This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-06-07T05:14:04+00:00 www.secnews.physaphae.fr SecurityWeek - Security News 2022-11-07T14:10:41+00:00 https://www.securityweek.com/solarwinds-agrees-pay-26-million-settle-shareholder-lawsuit-over-data-breach www.secnews.physaphae.fr/article.php?IdArticle=7881539 False Data Breach None None SecurityWeek - Security News 2022-11-07T11:10:57+00:00 https://www.securityweek.com/medibank-confirms-data-breach-impacts-97-million-customers www.secnews.physaphae.fr/article.php?IdArticle=7879985 False Data Breach,Threat None None InfoSecurity Mag - InfoSecurity Magazine 2022-11-04T10:30:00+00:00 https://www.infosecurity-magazine.com/news/ico-slashes-government-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7820561 False Data Breach None None AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC an estimated $9.3 trillion as of 2018. Individual ones can hold millions of dollars, making them tempting targets for cybercriminals. ESOPs pose unique risks, as participating employees have an ownership stake in the company. Consequently, cyberattacks that damage the business’s reputation will affect ESOP participants. Lower stock values will reduce workers’ payouts when they retire. This ownership stake means an attack doesn’t have to target the retirement plan directly to impact its participants. Any cybersecurity incident against the business poses a significant risk, and ESOP security means safeguarding the entire company’s attack surface. How to minimize ESOP security concerns ESOP cybersecurity concerns are significant, but you can take several steps to address them. Here’s how you can mitigate these security risks. Assess company-specific risks The first step in ESOP cybersecurity is to assess your specific risk landscape. Every organization and plan within one has unique considerations determining the most effective mitigation measures, so these assessments are a crucial starting point. Every risk contains two key components: an event that could happen and the consequences if it does. Teams must compile a formal list of threats facing their ESOP plans, ensuring to cover both these categories. This will reveal the most important vulnerabilities to address, helping guide further security steps. Verify vendors Like many retirement plans, ESOPs typically rely on third-party vendors to manage funds. Consequently, breaches in these partners could impact the business itself. About 51% of all organizations have experienced a data breach from a third party, so verifying their security before going into business with them is crucial. Ask for third-party audits and similar proofs of security to ensure any vendors meet strict cybersecurity standards. Contracts should include detailed pictures of their security responsibilities and consequences for noncompliance. Ensuring all vendors have sufficient cybersecurity insurance is also a good idea. Minimize access You should minimize access privileges across the organization and its partners even after verification. Well-meaning employees can still make critical errors, but if each account can only use a few resources, a breach in one won’t jeopardize the entire system. Operate by the principle of least privilege: Every user, program and endpoint should only be able to access what it needs to work correctly. That applies to third parties as well as company insiders. This will minimize lateral movement risks, helping keep ESOPs safe from attacks elsewhere in the organization. Create a culture of Cybersecurity]]> 2022-11-03T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/minimizing-security-concerns-of-esops www.secnews.physaphae.fr/article.php?IdArticle=7799447 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-11-02T14:09:37+00:00 https://informationsecuritybuzz.com/expert-comments/royal-mail-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7783166 False Data Breach None None Bleeping Computer - Magazine Américain 2022-11-02T13:05:18+00:00 https://www.bleepingcomputer.com/news/security/vodafone-italy-discloses-data-breach-after-reseller-hacked/ www.secnews.physaphae.fr/article.php?IdArticle=7784922 False Data Breach None None SecurityWeek - Security News 2022-11-02T11:30:41+00:00 https://www.securityweek.com/hackers-stole-source-code-personal-data-dropbox-following-phishing-attack www.secnews.physaphae.fr/article.php?IdArticle=7780841 False Data Breach None None SecurityWeek - Security News 2022-11-01T12:10:08+00:00 https://www.securityweek.com/bed-bath-beyond-investigating-data-breach-after-employee-falls-phishing-attack www.secnews.physaphae.fr/article.php?IdArticle=7764565 False Data Breach None None SecurityWeek - Security News 2022-10-31T13:15:12+00:00 https://www.securityweek.com/label-giant-multi-color-corporation-discloses-data-breach www.secnews.physaphae.fr/article.php?IdArticle=7754763 False Data Breach None None SecurityWeek - Security News 2022-10-28T13:12:07+00:00 https://www.securityweek.com/twilio-says-employees-targeted-separate-smishing-vishing-attacks www.secnews.physaphae.fr/article.php?IdArticle=7718704 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-10-27T14:08:16+00:00 https://informationsecuritybuzz.com/expert-comments/expert-commentary-see-tickets-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7703590 True Data Breach None None Bleeping Computer - Magazine Américain 2022-10-27T14:05:38+00:00 