Tuesday, March 19, 2019

Why real-time intelligence matters for managing third-party risk

Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! As leading companies in every industry today are undergoing digital transformation, the lines are blurring between any...

Aluminium plants hit by cyber-attack, global company turns to manual operations

Norsk Hydro, one of the world’s largest producers of aluminium, says that it is battling an “extensive cyber-attack” that first hit its systems on Monday evening and then escalated overnight. Read more in my article on the Hot for Security...

Google Play is flooded with hundreds of unsafe anti-virus products

A new study has closely examined whether 250 security products for Android smartphones are capable of protecting users at all. The results are in… and disturbing. Read more in my article on the Hot for Security blog.

53% of Britain’s most frequent porn watchers aren’t aware that they’re about to be blocked

A new survey has revealed that the majority of Brits are blissfully unaware that next month the UK Government will be requiring porn websites to verify that their users have obtained a “porn passport.”

MySpace has lost all the music users uploaded between 2003 and 2015

You cannot trust the likes of Myspace to look after your data securely. Use internet services to archive your content if you wish, but you’d be wise to have your own backup too.

Zillow sued for $60 million after mansion listing hijacked

A hacker knocked millions off the listed price of an incredibly expensive home, and its owners aren’t at all happy…

Online training site says it is spamming insecure printers with adverts

Online training site Skillbox says that it has come up with an imaginative way to reach out to potential clients, and invite them to change their careers from being boring old auditors and accountants and become graphical designers instead. The...

US Senators say it shouldn’t be a secret when they’ve been hacked

Federal agencies and companies are required by law to disclose breaches, but Congress is under no such obligation - meaning that the public may have no idea that their political representatives have been hit. Read more in my article...

Smashing Security #119: Hijacked homes, porn passports, and ransomware regret

A $150 million mansion is hijacked online, Brits will soon have to scan their passport to watch internet porn, and are organisations right to pay up when hit by ransomware? All this and much more is discussed in the latest...

Online safety cartoons for young kids

A series of cartoons are aiming to educate children as young as four about how to stay safe online.

Man arrested for selling one million Netflix, Spotify, Hulu passwords

The WickedGen website bragged that it had over 120,000 users and almost one million sets of account details, offering monthly and yearly membership plans for those who wanted “access to thousands of premium accounts across a huge range of...

Citrix hackers may have stolen six terabytes worth of files

The FBI suspects that the hackers used a technique known as “password spraying”.

Facebook sues quiz app developers who allegedly stole users’ private data through browser plugins

Facebook is taking a stand against a pair of Ukrainian app developers who it claims scraped personal information from users’ profiles. Read more in my article on the Hot for Security blog.

Hackable car alarms leave three million cars at risk of hijack

Millions of car owners were left at risk of having their vehicles stolen, because of the poor security of third-party app-connected car alarms. Read more in my article on the Hot for Security blog.

Facebook Messenger bug made it possible for hackers to see who you have been chatting with

A security researcher has revealed details of a flaw in Facebook Messenger that made it possible for “any website to expose who you have been messaging with.”

Thousands of patients impacted by ransomware attack at medical billing company

Following a ransomware attack at a medical billing company, thousands of patients are being warned that their highly sensitive medical information and personal details were amongst the data that was breached. Read more in my article on the Tripwire State...

FBI boss warns businesses of Chinese hackers stealing their intellectual property

What’s the biggest cybersecurity threat for US businesses? If FBI chief Christopher Wray is to be believed, it’s China. Read more in my article on the Bitdefender Business Insights blog.

Smashing Security #118: The ‘s’ in IoT stands for security

Twerking robot assistants, an app from Saudi Arabia that lets men track women, and a gnarly skiing security snarl-up! All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans...
SC Magazine

Norwegian aluminum producer Norsk Hydro hit by an unspecified cyberattack

Norwegian aluminum producer Norsk Hydro was hit by a cyber attack which began Monday evening and escalated into the night. The Norwegian National Security Authority (NSM) declined to comment on what type of attack it was but said the extent...
SC Magazine

Glitch exposes Sprint customer data to other users

A bug has allowed some Sprint customers to see the personal data of other customers from their online accounts. The information visible includes names, cell phone numbers as well as calls made by other users and, and a Tech Crunch report cited...

6 Ways Mature DevOps Teams Are Killing It in Security

New survey shows where "elite" DevOps organizations are better able to incorporate security into application security.
The Register

Ransomware drops the Lillehammer on Norsk Hydro: Aluminium giant forced into manual mode after systems scrambled

Norway the power and metals wrangler could have seen this one coming Norwegian power and metals giant Norsk Hydro is battling an extensive ransomware infection on its computers.…

Old Tech Spills Digital Dirt on Past Owners

Researcher buys old computers, flash drives, phones and hard drives and finds only two properly wiped devices out of 85 examined.