a bunch of cybersecurity researchers (white-hat hackers) who have been investigating medical devices. In theory, their primary business is to sell their services to medical device companies, to help companies secure their devices. Their CEO is Justine Bone, a long-time white-hat hacker.Muddy Waters is an investment company known for investigating companies, finding problems like accounting fraud, and profiting by shorting the stock of misbehaving companies.Apparently, MedSec did a survey of many pacemaker manufacturers, chose the one with the most cybersecurity problems, and went to Muddy Waters with their findings, asking for a share of the profits Muddy Waters got from shorting the stock.Muddy Waters published their findings in [1] above. St Jude published their response in [2] above. They are both highly dishonest. I point that out because people want to discuss the ethics of using 0day to short stock when we should talk about the ethics of lying."Why you should sell the stock" [finance issues]In this section, I try to briefly summarize Muddy Water's argument why St Jude's stock will drop. I'm not an expert in this area (though I do a bunch of investment), but they do seem flimsy to me.Muddy Water's argument is that these pacemakers are half of St Jude's business, and that fixing them will first require recalling them all, then take another 2 year to fix, during which time they can't be selling pacemakers. Much of the Muddy Waters paper is taken up explaining this, citing similar medical cases, and so on.If at all true, and if the cybersecurity claims hold up, then yes, this would be good reason to short the stock. However, I suspect they aren't true -- and they are simply trying to scare people about long-term consequences allowing Muddy Waters to profit in the short term.@selenakyle on Twitter suggests this interest document [4] about market-solutions to vuln-disclosure, if you are interested in this angle of things.The 0day being droppedWell, they didn't actually drop 0day as such, just claims that 0day exists -- that it's been "demonstrated". Reading through their document a few times, I've created a list of the 0day they found, to the granularity that | Guideline | Deloitte | |
|
2016-08-24 04:22:00 | A deeper look at business impact of a cyberattack (lien direct) | Few would dispute that cyberattacks are increasing in frequency and in intensity, and most organizations confirm they have now suffered at least one cyber incident. But do those organizations have a true sense of the full impact on the organization? After all, the direct costs commonly associated with a data breach are far less significant than the “hidden costs†incurred.Indeed, the “hidden†costs can amount to 90 percent of the total business impact on an organization, and will most likely be experienced two years or more after the event. These are among the findings of a recent study by Deloitte Advisory entitled, “Beneath the Surface of a Cyberattack: A Deeper Look at the Business Impacts.â€To read this article in full or to leave a comment, please click here | Deloitte | ||
|
2016-07-20 07:00:04 | Cray, Deloitte team up on supercomputer-powered threat analytics (lien direct) | The subscription-based service aims to help organizations combat cyberattacks by finding holes in their networks. | Deloitte |
To see everything:
Our RSS (filtrered)