https://www.bleepingcomputer.com/news/security/australian-clinical-labs-says-patient-data-stolen-in-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=7705772 False Ransomware,Data Breach None None AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC new compliance requirement in many industries, including healthcare, finance, and retail. In the event of a data breach, companies are often required to notify their customers and partners, which can be costly. Cyber insurance can help cover these expenses. Employee training Employees are often the weakest link in a company's cybersecurity defenses. They may not be aware of the latest cyber threats or how to protect themselves from them. That's why it's important to provide employees with regular training on cybersecurity risks and best practices. There are many different types of employee training programs available, ranging from in-person seminars to online courses. Some companies even offer financial incentives for employees who complete training programs. In the remote work era, employee education also increasingly means arming remote workers with knowledge that will keep company data safe while they are working on networks that might not be well secured. This is especially the case if you know people are connecting via public networks at cafes, co-working spaces, and airports. Endpoint security Endpoints are the devices that connect to a network, such as laptops, smartphones, and tablets. They are also a common entry point for cyber-attacks. That's why it's important to invest in endpoint security, which includes solutions such as antivirus software, firewalls, and encryption. You can invest in endpoint security by purchasing it from a vendor or by implementing it yourself. There are also many free and open-source solutions available. Make sure you test any endpoint security solution before deploying it in your environment. Identity and access management Identity and access management (IAM) is a process for managing user identities and permissions. It can be used to control who has access to what data and resources, and how they can use them. IAM solutions often include features such as Single Sign-On (SSO), which allows users to access multiple applications with one set of credentials, and two-factor authentication (2FA), which adds an extra layer of security. IAM solutions can be deployed on-premises or in the cloud. They can also be integrated with other security solutions, such as firewalls and intrusion detection systems. Intrusion detection and prevention Intrusion detection and prevention systems (IDPS) are designed to detect and prevent cyber-attacks. They work by monitoring network traffic for suspicious activity and blocking or flagging it as needed. IDPS solutions can be deployed on-premises or in the cloud. There are many different types of IDPS solutions available, ranging from simple network-based solutions to more sophisticated host-based ones. Make sure you choose a solution that is right for your environment and needs. Security information and event management Security information and event management (SIEM) solutions are designed to collect and analyze data from a variety of security ]]> 2022-10-27T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/11-cybersecurity-investments-you-can-make-right-now www.secnews.physaphae.fr/article.php?IdArticle=7700503 False Data Breach,Spam,Malware,Vulnerability,Patching None None Security Affairs - Blog Secu 2022-10-26T19:09:16+00:00 https://securityaffairs.co/wordpress/137673/data-breach/see-tickets-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=7690434 False Data Breach,Threat None None IT Security Guru - Blog Sécurité 2022-10-26T15:35:16+00:00 https://www.itsecurityguru.org/2022/10/26/https-www-infosecurity-magazine-com-news-see-tickets-discloses-major-card/?utm_source=rss&utm_medium=rss&utm_campaign=https-www-infosecurity-magazine-com-news-see-tickets-discloses-major-card www.secnews.physaphae.fr/article.php?IdArticle=7688198 False Data Breach None None SecurityWeek - Security News 2022-10-26T11:51:05+00:00 https://www.securityweek.com/data-breach-victims-sue-rhode-island-transit-agency-insurer www.secnews.physaphae.fr/article.php?IdArticle=7685646 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2022-10-26T09:15:00+00:00 https://www.infosecurity-magazine.com/news/see-tickets-discloses-major-card/ www.secnews.physaphae.fr/article.php?IdArticle=7683961 False Data Breach None None The Register - Site journalistique Anglais 2022-10-26T03:45:08+00:00 https://go.theregister.com/feed/www.theregister.com/2022/10/26/medibank_breach_update/ www.secnews.physaphae.fr/article.php?IdArticle=7679923 False Data Breach None None SecurityWeek - Security News 2022-10-25T16:36:44+00:00 https://www.securityweek.com/ftc-targets-drizly-and-its-ceo-over-cybersecurity-failures-led-data-breach www.secnews.physaphae.fr/article.php?IdArticle=7673681 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-10-24T11:05:05+00:00 https://informationsecuritybuzz.com/expert-comments/exclusive-comments-on-medibank-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7664383 False Data Breach None None CSO - CSO Daily Dashboard recent survey found that while most responding organizations said they had implemented or were implementing a zero trust strategy, more than half of them didn't have the ability to authenticate users and devices on an ongoing basis. Giving too much trust could have disastrous – and costly – results. IBM estimates that the worldwide average cost of a data breach is currently a staggering $4.24 million.To read this article in full, please click here]]> 2022-10-24T11:01:00+00:00 https://www.csoonline.com/article/3677852/how-a-zero-trust-platform-approach-takes-security-to-the-next-level.