March 20, 2024
Via: Help Net SecurityData loss is a problem stemming from the interaction between humans and machines, and ‘careless users’ are much more likely to cause those incidents than compromised or misconfigured systems, according to Proofpoint. While organizations are investing in Data Loss Prevention […]
January 30, 2024
Via: Security AffairsResecurity conducted a thorough scan of the Dark Web and identified over 1,572 compromised customers of RIPE, Asia-Pacific Network Information Centre (APNIC), the African Network Information Centre (AFRINIC), and the Latin America and Caribbean Network Information Center (LACNIC), resulting from […]
January 10, 2024
Via: The RegisterUS hospitals will be required to meet basic cybersecurity standards before receiving federal funding, according to rules the White House is expected to propose in the next few weeks. This comes as hospitals and health clinics nationwide continue to be […]
December 21, 2023
Via: The RegisterNASA’s Office of Inspector General has run its eye over the aerospace agency’s privacy regime and found plenty to like – but improvements are needed. In an audit [PDF] published Tuesday, the OIG found NASA has a “comprehensive privacy program […]
December 11, 2023
Via: The RegisterNorton Healthcare, which runs eight hospitals and more than 30 clinics in Kentucky and Indiana, has admitted crooks may have stolen 2.5 million people’s most sensitive data during a ransomware attack in May. During the intrusion, the criminals accessed names, […]
September 29, 2023
Via: Security AffairsOn June 5th, our researchers discovered a misconfigured Amazon Web Services (AWS) bucket storing nearly 48,000 files. A bucket is a container for storing data within AWS’s cloud storage system. The misconfiguration exposed the repository’s contents. According to our team, […]
November 22, 2022
Via: Security WeekOrganizations can use Algolia’s API to incorporate into their applications functions such as search, discovery, and recommendations. The API is used by over 11,000 companies, including Lacoste, Slack, Medium, and Zendesk. CloudSEK says it has identified 1,550 applications that leaked […]
Application security, Security
October 6, 2022
Via: Dark ReadingLeading cybersecurity software provider Hornetsecurity has found an urgent need for greater backup for Microsoft Teams, with nearly half of users (45%) sending confidential and critical information frequently via the platform. Research commissioned by the company highlights the often-overlooked need […]
August 18, 2022
Via: Panda SecurityA hacker attack hit Twitter after an unknown individual managed to steal the records (emails and phone numbers) of approximately 5.4 million Twitter users. The issue with Twitter’s cyber security was reported via a bug bounty portal in January 2022, […]
Data loss, Hacker, Threats & Malware
August 15, 2022
Via: TechRadarA hacker claims to have breached Shanghai’s Covid app and stolen the personal user data found there According to a Reuters report, a cybercriminal going by the name XJP took to the hacker forum Breach Forums, to advertise a database […]
July 11, 2022
Via: Help Net SecurityRecently, Normalyze, a data-first cloud security platform, came out of stealth with $22.2M in Series A funding. This was the perfect time to catch up with co-founder and CEO Amer Deeba. In this interview with Help Net Security, he talks […]
July 7, 2022
Via: Help Net SecuritySecurity teams have a challenging job. They must manage an ever-expanding attack surface and protect huge volumes of data from bad actors who are constantly evolving their attack techniques. Research suggests roughly 21 billion devices could be connected to the […]
July 6, 2022
Via: Security WeekIn a post on the online hacking forum Breach Forums last week, someone using the handle “ChinaDan” offered to sell nearly 24 terabytes (24 TB) of data including what they claimed was information on 1 billion people and “several billion […]
Data loss, Threats & Malware, Virus & Malware
July 5, 2022
Via: Dark ReadingA routine scan of the NPM open source code repository in April turned up several packages using a JavaScript obfuscator to hide their true function. After further investigation, analysts with ReversingLabs reported they have uncovered a campaign dating back at […]
July 5, 2022
Via: Security WeekA sample of 750,000 entries posted online by the hacker showed citizens’ names, mobile phone numbers, national ID numbers, addresses, birthdays and police reports they had filed. AFP and cybersecurity experts have verified some of the citizen data in the […]
June 30, 2022
Via: MalwarebytesAMD is investigating the claim that the RansomHouse extortion group has its hands on more than 450GB of the company’s data.AMD’s breach revelation came to light after RansomHouse teased on Telegram about selling data belonging to a popular ‘three-letter company […]
Cyber-crime, Data loss, Identity theft, Threats & Malware
June 8, 2022
Via: TechRadarThe Federal Bureau of Investigation (FBI) has taken down an underground marketplace that was used to sell personally identifiable information on US citizens. Together with the Department of Justice (DoJ), the Internal Revenue Service (IRS), and the police force of […]
June 6, 2022
Via: Security WeekThe server, the researchers say, was left connected to the Internet and did not require a password to allow access to the data within. Thus, it exposed more than one million records representing the personally identifiable information (PII) of 30,000 […]
April 20, 2022
Via: Security AffairsAnonymous and groups linked to the famous collective continues to target Russian organizations, the hacktivist are breaching their systems and leak stolen data online. Below the organizations breached in the last three days, since my previous update: Tendertech is a […]
January 20, 2022
Via: Security WeekHackers seized ICRC data of more than 515,000 vulnerable people, including people who have fled conflict and others in detention, the Geneva-based organization said this week. It was not immediately clear who was behind the breach, but on Thursday the […]