Wednesday, April 24, 2019

European Parliament Approves Mass ID Database Plans

European Parliament Approves Mass ID Database PlansThe European Parliament has approved plans to boost physical security by implementing a mass identity database, although privacy concerns persist. The Common Identity Repository (CIR) will centralize the personal information of nearly all non-EU...

Addiction Center Patients Exposed in Privacy Snafu

Addiction Center Patients Exposed in Privacy SnafuA large trove of personally identifiable information (PII) has been leaked by an addiction treatment center after researchers found another unsecured Elasticsearch database online. Justin Paine, who is also a director of trust and...

Cyber Readiness Worsens as Attacks Soar

Cyber Readiness Worsens as Attacks SoarThe number of organizations in Europe and the US that have been hit by a cyber-attack over the past year has soared to over three-fifths (61%), according to a new report from Hiscox. The global...

Singapore Responds to Recent Cybersecurity Attacks

Singapore Responds to Recent Cybersecurity AttacksDuring a visit to San Francisco, Singapore foreign affairs minister Vivian Balakrishnan commented that the country cannot "go back to pen and paper. ... If people lose confidence in the integrity and security of...

WannaCry ‘Hero’ Pleads Guilty to Writing Malware in US Court

WannaCry 'Hero' Pleads Guilty to Writing Malware in US CourtMarcus Hutchins, also known as MalwareTech, has pleaded guilty in a US court to two counts of creating and spreading malware. The reverse-engineer is well known for his contribution to...

WannaCry “Hero” Pleads Guilty to Writing Malware in US Court

WannaCry "Hero" Pleads Guilty to Writing Malware in US CourtMarcus Hutchins, also known as MalwareTech, has pleaded guilty in a US court to two counts of creating and spreading malware. The reverse-engineer is well known for his contribution to...

Password “123456” Used by 23.2 Million Users Worldwide

Password "123456" Used by 23.2 Million Users WorldwideThe National Cyber Security Centre (NCSC) expects 42% of Britain online users to lose money due to fraud, according to its first UK Cyber Survey.  Released over the Easter weekend (April 21, 2019),...

Mueller Report: Individuals Deleted Data During Investigation

Mueller Report: Individuals Deleted Data During InvestigationAfter two years of investigating, yesterday Robert S. Mueller III finally released his investigation, Report on the Investigation into Russian Interference in the 2016 Presidential Election. The 448-page report looks into Russian interference...

Cyber-Attack Knocks the Weather Channel Off the Air

Cyber-Attack Knocks the Weather Channel Off the AirThe Weather Channel, based in Atlanta, Georgia, has been hit with a cyber-attack that knocked it off the air for 90 minutes.  On April 18, 2019, the organization took to its Twitter channel...

Facebook Uploaded 1.5 Million Email Contacts Without Consent

Facebook Uploaded 1.5 Million Email Contacts Without ConsentSince 2016, Facebook has reportedly harvested email contacts of 1.5 million users without their consent. According to Business Insider, the media outlet that broke the story, the company had been collecting the...

LinkedIn Data Found in Unsecured Databases

LinkedIn Data Found in Unsecured DatabasesA security researcher identified eight unsecured databases that held "approximately 60 million records of LinkedIn user information." GDI Foundation, where the security researcher is from, is a nonprofit organization with a mission to "defend the free...

TA505 Targets Financial and Retail Using ‘Undetectable’ Methods

TA505 Targets Financial and Retail Using 'Undetectable' MethodsA financially motivated gang is targeting retailers and financial institutions around the world using remote access software.  CyberInt's Research Lab has found that TA505 is using tactics and an off-the-shelf commercial remote administration tool, developed...

Fraudsters Exploit Sympathies Surrounding Notre Dame Tragedy

Fraudsters Exploit Sympathies Surrounding Notre Dame TragedyFraudsters are preying on the goodwill of people everywhere by using the tragic fire of Notre Dame to their advantage. According to research by security company ZeroFOX, cyber-criminals are "spreading misinformation about the disaster,"...

Cloud Security Spending Set to Top $12bn by 2023

Cloud Security Spending Set to Top $12bn by 2023Global spending on cloud security is set to grow nearly 18% to reach $12.7bn by 2023, with protection for public cloud deployments prioritized over the coming years, according to a new...

Dark Web Fraudsters Defraud Each Other with Fraud Guides

Dark Web Fraudsters Defraud Each Other with Fraud GuidesCyber-criminals are doing a roaring trade in “how-to” fraud guides for their fellow scammers, although many are out-of-date and incomplete, according to new dark web research from Terbium Labs. The cyber-intelligence firm...

Stuxnet Family Tree Grows

What a newly discovered missing link to Stuxnet and the now-revived Flame cyber espionage malware add to the narrative of the epic cyber-physical attack.
ZDNet

Another dark web marketplace bites the dust –Wall Street Market

Two major dark web marketplaces for buying illegal products shut down in the span of a month.

Google File Cabinet Plays Host to Malware Payloads

Researchers detect a new drive-by download attack in which Google Sites' file cabinet template is a delivery vehicle for malware.

Demonstration Showcase Brings DevOps to Interop19

Attendees will learn how orchestration and automation can be a part of network operations and security, even at smaller companies.
isBuzz

What Home Buying Can Teach Us About Continuous Monitoring

Companies have been brainwashed to solely rely on hiring major auditing companies to help monitor and audit their vendors’ security. Assessments from these traditional auditors are typically an annual point-in-time affair. With technology advancing much more frequently, this outdated...