home.aspx

. home.aspx home.aspx

ARCHIVED NEWS

CLICK2GOV BREACH PAYMENT CARDS SOLD ON DARK WEB

Dec 19, 2018

In August 2017, Click2Gov software, a payment technology widely used by local governments to process utility payments, was the victim of a breach in which Oceanside, California, was the first in a long line of compromised municipalities. Many of the payment cards stolen from the compromised records ...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=57025702

HACKERS DEPART FROM LARGE DARK WEB MARKETS

Dec 19, 2018

Cyber-criminals are increasingly downsizing from selling their wares on large dark web marketplaces in a bid to build trust with buyers, according to McAfee. The security giant claimed in its latest threat report for Q3 that the trend can also be seen as a response to law enforcement activity. Polic...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=57075707

NASA STAFF AT RISK AFTER SERVER BREACH

Dec 19, 2018

NASA has been sitting on a potentially serious breach of employees’ personally identifiable information (PII) after revealing a server may have been compromised months ago. In an HR message from the Office of the Chief Human Capital Officer, the US space agency claimed its cybersecurity staff ...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=57095709

AI YIELDS SECURITY BENEFITS, NOT WITHOUT PROBLEMS

Dec 19, 2018

Artificial intelligence (AI) is expected to grow in the cybersecurity marketplace, likely to $18.2 billion by 2023, according to a report from P&S Market Research. AI is still only in its nascent stages, though, and the technologies present several obstacles that organizations must overcome, acc...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=57105710

A RESTAURANT'S NEXT BIG FINANCIAL RISK ISN'T BAD REVIEWS — IT'S DATA BREACHES

Dec 19, 2018

As hackers find new ways to gather coveted personal information, restaurants are quickly becoming a target for the internet underworld. Several customer accounts were breached on Dunkin's DD Perks mobile rewards program in November, but Dunkin' certainly wasn't the only chain to get hit ...

CIO DIVE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=57135713

FACEBOOK REPORTEDLY GATHERING PERSONAL DATA FROM TINDER, PREGNANCY+, OTHER APPS

Dec 19, 2018

Facebook may be gathering some of your most personal information. Android apps like Tinder, Grindr and Pregnancy+ are sharing sensitive user information with Facebook, according to a Wednesday report from German mobile security company Mobilsicher. The information reportedly includes dating profiles...

CNET
READ MORE

https://informationsecurity.report/news-article.aspx?ID=57145714

FINALLY, A MEANINGFUL CONGRESSIONAL REPORT ON STEMMING CYBERSECURITY ATTACKS

Dec 12, 2018

As a new Congress arrives next month, expect a whirlwind of activity on the cybersecurity and privacy fronts. From major data breaches to the growing consumer data privacy morass, the frenetic pace of Washington developments will heat up. Most of this activity will obscure the fundamentals of why we...

CSO
READ MORE

https://informationsecurity.report/news-article.aspx?ID=56915691

NEW VARIANT OF SHAMOON MALWARE UPLOADED TO VIRUSTOTAL

Dec 12, 2018

A new variant of the destructive Shamoon malware was uploaded to VirusTotal this week, but security researchers haven’t linked it to a specific attack yet. Also referred to as DistTrack, the sophisticated malware was initially observed in attacks against Saudi Arabian and other oil companies i...

SECURITYWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=56925692

GRAMMARLY LAUNCHES PUBLIC BUG BOUNTY PROGRAM

Dec 12, 2018

Grammarly, the popular service for checking grammar and spelling, this week announced the launch of a public bug bounty program. Grammarly has been running a private bug bounty program with HackerOne for more than a year. The program has nearly 1,500 participants and resulted in payouts totaling $50...

SECURITYWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=56935693

TOP 10 WORST PASSWORD FAILS OF 2018

Dec 12, 2018

The 2018 worst password fails, by that Dashlane means worst offenders this year, are: 1. Kanye West for unlocking his iPhone on TV in the White House with 000000. 2. The Pentagon for protecting weapon systems with default passwords, as well have having such pitiful admin passwords that the GAO audit...

CSO
READ MORE

https://informationsecurity.report/news-article.aspx?ID=56945694

AI SET TO SUPERCHARGE PHISHING IN 2019

Dec 12, 2018

The coming year will see a mix of old and new as phishing is supercharged with AI but reported vulnerabilities continue to cause organizations problems, according to Trend Micro. The security giant claimed in its predictions report this week that phishing will continue to grow in popularity as explo...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=56955695

BUG HUNTING IS CYBERSECURITY'S SKILL OF THE FUTURE

Dec 12, 2018

The vast majority of white hat hackers who reported that they were looking for jobs in cybersecurity said that their bug hunting experience helped them land a job, according to Bugcrowd’s 2018 Inside the Mind of a Hacker report. The report looked at the community of white hat hackers to better...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=56965696

TRENDING NEWS

ATTACKERS TAKE NEW APPROACH TO INSTALLING CRYPTOMINERS

Jan 17, 2019

Security technology on cloud servers is supposed to help block and prevent the installation of malware, but what happens when attackers figure out how to uninstall security technology as part of a hacking campaign? According to a report released on Jan. 17 by Palo Alto Networks' Unit 42 security...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58405840

WHY ENTERPRISES NEED TO CRACK DOWN ON LAZY LOGINS

Jan 17, 2019

Everybody does it. You do it. It’s the easy way out, but it’s also an easy way to a security blunder. The “it” in this case is using your email address as your user name for websites and other places where a login is necessary. Chances are you use one of a couple email addres...