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=7668059 False Data Breach None None The Register - Site journalistique Anglais 2022-10-24T00:15:05+00:00 https://go.theregister.com/feed/www.theregister.com/2022/10/24/blazing_south_korean_data_centre/ www.secnews.physaphae.fr/article.php?IdArticle=7657915 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-10-21T12:57:55+00:00 https://informationsecuritybuzz.com/expert-comments/health-system-data-breach-due-to-meta-pixel-hits-3-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=7605254 False Data Breach None None Security Affairs - Blog Secu Healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The US-based hospital healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The company is notifying the impacted individuals. The healthcare system operates 26 hospitals in Wisconsin and […] ]]> 2022-10-21T05:23:28+00:00 https://securityaffairs.co/wordpress/137421/data-breach/advocate-aurora-health-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=7599031 False Data Breach None None CyberScoop - scoopnewsgroup.com special Cyber Deputy Assistant Attorney General for National Security Adam Hickey discussed the breach and the need to balance transparency with privacy related to sensitive material. ]]> 2022-10-20T17:29:09+00:00 https://www.cyberscoop.com/doj-courts-breach-lesson-pleased-transparency/ www.secnews.physaphae.fr/article.php?IdArticle=7588089 False Data Breach None None Bleeping Computer - Magazine Américain 2022-10-20T11:21:30+00:00 https://www.bleepingcomputer.com/news/security/health-system-data-breach-due-to-meta-pixel-hits-3-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=7586450 False Data Breach None None ComputerWeekly - Computer Magazine 2022-10-20T05:05:00+00:00 https://www.computerweekly.com/news/252526314/NatWest-data-breach-whistleblower-demands-bank-pay-data-controller-fee-to-ICO www.secnews.physaphae.fr/article.php?IdArticle=7582009 False Data Breach None None Bleeping Computer - Magazine Américain 2022-10-19T14:28:11+00:00 https://www.bleepingcomputer.com/news/security/microsoft-data-breach-exposes-customers-contact-info-emails/ www.secnews.physaphae.fr/article.php?IdArticle=7567743 False Data Breach None None AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC annual burden of nearly $21 billion due to these attacks. It pays well over $100 million in ransoms, and is beginning to acknowledge the tragic realities of impacted patient care, including higher patient mortality rates. For every headline related to cyberattacks, there are likely hundreds more that go unreported. In a study released in 2021, IoT/IoMT devices were revealed to be the attack vector for 21% of ransomware attacks.  In May 2022, CISA Senior Advisor Joshua Corman further documented the rising risks during a Senate HELP Committee hearing. And in August 2022, the Ponemon Institute and Ivanti’s partner Cynerio teamed to dive even deeper into the impact of insecure medical devices on hospitals and patients in their Insecurity of Connected Devices in Healthcare 2022 report.  Statistics from the report show: 43% of respondents experienced at least one ransomware attack. 88% of cyberattacks involve an IoMT device. The average data breach cost is well over $1 million. Tragically, 24% of attacks result in increased mortality rates. Seven out of ten respondents (71%) believe that very high security risks are created by these otherwise overwhelmingly beneficial marvels of modern medicine. Recognition of risk is a step in the right direction, although it is unfortunately more of a talking point than one of action. Over half (54%) of respondents did not report senior management requiring assurances of properly addressed IoT/IoMT device risk. Even more concerning, two thirds (67%) don’t believe their devices are being patched in a timely manner - the most basic, widely accepted and often required action for nearly any healthcare environment. The current landscape of most hospitals - battling an epidemic with exhausted staff, strained resources, limited cybersecurity expertise and massive bullseyes - makes them easy targets.  A consolidated effort to improve hospital security is needed; AT&T, in partnership with Ivanti Neurons for Healthcare, offers specific solutions to support risk reduction through actionable guidance.   Reports demonstrate before-and-after security status, reflecting the improvements gained by taking action.  