With no vaccine yet developed, and with much of the world undergoing intense social distancing measures and near-total lockdown procedures, threat actors are flooding cyberspace with emailed promises of health tips, protective diets, and, most dangerously, cures. Attached to threat actors’ emails are a variety of fraudulent e-books, informational packets, and missed invoices that hide […]
The Zoom Windows client is vulnerable to UNC path injection in the client’s chat feature that could allow attackers to steal the Windows credentials of users who click on the link. When using the Zoom client, meeting participants can communicate with each other by sending text messages through a chat interface. When sending a chat message, […]
A company claiming to provide “the world’s most secure online backup” leaked metadata and customer information in over 135 million records after misconfiguring an online database, Infosecurity has learned. The trove included PII such as names, emails, phone numbers, business details (for corporate customers) and account usernames. The team at vpnMentor discovered the privacy snafu […]
As reported by Computer Weekly, Supermarket chain Morrisons has succeeded in its appeal to the Supreme Court against judgments that held it liable for an insider data breach caused by a disgruntled employee. The breach occurred in 2014 when payroll data on thousands of Morrisons employees was leaked on a file-sharing website by Andrew Skelton, a member of […]
The FCA has today announced that it will relax rules around the use of selfies for identification purposes of customers. This is something of a shift for the FCA, and poses some challenges for FS organisations in ensuring that they correctly verify someone’s identity.
There are lots of stories about the security around Zoom, BUT hackers are attacking more remote working tools than just Zoom, Ilia Kolochenko, Founder & CEO of web security company ImmuniWeb, warns.
In response to the recent Krebs On Security report that indicates a spear-phishing attack hooked a customer service employee at GoDaddy.com, the world’s largest domain name registrar, a cybersecurity expert offers perspective.