-
Aug31
Daily Security News from @trustpath - Aug 31, 2017
Daily Security news from @trustpath.
Watchdog pressed to probe post-data breach services
Many entities in the private and government sectors have experienced data breaches involving the loss or theft of sensitive personal information, such … more.
‘Open and accessible’ spambot server leaks 711 million records
The threats outlined are not new or novel, nor is the credential harvesting/storage methodology. Data breaches don’t end after the public disclosure. more.
Where does a business’s data live?
The aim of GDPR is to protect all EU citizens from privacy and data breaches in an increasingly data-driven world, massively increasing the scope of … more.
Report: IRS Social Media Data Mining for Auditing ‘Violates Federal Law’
Other concerns regarding the IRS’s entre into big data are raised including the potential for political targeting, data breaches, and the misuse of such … more.
SentinelOne recognized as a Visionary in the 2017 Gartner Magic Quadrant
For the second year in a row, SentinelOne is recognized as a Visionary in the Gartner Magic Quadrant for Endpoint Protection Platforms and is now … more.
Blockchain and The Future of Data Breaches
on its promise? The promise of blockchain’s distributed open ledger … more.
On the Radar: Cybereason Adds NGAV to Compete as a Full Endpoint Protection
Business Wire (press release) Cybereason develops endpoint security technology. It started out in 2014 as an endpoint detection and response (EDR) vendor and is now adding a … more.
Keep Intruders Out of Your Network With Proactive Threat Hunting
A threat hunting program can provide an accurate picture of where your organization is exposed to threats and help security professionals strengthen … more.
Weak passwords, lax security allowed tax software accounts to be hacked,
Allentown Morning Call … would have helped reduce the chances of an attack from hackers who using stolen credentials to try to gain access to TaxSlayer customer accounts. more.
SecureAuth Continues to Raise the Bar on Passwordless Authentication with
GlobeNewswire (press release) Continuing its mission in preventing the misuse of stolen credentials, SecureAuth has introduced additional multi-factor authentication (MFA) methods, … more.
Alert! New malware infects with adware via Facebook Messenger
It might be from hijacked browsers, click-jacking or stolen credentials. Right now, the lab said they are not certain as this investigation is still ongoing. more.
Houston Flood Survivor Rips CNN: People Are Suffering; Why The F**k Are You
Townhall CNN stepped on a rake with their Houston hurricane coverage, interviewing a mother who wasn’t having any of the network’s behavior concerning … more.
On the Radar: Cybereason Adds NGAV to Compete as a Full Endpoint Protection
Business Wire (press release) Cybereason develops endpoint security technology. It started out in 2014 as an endpoint detection and response (EDR) vendor and is now adding a … more.
PCI DSS compliance reduces likelihood of data breaches
Of all the payment card data breaches Verizon investigated in the past year, no organisations were found to be fully compliant with the payment card … more.
Spambot weaponizes 711M accounts to spread Ursnif malware
The spambot was collecting stolen email credentials and server login info stemming from previous data breaches, such as the LinkedIn and Badoo … more.
Ex-Defense Department Deputy GC Joins Wilson Sonsini
When the Office of Personnel Management discovered in 2015 that it had fallen victim to one of the largest data breaches in U.S. government history, … more.
SuperValu Shoppers Didn’t Prove Breach Injury, 8th Circ Says
… to dismiss the entire consolidated action against the grocery chain over a pair of 2014 data breaches when one of the 16 named plaintiffs, David. more.
Certification Watch (Vol. 20, No. 35)
There’s a hacker here, there, and everywhere you look, data breaches are popping up like weeds, and malware attacks evolve every day. Meanwhile … more.
Do not compute: As cyber attacks grow, Sac State readies next generation of
Sacramento News & Review The weeklong course instructed students about common online security threats and how to prevent data breaches, which have increased in both … more.
How to conquer the organisational fear of the breach
Data breaches happen. It’s ok to say it. In fact, we would be better off getting a lot more comfortable with it, because the fear of data breaches is … more.
FOX43 Finds Out: protecting kids’ information
He also says it’s not just big data breaches we should worry about. We’re asked for our information much more these days, whether it be a phone … more.
RBI considers rights-based approach for data privacy, instead of
MediaNama.com In the event of a data breach, data controllers must issue a data breach notification (including with respect to suspected data breaches) within 24 hours … more.
PesoPay: En route towards a cashless future
There’s the issue of privacy and massive data breaches which makes it difficult for citizens to completely forego cash, said AsiaPay Philippines’ … more.
Verizon report finds vendors lagging on card payment security
Verizon said that of the nearly 300 card data breaches it had investigated between 2010 and 2016, all took place at organisations that were not … more.
New data protection legislation will lead to increased demand for
Workplace Insight (press release) (registration) (blog) … data protection legislation will reshape the way organisations approach data privacy, providing the public with more visibility into data breaches. more.
Instagram warns users following data breach
… addresses, as well as a number of passwords, were leaked publicly thanks to a misconfigured spambot, in one of the largest data breaches ever. more.
A virtualisation-based approach to security could help prevent ransomware
ITProPortal … Juniper predicts data breaches will cost global business a total of $8 trillion in fines, lost business and remediation costs over the next five years. more.
Change password to prevent Internet spambot attack: expert
… using different accounts, the security expert said, stressing that people should never download spam files to prevent the risk of data breaches. more.
The impact of GDPR: A new regulation for a new world
… 2016 survey of US consumers by FireEye found that the vast majority (76%) would move away from companies with a high record of data breaches. more.
Should Google, Amazon and Facebook be nationalised?
… $2.4bn fine handed out by the EU to Google for abusing its market position proves that the EU has “shown its teeth” when it comes to data breaches. more.
Celebrity Instagram accounts fall victim to hackers, contact details seized
Celebrity data breaches are nothing new, with Taylor Swift and Ariana Grande counting among the past victims of such events, again on Instagram. more.
Yahoo must face litigation by data breach victims: US judge
… litigation brought on behalf of well over 1 billion users who said their personal information was compromised in three massive data breaches. more.
700 Million-Plus Email Addresses Leaked by Spam Operation
Hunt says individuals often reuse authentication credentials despite repeated warnings about the risks that come from data breaches. “There will be … more.
Cyber Security Regulation – The Move Towards Board Involvement
The idea is to make organizations proactive about their security at a boardroom level and prevent data breaches of EU nationals from occurring. more.
Spambot and Cex leak over 700m email addresses
The data breaches once again highlight how vulnerable our data is, said Ross Brewer, vice president and managing director, EMEA at LogRhythm. more.
-
Read these next:
- Daily IoT/Blockchain News from @surgethings - Aug 31, 2017
- Daily Cloud Computing News from @cloudfeednet - Aug 30, 2017