Network segmentation recommendations integrate with existing NAC solutions, adding intelligence and visibility to the process. Dashboards quantify risks by device, manufacturer, hardware type, and OS, providing a strategy to fight cybercriminals who leave morbid results in their ceaseless drive for ransoms. In as little as five days, a proof of value engagement will demonstrate a reduction in risk for your healthcare organization. For more information about Ivanti Neurons for Healthcare, and how it can be part of a unified security approach with AT&T Cybersecurity visit us. There's also a nice e-book]]> 2022-10-19T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/alarming-attacks-on-internet-of-medical-things-iomt www.secnews.physaphae.fr/article.php?IdArticle=7558666 False Ransomware,Data Breach,Guideline None None McAfee Labs - Editeur Logiciel Automobile manufacturer Toyota recently announced a data breach that may have exposed the emails of up to 300,000 customers for... ]]> 2022-10-18T13:21:02+00:00 https://www.mcafee.com/blogs/privacy-identity-protection/toyota-data-breach-exposes-customer-data-what-you-can-do-to-protect-yourself/ www.secnews.physaphae.fr/article.php?IdArticle=7556823 False Data Breach None None SecurityWeek - Security News 2022-10-18T12:53:05+00:00 https://www.securityweek.com/keystone-health-data-breach-impacts-235000-patients www.secnews.physaphae.fr/article.php?IdArticle=7540724 False Data Breach None None Security Affairs - Blog Secu Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 million MyDeal customers. Bad news for the customers of the MyDeal online marketplace, the Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 million of them. As soon the company became aware of the security breach it blocked access to […] ]]> 2022-10-17T19:15:18+00:00 https://securityaffairs.co/wordpress/137262/data-breach/woolworths-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=7531195 False Data Breach None None Naked Security - Blog sophos 2022-10-17T16:50:56+00:00 https://nakedsecurity.sophos.com/2022/10/17/fashion-brand-shein-fined-1-9m-for-lying-about-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7529741 False Data Breach None None Bleeping Computer - Magazine Américain 2022-10-17T16:16:01+00:00 https://www.bleepingcomputer.com/news/security/mydeal-data-breach-impacts-22m-users-stolen-data-for-sale-online/ www.secnews.physaphae.fr/article.php?IdArticle=7531417 False Data Breach None None Graham Cluley - Blog Security 2022-10-17T14:34:27+00:00 https://www.bitdefender.com/blog/hotforsecurity/fine-for-shein-fashion-site-hit-with-1-9-million-bill-after-lying-about-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7528622 False Data Breach None None SecurityWeek - Security News 2022-10-17T13:48:44+00:00 https://www.securityweek.com/retail-giant-woolworths-discloses-data-breach-impacting-22-million-mydeal-customers www.secnews.physaphae.fr/article.php?IdArticle=7528670 False Data Breach None None Security Intelligence - Site de news Américain Ransomware attacks are on the rise. While these activities are low-risk and high-reward for criminal groups, their consequences can devastate their target organizations. According to the 2022 Cost of a Data Breach report, the average cost of a ransomware attack is $4.54 million, without including the cost of the ransom itself. Ransomware breaches also took […] ]]> 2022-10-17T13:00:00+00:00 https://securityintelligence.com/posts/3-ways-edr-can-help-stop-ransomware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=7528532 False Ransomware,Data Breach None None BBC - BBC News - Technology 2022-10-14T16:08:04+00:00 https://www.bbc.co.uk/news/technology-63255661?at_medium=RSS&at_campaign=KARANGA www.secnews.physaphae.fr/article.php?IdArticle=7460424 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2022-10-14T16:00:00+00:00 https://www.infosecurity-magazine.com/news/zoetop-fined-dollar19m-for-data/ www.secnews.physaphae.fr/article.php?IdArticle=7458759 False Data Breach None None Security Intelligence - Site de news Américain Geopolitical conflict, inflation, job market pressure, rising debt — we’ve been hearing about economic headwinds for a while now. Could data breaches have anything to do with this? According to a recent IBM report, the average cost of a data breach has reached an all-time high. Like any other business liability, these costs must be […] ]]> 2022-10-13T13:00:00+00:00 https://securityintelligence.com/articles/how-data-breaches-impact-economic-instability/ www.secnews.physaphae.fr/article.php?IdArticle=7434794 False Data Breach None None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2022-10-12T16:33:00+00:00 https://thehackernews.com/2022/10/64000-additional-patients-impacted-by.html www.secnews.physaphae.fr/article.php?IdArticle=7411078 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2022-10-12T15:00:00+00:00 https://www.infosecurity-magazine.com/news/singtel-dialog-suffers-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7413980 False Data Breach None None SecurityWeek - Security News 2022-10-11T11:04:00+00:00 https://www.securityweek.com/toyota-discloses-data-breach-impacting-source-code-customer-email-addresses www.secnews.physaphae.fr/article.php?IdArticle=7391693 False Data Breach None None AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC Ransomware as a Service, targeting IOT/OT infrastructure, general supply chain attacks.  Tried and true methods, like phishing, and targeting unpatched or outdated systems to find vulnerabilities also continued. Data shows that threats are increasing in volume and impact across every industry and government agency.  The Cybersecurity and Infrastructure Security Agency (CISA) recently reported that 14 critical US sectors have been the subject to intense ransomware attacks and the FBI identified over 2,000 ransomware attacks between January and July of 2022. (source)  CheckPoint estimates that 1 out of 40 organizations will be hit by a ransomware attack and 84% of those sees some amount of data exfiltration.  