EWEEK
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58415841

RESEARCHERS FIND 87GB TROVE OF BREACHED LOG-INS

Jan 17, 2019

A leading security researcher has warned of a major trove of breached data being shared on hacking sites, containing over 772 million unique email addresses and more than 21 million unique passwords. Troy Hunt, owner of the Have I Been Pwned (HIBP) breached credentials site, explained that he was al...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58425842

ATTACKERS LEVERAGE OPEN SOURCE IN NEW BYOB ATTACK

Jan 17, 2019

An attack leveraging the open-source Build Your Own Botnet (BYOB) framework has reportedly been intercepted by Israeli cybersecurity firm Perception Point’s incident response team. According to the team, this appears to be the first time the BYOB framework has been found to be used for fraudul...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58435843

2018 PROVED HIGHEST FUNDING YEAR FOR CYBERSECURITY

Jan 17, 2019

Despite a 28% decrease in cybersecurity startups during 2017, global venture capital funding for cybersecurity rebounded with record high investments, according to Strategic Cyber Ventures. Though last year saw $5.3 billion in cybersecurity global ventures, Strategic Cyber Ventures called this an un...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58445844

VOIPO LEFT 7 MILLION LOGS UNENCRYPTED WITH NO PASSWORDS

Jan 17, 2019

Another California-based communications provider has announced a potential security incident, as VOIPo confessed that it left a database containing seven million call logs, six million text messages and other internal documents containing unencrypted passwords unprotected without a password. After s...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58455845

WEF: CYBER-ATTACKS A MAJOR GLOBAL RISK FOR NEXT DECADE

Jan 17, 2019

The vast majority of senior decision makers across the globe expect data theft and cyber-disruption to increase in 2019, according to the latest report from the World Economic Forum (WEF). The annual Global Risks Report for 2019 uses interviews with risk experts, business leaders, academics and othe...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58465846

OKLAHOMA GOVERNMENT LEAKS 3TB OF SENSITIVE DATA

Jan 17, 2019

Millions of sensitive files dating back decades have been exposed after 3TB of data on a storage server was left publicly exposed by the Oklahoma Securities Commission. Researchers at UpGuard made the discovery on December 7 last year and it was fixed a day later by the commission, part of the state...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58475847

IOT SECURITY MARKET SET TO GROW OVER 25 PERCENT ANNUALLY

Jan 16, 2019

A report predicts a growth rate of over 25 percent annually in the North American IoT security market. The market was valued at $1.7 billion in 2018 and is expected to reach $5.2 billion by 2023 at a compound annual growth rate (CAGR) of 25.1 percent, according to the report ‘Internet of Thing...

IOT TECH NEWS
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58335833

IT TEAMS HAVE ONE YEAR TO MOVE OFF WINDOWS 7

Jan 16, 2019

The UK’s National Cyber Security Centre (NCSC) has urged organizations still on Windows 7 to plan now for the end of extended support in a year’s time. The GCHQ arm reminded IT managers that the operating system will no longer receive free updates from January 14 2020. That will mean any...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58345834

MS WORD DOCUMENTS SPREADING .NET RAT MALWARE

Jan 16, 2019

A malicious MS Word document, titled “eml_-_PO20180921.doc,” has been found in the wild, and according to researchers at Fortinet's FortiGuard Labs, the document contains auto-executable malicious VBA code. Victims who receive and open the document are prompted with a security warnin...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58355835

FORTNITE VULNERABLE TO ACCOUNT TAKE-OVER ATTACK

Jan 16, 2019

Players who love to indulge in online battle should heed caution when playing Fortnite, according to researchers at Check Point who have disclosed vulnerabilities that could give a malicious actor access to a user’s account and their V-Bucks. In addition to gaining full access to a user’...

INFOSECURITY MAGAZINE
READ MORE

https://informationsecurity.report/news-article.aspx?ID=58365836

SPOTLIGHT

The Battle Of Mobile Security On The iPhone And Android Apps

The infographic will show you a match between the Android and iPhone security on apps, reviewing a consumer survey and bringing you tips on how best to protect your mobile banking. Who wins head to head, take a look and see!. Who wins head to head, take a look and see!

RESOURCES

Minister Gan encourages IHiS to press on, recover and rebuild

video

Minister for Health Gan Kim Yong spoke on the support for IHiS (Integrated Health Information System) and their staff as they learn from the cyberattack. He shared that the public healthcare family wa...
READ MORE

BenefitMall Hit by Months-Long Data Breach

blog article

The Dallas-based payroll firm BenefitMall announced on January 4 that nearly 112,000 customers may have had their personal information exposed during a four-month long data breach. The breach was disc...
READ MORE

Events

HOW TO MAXIMIZE CYBERSECURITY RISK RATINGS IN 2019

January 23-23, 2019

If you are a security or risk leader, you know that even with a formal third-party risk program in place, you are not effectively keeping track of all of your third parties. But there is something you can do, and that is to get help from a cybersecurity risk rating solution provider. According to Fo...

TOP 10 CLOUD SECURITY CONSIDERATIONS FOR 2019

January 23-23, 2019

Compliance and security requirements, across industries including Government, Education, Healthcare and Financial Services, are making Continuous Threat Monitoring an imperative for cloud-hosted applications and data. Organizations must meet Continuous Monitoring requirements for cybersecurity frame...

INTERNATIONAL CYBERSECURITY FORUM

January 22-23, 2019

The International Cybersecurity Forum is a platform aiming at promoting a pan-european vision of cybersecurity as well as to strengthen the fight against cybercrime. In line with the digital single market and data protection regulation, the FIC became THE reference event, bringing together all major...

THE FUTURE OF CYBER SECURITY MANCHESTER

January 24-24, 2019

Cyber security at the top of the agenda as the attack landscape widens. Cyber-attacks are diversifying, putting businesses at increasing risk. In 2017, multiple ransomware attacks such as the Wannacry cryptoworm that hit the NHS demanded bitcoins in exchange for the release of data. This is now evol...