Tuesday, March 31, 2020

OIG Lacks Confidence in FBI’s Adherence to Woods Procedures

OIG Lacks Confidence in FBI's Adherence to Woods Procedures The Office of the Inspector General (OIG) has said it lacks confidence that the Federal Bureau of Investigation is executing its Woods Procedures in line with FBI policy when applying...

New Marriott Data Breach Affects 5.2 Million Guests

New Marriott Data Breach Affects 5.2 Million Guests Hotel chain Marriott International announced today that it has suffered a second data breach. According to an incident notification published on their website, the company spotted unusual activity occurring in an app that guests...

#WorldBackupDay: Only 58% of Brits Back Up Their Data

#WorldBackupDay: Only 58% of Brits Back Up Their DataThe majority of British people don't back up their data even though they know how to do it. New research by Avast published today to coincide with World BackUp Day found that 42% of...

Sensitive Voter Data Exposed by App Used in US Elections

Sensitive Voter Data Exposed by App Used in US ElectionsSensitive information about US voters was left exposed due to a data breach by the voter contact and canvassing app Campaign Sidekick, which is used by the Republican party in...

NATO Report Warns of New Authoritarian Chinese Splinternet

NATO Report Warns of New Authoritarian Chinese Splinternet Chinese government plans to push through standardization of a new internet architecture could broaden the threat landscape, destabilize security and privacy, and fragment the world wide web, a new NATO report seen...

Privacy Snafu Exposes 42 Million ‘Telegram’ Records

Privacy Snafu Exposes 42 Million ‘Telegram’ RecordsSecurity researchers have discovered tens of millions of accounts from a third-party version of Telegram that were leaked online in another cloud misconfiguration. Bob Diachenko and the Comparitech team found the exposed data on...

Houseparty Offers $1m for Info on ‘Smear Campaign’

Houseparty Offers $1m for Info on ‘Smear Campaign’Houseparty is offering $1m for evidence of a suspected smear campaign, after several reports emerged that multiple users had had other online accounts compromised via the video conferencing app. The platform has become extremely...

Ban Hasn’t Stopped COVID-19 Instagram Ads

Ban Hasn't Stopped COVID-19 Instagram AdsAdverts and listings that capitalize on the COVID-19 outbreak are appearing on Instagram and Facebook despite being banned. On March 6, Facebook and Instagram announced a temporary ban on ads and listings selling medical face...

VoIP Carriers Investigated Over Fraudulent Robocalls

VoIP Carriers Investigated Over Fraudulent RobocallsAn American court has ordered injunctions against two telecom carriers that facilitated hundreds of millions of fraudulent robocalls to consumers in the United States. The scam calls predominantly targeted elderly and vulnerable people, successfully conning victims...

Carnegie Mellon Launches Cybersecurity Master’s Degree

Carnegie Mellon Launches Cybersecurity Master's DegreeCarnegie Mellon University (CMU) has launched a cybersecurity-focused master's degree program.  The new program centers on building expertise in risk management, information security, and data privacy and aims to develop key skills in operations, strategy, and analysis.  To...

#COVID19 Phishing Scam Tricks People With ‘You Might Be Infected’ Warning

#COVID19 Phishing Scam Tricks People With ‘You Might Be Infected’ WarningSecurity awareness training and simulated phishing provider KnowBe4 has announced that it has discovered a new type of phishing scam warning people that they’ve come into contact with a...

Government Launches Response Unit to Fight #COVID19 Fake News

Government Launches Response Unit to Fight #COVID19 Fake NewsThe British government has launched a new rapid response unit to coordinate the fight against online misinformation about COVID-19. Reports suggest that the unit, operating from within the Cabinet Office and Number...

Maze Authors Claim to Have Hit Insurer Chubb

Maze Authors Claim to Have Hit Insurer Chubb A leading insurance provider appears to have been targeted by a notorious ransomware group, which is threatening to release information stolen from the company if it doesn’t pay up. Chubb Insurance, which...

Global E-Commerce Fraud to Top $25bn by 2024

Global E-Commerce Fraud to Top $25bn by 2024Global online payment fraud losses are set to soar by more than 50% over the coming four years to exceed $25bn per year, according to a new report from Juniper Research. The market...

Domain Registrars Take Action Against Fraudulent COVID-19 Websites

Domain Registrars Take Action Against Fraudulent COVID-19 WebsitesAmerican domain registration companies are taking steps to combat coronavirus-related fraud.  Budget hosting provider Namecheap Inc. has halted automated registration of website names that reference the COVID-19 health crisis. The Los Angeles–based company's action comes...

Huawei’s Worrying New China Problem Just Got Worse: Here’s Why

Huawei used its 2019 results to threaten retaliation against the U.S. But the company now has serious problems closer to home.

Palantir, The $20 Billion, Peter Thiel-Backed Big Data Giant, Is Providing A Coronavirus Monitoring Tool To The CDC

Palantir will help the Centers for Disease Control keep on top of ventilator and mask needs to treat coronavirus victims, sources say.

Defense Evasion Dominated 2019 Attack Tactics

Researchers mapped tactics and techniques to the MITRE ATT&CK framework to determine which were most popular last year.

Watering-Holes Target Asian Ethnic Victims with Flash Update Decoy

About 10 compromised websites employ a multi-stage, targeted effort to fingerprint and compromise victims.

OpenWRT is vulnerable to attacks that execute malicious code

Enlarge (credit: OpenWRT) For almost three years, OpenWRT—the open source operating system that powers home routers and other types of embedded systems—has been vulnerable to remote code-execution attacks because updates were delivered over an unencrypted channel and digital...