IBM appraises the average cost of a data breach at $4.3M and the recovery time from such attacks is approximately 22 days. And with all of that said, the World Economic Forum still attributes 95% of all data breaches to human error. The cybersecurity industry is fighting back.  The PCI Security Standards Council (PCI SSC) sorted through over 6,000 pieces of feedback from over 200 organizations, to help it create the new standard aimed at significantly reducing the success of these types of attacks in the future.  On May 31, 2022, the PCI SSC released version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS).  This provides an accepted baseline of technical and operational requirements designed to protect various types of user account data.  The updated standard and Summary of Changes document are available now on the PCI SSC website. Version 4.0 is a significant update to the standard, so to enable organizations to understand the new requirements and plan, execute and test updates, the current version of 3.2.1 remains active through March 31, 2024.  Assessors are undergoing training and certification for the new standard now, and once available, they will be able to assess to either the current or new standard, based upon the plans of the organization.  The new standard had many expected updates based upon evolving payment card industry security needs.  There are also changes to the frequency of expected effort, shifting from specific durations between work to the idea that security is a continuous process.  The stated goals for PCI DSS v4.0 are as follows: Continue to Meet the Security Needs of the Payment Industry; Promote Security as Continuous Process; Add Flexibility for Different Meth]]> 2022-10-11T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/pci-dss-v4.0 www.secnews.physaphae.fr/article.php?IdArticle=7390145 False Ransomware,Data Breach,Tool,Vulnerability,Threat,Guideline None None The Register - Site journalistique Anglais 2022-10-11T04:57:05+00:00 https://go.theregister.com/feed/www.theregister.com/2022/10/11/optus_acma_oaic_dual_probes/ www.secnews.physaphae.fr/article.php?IdArticle=7387561 False Data Breach None 3.0000000000000000 SecurityWeek - Security News 2022-10-10T13:52:31+00:00 https://www.securityweek.com/state-bar-georgia-confirms-data-breach-following-ransomware-attack www.secnews.physaphae.fr/article.php?IdArticle=7382917 False Ransomware,Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-10-10T13:29:07+00:00 https://informationsecuritybuzz.com/expert-comments/optus-parent-company-singtel-now-also-confirms-data-breaches/ www.secnews.physaphae.fr/article.php?IdArticle=7382586 False Data Breach None None Wired Threat Level - Security News 2022-10-07T19:20:30+00:00 https://www.wired.com/story/uber-joe-sullivan-conviction/ www.secnews.physaphae.fr/article.php?IdArticle=7338078 False Data Breach Uber,Uber None SecurityWeek - Security News 2022-10-07T11:16:52+00:00 https://www.securityweek.com/industry-reactions-conviction-former-uber-cso-joe-sullivan-feedback-friday www.secnews.physaphae.fr/article.php?IdArticle=7333333 False Data Breach Uber,Uber None TechRepublic - Security News US 2022-10-06T21:39:45+00:00 https://www.techrepublic.com/article/uber-cso-guilty-obstruction-attempted-data-breach-cover-up/ www.secnews.physaphae.fr/article.php?IdArticle=7323989 False Data Breach Uber,Uber None MitnickSecurity - Former Hacker Services Whether your organization has been the victim of a recent data breach or your organization has never had expert penetration testing done before, it's probably time to call in cybersecurity experts. The right cybersecurity company can help you identify the strengths and weaknesses of your networks and systems so you can improve the security posture of your organization and stay one step ahead of threat actors. ]]> 2022-10-06T17:00:00+00:00 https://www.mitnicksecurity.com/blog/questions-to-ask-when-evaluating-a-penetration-testing-company www.secnews.physaphae.fr/article.php?IdArticle=7321257 False Data Breach,Threat None None InfoSecurity Mag - InfoSecurity Magazine 2022-10-06T15:00:00+00:00 https://www.infosecurity-magazine.com/news/ubers-former-security-chief/ www.secnews.physaphae.fr/article.php?IdArticle=7320164 True Data Breach Uber None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2022-10-06T13:55:00+00:00 https://thehackernews.com/2022/10/19-year-old-hacker-arrested-for-using.html www.secnews.physaphae.fr/article.php?IdArticle=7318326 False Data Breach None None Security Affairs - Blog Secu The City of Tucson, Arizona disclosed a data breach, the incident was discovered in May 2022 and impacted 123,500 individuals. The security breach was discovered at the end of May 2022 and concluded the investigation in September. According to the notification letter sample provided to the Maine Attorney General's Office, over 123,500 were impacted have been impacted […] ]]> 2022-10-06T13:18:28+00:00 https://securityaffairs.co/wordpress/136735/data-breach/city-of-tucson-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=7319485 False Data Breach None None CSO - CSO Daily Dashboard a notice published by the Department of Justice (DOJ).US Attorney Stephanie Hinds, upon learning of the verdict, admonished companies that are storing data as to their responsibility to also “protect that data and to alert customers and appropriate authorities when such data is stolen by hackers. Sullivan affirmatively worked to hide the data breach from the Federal Trade Commission (FTC) and took steps to prevent the hackers from being caught. We will not tolerate the concealment of important information from the public by corporate executives more interested in protecting their reputation and that of their employers than in protecting users. Where such conduct violates the federal law, it will be prosecuted.”To read this article in full, please click here]]> 2022-10-06T13:16:00+00:00 https://www.csoonline.com/article/3676148/guilty-verdict-in-the-uber-breach-case-makes-personal-liability-real-for-cisos.