FIFA, Hacked Again, Braces For New Revelations

FIFA acknowledged this week that its computer systems were hacked earlier this year for the second time, and officials from European soccer’s governing body fear they also might have suffered a data breach. UEFA officials were targeted in a so-called phishing operation in which third parties fool their targets into giving up password-protected login details, though the […]

Stolen Passwords From Data Breaches Used for Online Scam

The latest online scam by cybercriminals uses stolen passwords from data breaches to try and convince people that they have used the password to download spyware and that they have now caught them looking at adult sites. The next step is blackmail. Robert Capps, VP and Authentication Strategist at NuData Security: “Cybercriminals continue to steal […]

DemonBot DDoS Malware

Last week, news broke that an unsophisticated Linux-based botnet dubbed DemonBot is targeting exposed cloud servers using a vulnerability in Hadoop’s resource management tool to infect cloud servers with the botnet malware. Gavin Millard, VP of Intelligence at Product Marketing at Tenable “This isn’t the first time the YARN exploit has been used. Back in September […]

Google’s reCAPTCHA v3

security biscuit 2015

Google is introducing reCAPTCHA v3, designed to detect bad traffic without user interaction. Mike Bittner, Digital Security & Operations Manager at The Media Trust: “reCAPTCHA makes a good addition to any website security toolkit. However, given the increasing sophistication of malicious campaigns, such tools can be undermined. For instance, bots can manipulate the automated actions […]

SamSam Ransomware Campaign

You’ve probably seen the news that SamSam ransomware is still plaguing organisations across the US, with fresh attacks against 67 new targets — including at least one involved with administering the upcoming midterm elections. IT security experts commented below. Glen Pendley, Tenable, Deputy CTO at Tenable: “The latest SamSam ransomware campaign is interesting for a few reasons. […]

US Govt Network Compromised By Employee Looking At Adult Content

Centrify

Today, it has been reported that an employee of the US Geological Survey (USGS) viewing adult content at work has led to a government network being compromised by malware. Investigators have since found that the culprit had viewed over 9,000 sites at work. IT security experts commented below. Richard Walters, CTO at CensorNet: “This story is […]

Data Breach Fine In The UK Has Doubled In One Year

In light of the news this morning that the value of the average data breach fine in the UK has doubled in one year, please find below comment Kaspersky Lab. Kaspersky Lab: “Customers that entrust private information to the care of any online provider, should be safe in the knowledge that their data is stored securely. However, […]

Security v Speed – Why DevOps And Security Teams Need To Play Nicely To Stay Productive

It isn’t news that DevOps and IT security teams often struggle to align their departments and maintain a coherent balance between keeping a business secure and developing new applications to maintain customer interest.  While security processes are a necessity, they can be deemed by DevOps teams to be manual and cumbersome, blocking the agility that […]

Dashlane Research Finds Majority Of Two-Factor Authentication Offerings Fall Short

76% of Consumer Sites Fail to Offer Users Full Complement of 2FA Options Dashlane announces the results of its Two-Factor Authentication (2FA) Power Rankings. The rankings, which examined the prevalence of 2FA offerings among 17 top consumer websites in the United Kingdom, found that 76% of sites do not offer users a full set of 2FA options.  Dashlane researchers […]

Halloween Story: Scary Security Stats

It’s Halloween. Each year, Bitglass publishes a number of research reports focusing on different aspects of cybersecurity and breach trends in different industry sectors. Below is a list of some of the most alarming statistics included in Bitglass’ 2018 reports on malware, cloud security and breaches in financial services and healthcare. Scary Security Stats 44% […]