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=7323153 False Data Breach,Hack Uber,Uber None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2022-10-06T12:27:00+00:00 https://thehackernews.com/2022/10/former-uber-security-chief-found-guilty.html www.secnews.physaphae.fr/article.php?IdArticle=7318327 False Data Breach Uber,Uber None SecurityWeek - Security News 2022-10-06T11:37:12+00:00 https://www.securityweek.com/personal-information-123k-individuals-exposed-city-tucson-data-breach www.secnews.physaphae.fr/article.php?IdArticle=7321491 False Data Breach None None Security Affairs - Blog Secu The Australian Federal Police (AFP) arrested a 19-year-old teen from Sydney for attempting to use data from the Optus data breach in SMS scams. The Australian Federal Police (AFP) has arrested a 19-year-old teen from Sydney for allegedly attempting to use data leaked after the Optus data breach in a fraudulent scheme aimed at extorting […] ]]> 2022-10-06T10:59:08+00:00 https://securityaffairs.co/wordpress/136725/cyber-crime/optus-arrested-scam.html www.secnews.physaphae.fr/article.php?IdArticle=7317881 False Data Breach None None SecurityWeek - Security News A San Francisco jury on Wednesday found former Uber security chief Joe Sullivan guilty of covering up a 2016 data breach and concealing information on a felony from law enforcement. ]]> 2022-10-05T21:49:24+00:00 https://www.securityweek.com/former-uber-ciso-joe-sullivan-found-guilty www.secnews.physaphae.fr/article.php?IdArticle=7321493 False Data Breach Uber,Uber None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2022-10-05T18:00:00+00:00 https://thehackernews.com/2022/10/telstra-telecom-suffers-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=7306888 False Data Breach None None Security Affairs - Blog Secu Bad news for the Australian telecommunications industry, the largest company in the country Telstra suffered a data breach. Australia’s largest telecommunications company Telstra disclosed a data breach through a third-party supplier. The company pointed out that its systems have not been breached, the security breach impacted a third-party supplier that previously provided a now-obsolete Telstra […] ]]> 2022-10-05T14:58:33+00:00 https://securityaffairs.co/wordpress/136683/hacking/telstra-third-party-breach.html www.secnews.physaphae.fr/article.php?IdArticle=7307521 False Data Breach None None Sontiq - Ancien CyberScout On average, five data breaches happen every day. Nearly 300 million individuals had their data compromised in 2021. Learn how Sontiq's BreachIQ™ protects the financial health of consumers and businesses. Download Now ]]> 2022-10-05T14:00:42+00:00 https://www.sontiq.com/resources/hyper-personalized-data-breach-risk-intelligence-for-all-businesses/ www.secnews.physaphae.fr/article.php?IdArticle=7309159 False Data Breach None None Bleeping Computer - Magazine Américain 2022-10-05T13:21:19+00:00 https://www.bleepingcomputer.com/news/security/city-of-tucson-discloses-data-breach-affecting-over-125-000-people/ www.secnews.physaphae.fr/article.php?IdArticle=7309062 False Data Breach None None Security Intelligence - Site de news Américain The 2022 Cost of a Data Breach report was eagerly anticipated by cybersecurity professionals and the technology industry as a whole. Following two years of increased remote work and other changes due to the pandemic, the report was an important benchmark on the lasting impact and future trends of data breaches.  Not surprisingly, this year’s […] ]]> 2022-10-05T10:00:00+00:00 https://securityintelligence.com/articles/what-experts-say-about-2022-codb-report/ www.secnews.physaphae.fr/article.php?IdArticle=7305541 False Data Breach None 5.0000000000000000 InformationSecurityBuzzNews - Site de News Securite 2022-10-04T15:06:31+00:00 https://informationsecuritybuzz.com/expert-comments/comment-telstra-is-rocked-by-a-data-breach-with-hackers-gaining-access-to-staff-info/ www.secnews.physaphae.fr/article.php?IdArticle=7296418 False Data Breach None None Bleeping Computer - Magazine Américain 2022-10-04T12:43:38+00:00 https://www.bleepingcomputer.com/news/security/optus-confirms-21-million-id-numbers-exposed-in-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7296971 False Data Breach None None Veracode - Application Security Research, News, and Education Blog 2022-10-04T11:20:28+00:00 https://www.veracode.com/__%3C%21--%20THEME%20DEBUG%20--%3E_%3C%21--%20THEME%20HOOK%3A%20%27views_view_field%27%20--%3E_%3C%21--%20BEGIN%20OUTPUT%20from%20%27core/modules/views/templates/views-view-field.html.twig%27%20--%3E_/blog/security-news/how-see-yourself-cyber-top-tips-industry-leaders-0_%3C%21--%20END%20OUTPUT%20from%20%27core/modules/views/templates/views-view-field.html.twig%27%20--%3E__ www.secnews.physaphae.fr/article.php?IdArticle=7393860 False Data Breach,Hack,Guideline None 2.0000000000000000 Bleeping Computer - Magazine Américain 2022-10-03T18:42:13+00:00 https://www.bleepingcomputer.com/news/security/td-bank-discloses-data-breach-after-employee-leaks-customer-info/ www.secnews.physaphae.fr/article.php?IdArticle=7291517 False Data Breach None None MitnickSecurity - Former Hacker Services No matter how robust network security is, even the biggest companies fall victim to cyber attacks. These malicious attacks can be costly - to the tune of 4.3 million on average - but they also disrupt operations and hurt a company's reputation. ]]> 2022-10-03T17:00:00+00:00 https://www.mitnicksecurity.com/blog/uber-data-breach www.secnews.physaphae.fr/article.php?IdArticle=7289144 False Data Breach Uber 3.0000000000000000 Sontiq - Ancien CyberScout An accounting firm discovered a data breach at one of its vendors exposed the information of several business clients. They turned to Cyberscout, a TransUnion brand, to assist those affected and to help minimize the reputational damage to the firm. Here's what happened. Download Now ]]> 2022-10-03T16:41:32+00:00 https://www.sontiq.com/resources/case-study-cyberscout-helps-cpa-firm-protect-clients-and-reputation/ www.secnews.physaphae.fr/article.php?IdArticle=7289108 False Data Breach None None Bleeping Computer - Magazine Américain 2022-10-03T14:35:40+00:00 https://www.bleepingcomputer.com/news/security/russian-retail-chain-dns-confirms-hack-after-data-leaked-online/ www.secnews.physaphae.fr/article.php?IdArticle=7290044 False Data Breach,Hack None 3.0000000000000000 SecurityWeek - Security News 2022-10-03T13:14:32+00:00 https://www.securityweek.com/optus-says-id-numbers-21-million-compromised-data-breach www.secnews.physaphae.fr/article.php?IdArticle=7292887 False Data Breach None None IT Security Guru - Blog Sécurité 2022-10-03T10:06:39+00:00 https://www.itsecurityguru.org/2022/10/03/lessons-from-the-cyber-front-line/?utm_source=rss&utm_medium=rss&utm_campaign=lessons-from-the-cyber-front-line www.secnews.physaphae.fr/article.php?IdArticle=7286252 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-09-30T14:52:09+00:00 https://informationsecuritybuzz.com/expert-comments/humana-3rd-party-data-breach-via-choice-health-supplier/ www.secnews.physaphae.fr/article.php?IdArticle=7225676 False Data Breach None None IT Security Guru - Blog Sécurité 2022-09-30T13:25:06+00:00 https://www.itsecurityguru.org/2022/09/30/https-www-infosecurity-magazine-com-news-leakbase-breach-indias-swachhata/?utm_source=rss&utm_medium=rss&utm_campaign=https-www-infosecurity-magazine-com-news-leakbase-breach-indias-swachhata www.secnews.physaphae.fr/article.php?IdArticle=7225475 True Data Breach None None Bleeping Computer - Magazine Américain 2022-09-30T11:26:19+00:00 https://www.bleepingcomputer.com/news/security/optus-breach-victims-will-get-supercharged-fraud-protection/ www.secnews.physaphae.fr/article.php?IdArticle=7226718 False Data Breach None None Naked Security - Blog sophos 2022-09-29T18:45:29+00:00 https://nakedsecurity.sophos.com/2022/09/29/s3-ep102-sorting-fact-from-fiction-in-hyped-up-cybersecurity-news-stories/ www.secnews.physaphae.fr/article.php?IdArticle=7224056 False Data Breach None None Malwarebytes Labs - MalwarebytesLabs Categories: NewsTags: Optus Tags: breach Tags: optusdata Tags: text messages Tags: drivers' licenses Tags: Medicare Tags: identity protection A hacker stole the personal information of 10 million Optus customers, threatened to publish them in lots of 10,000 a day unless the ransom was paid, and then suddenly did a 180 degree turn. (Read more...) ]]> 2022-09-29T16:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/optus-data-breach-attacker-says-sorry-it-was-a-mistake www.secnews.physaphae.fr/article.php?IdArticle=7211702 False Data Breach None None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2022-09-29T15:42:00+00:00 https://thehackernews.com/2022/09/swachh-city-platform-suffers-data.html www.secnews.physaphae.fr/article.php?IdArticle=7199178 False Data Breach,Threat None None McAfee Labs - Editeur Logiciel Optus, one of Australia's largest telecommunications carriers, reported news of a data breach that may have compromised the information of... ]]> 2022-09-29T04:22:27+00:00 https://www.mcafee.com/blogs/security-news/the-optus-data-breach-steps-you-can-take-to-protect-yourself/ www.secnews.physaphae.fr/article.php?IdArticle=7195620 False Data Breach None None BBC - BBC News - Technology 2022-09-29T01:20:28+00:00 https://www.bbc.co.uk/news/world-australia-63056838?at_medium=RSS&at_campaign=KARANGA www.secnews.physaphae.fr/article.php?IdArticle=7191478 False Data Breach None None CSO - CSO Daily Dashboard To read this article in full, please click here]]> 2022-09-28T13:00:00+00:00 https://www.csoonline.com/article/3675288/moving-security-technologies-to-the-cloud-4-tips-for-cisos.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=7185965 False Data Breach None None IT Security Guru - Blog Sécurité 2022-09-28T10:09:20+00:00 https://www.itsecurityguru.org/2022/09/28/optus-telco-data-breach-what-we-know-so-far/?utm_source=rss&utm_medium=rss&utm_campaign=optus-telco-data-breach-what-we-know-so-far www.secnews.physaphae.fr/article.php?IdArticle=7177581 False Data Breach None None The Register - Site journalistique Anglais 2022-09-27T18:15:08+00:00 https://go.theregister.com/feed/www.theregister.com/2022/09/27/samsung_breach_class_action/ www.secnews.physaphae.fr/article.php?IdArticle=7162884 False Data Breach,Guideline None None Security Affairs - Blog Secu Elbit Systems of America, a subsidiary of defense giant Elbit Systems, disclosed a data breach after Black Basta ransomware gang claimed to have hacked it. In late June, the Black Basta ransomware gang claimed to have hacked Elbit Systems of America, the extortion group added the name of the company to its Tor leak site. […] ]]> 2022-09-27T15:37:51+00:00 https://securityaffairs.co/wordpress/136310/cyber-crime/elbit-systems-of-america-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=7160877 False Ransomware,Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-09-27T14:57:32+00:00 https://informationsecuritybuzz.com/expert-comments/watchfinder-hack-expert-comment/ www.secnews.physaphae.fr/article.php?IdArticle=7160266 False Data Breach None None SecurityWeek - Security News 2022-09-27T12:24:20+00:00 https://www.securityweek.com/defense-giant-elbit-confirms-data-breach-after-ransomware-gang-claims-hack www.secnews.physaphae.fr/article.php?IdArticle=7159820 False Ransomware,Data Breach,Hack None None Security Intelligence - Site de news Américain The average cost of a data breach hit a record high of $4.35 million, a 13% increase in the last two years, according to the 2022 Cost of a Data Breach report. In addition, laws are holding board members personally liable for IT security breaches and ineffective security controls, so it’s easy to see why […] ]]> 2022-09-27T12:00:00+00:00 https://securityintelligence.com/posts/3-keys-to-it-risk-management-strategy/ www.secnews.physaphae.fr/article.php?IdArticle=7159623 False Data Breach None 2.0000000000000000 knowbe4 - cybersecurity services ]]> 2022-09-26T14:00:46+00:00 https://blog.knowbe4.com/optus-data-breach-teaches-importance-of-recognizing-social-engineering www.secnews.physaphae.fr/article.php?IdArticle=7150312 False Data Breach None None SecurityWeek - Security News unprecedented breach of personal data from 9.8 million customers. ]]> 2022-09-26T13:46:57+00:00 https://www.securityweek.com/australia-mulls-tougher-cybersecurity-laws-after-data-breach www.secnews.physaphae.fr/article.php?IdArticle=7150128 False Data Breach None None SecurityWeek - Security News 2022-09-26T13:44:27+00:00 https://www.securityweek.com/breached-american-airlines-email-accounts-abused-phishing www.secnews.physaphae.fr/article.php?IdArticle=7150129 False Data Breach None None Bleeping Computer - Magazine Américain 2022-09-24T10:06:33+00:00 https://www.bleepingcomputer.com/news/security/american-airlines-learned-it-was-breached-from-phishing-targets/ www.secnews.physaphae.fr/article.php?IdArticle=7114009 True Data Breach None None Bleeping Computer - Magazine Américain 2022-09-24T10:06:33+00:00 https://www.bleepingcomputer.com/news/security/american-airlines-learned-they-were-breached-from-phishing-targets/ www.secnews.physaphae.fr/article.php?IdArticle=7110841 False Data Breach None None The State of Security - Magazine Américain People have become the primary attack vector for cyber attackers around the world. As the Verizon Data Breach Investigations Report 2022 indicates, it is humans rather than technology that now represent the greatest risk to organizations. According to the SANS 2022 Security Awareness Report, the top three security risks that security professionals are concerned about […]… Read More ]]> 2022-09-23T03:00:00+00:00 https://www.tripwire.com/state-of-security/security-awareness/events/overheard-sans-security-awareness-summit/ www.secnews.physaphae.fr/article.php?IdArticle=7073583 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-09-22T18:08:35+00:00 https://informationsecuritybuzz.com/expert-comments/optus-data-breach-announced-experts-weigh-in/ www.secnews.physaphae.fr/article.php?IdArticle=7065746 False Data Breach None None SecurityWeek - Security News 2022-09-22T13:45:21+00:00 https://www.securityweek.com/australian-telecoms-firm-optus-discloses-breach-impacting-customer-data www.secnews.physaphae.fr/article.php?IdArticle=7063169 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-09-21T14:21:25+00:00 https://informationsecuritybuzz.com/expert-comments/experts-insight-revolut-and-amercian-airlines-suffer-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7040028 False Data Breach,Guideline None None InformationSecurityBuzzNews - Site de News Securite 2022-09-21T13:01:04+00:00 https://informationsecuritybuzz.com/expert-comments/thousands-of-customers-affected-in-revolut-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7038061 False Data Breach None None Security Intelligence - Site de news Américain In recent years, the mindset for cybersecurity has shifted. It isn’t a matter of if a company has a breach, but rather when a company has a breach. With the increase in cybersecurity incidents, most if not all companies will be victims of a data breach at some point. However, the latest research shows that organizations […] ]]> 2022-09-21T10:00:00+00:00 https://securityintelligence.com/articles/companies-zero-trust-lose-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=7037280 False Data Breach None 5.0000000000000000 Global Security Mag - Site de news francais Points de Vue]]> 2022-09-21T09:51:46+00:00 http://www.globalsecuritymag.fr/Se-defendre-contre-la,20220921,130116.html www.secnews.physaphae.fr/article.php?IdArticle=7035359 False Data Breach None None