A disgruntled IT contractor who hacked his ex-employer and deleted 1,200 Microsoft Office 365 accounts, was recently sentenced to two years of jail time. In light of this incident, security expert warns of insider threat which is often ignored.
ISBuzz Team
High street clothing retailer FatFace has told customers that some of their personal and card details could be at risk after its systems were hit by a ‘sophisticated criminal attack’ in January, according to This is Money. Chief executive Liz Evans sent an email to the affected customer notifying them of the breach by an unauthorised third party believed to have access to their personal information. FatFace has not yet disclosed the number of persons affected by the breach.
A recent Freedom of Information request found that the Department of Business, Energy and Industrial Strategy has lost a total of 306 mobile and laptop devices since 2019. This raises a lot of concerns and questions over the safety of any sensitive information stored on these devices.
Cybercriminals are attempting to take advantage of the popularity of Clubhouse to deliver malware that aims to steal users’ login information for a variety of online services, ESET malware researcher Lukas Stefanko has found. Disguised as the (as yet non-existent) Android version of the invitation-only audio chat app, the malicious package is served from a website that has the look and feel of the genuine Clubhouse website. The trojan – nicknamed “BlackRock” by ThreatFabric and detected by ESET products as Android/TrojanDropper.Agent.HLR – can steal victims’ login data for no fewer than 458 online services. The target list includes well-known financial…
Study Shows How Enterprise IT Leaders Clarify Cybersecurity Roles and Drive Hiring Success Infosec, the leading cybersecurity education provider, today released findings from its 2021 Cybersecurity Role & Career Path Clarity Study. The study surveyed over 370 cybersecurity leaders in the U.S. and Canada about resources used to structure cybersecurity job descriptions and development plans. It then compared responses to training investments, organizations’ abilities to fill open cybersecurity roles and sentiments toward resources like the National Initiative for Cybersecurity Education (NICE) Workforce Framework for Cybersecurity (NICE Framework) to provide insights on what drives cybersecurity talent management success. The study found…
This Sunday security researcher Marcus Hutchins discovered Microsoft Exchange servers are now being targeted by BlackKingdom ransomware. Marcus, MalwareTechBlog on Twitter, tweeted his findings that a threat actor was compromising all vulnerable Exchange servers via ProxyLogon vulnerability.
According to researchers, 91% of security leaders will be making API security a priority, while 80% would like to gain more control over their APIs.
Manga scanlation giant MangaDex has been temporarily shut down after suffering a cyberattack and having its source code stolen. MangaDex is one of the largest manga scanlation (scanned translations) sites where visitors can read manga comics online for free. According to SimilarWeb, MangaDex is the 179th most frequently visited site on the web, with over 76 million visitors per month.
Neustar-sponsored study reveals challenges and benefits of using threat feeds Threat data feeds can help organisations strengthen their cybersecurity posture, according to a new report from Ponemon Institute, the pre-eminent research centre dedicated to privacy, data protection and information security policy. Neustar Inc., a global information services and technology company and leader in identity resolution, sponsored the independently conducted study on the state of threat feed effectiveness in the United States and the United Kingdom. As cyberthreats proliferate, many organisations are using threat feeds with insights from domain name system (DNS) data to help IT security teams better understand threats…
News has broken that Computer giant Acer has been hit by a REvil ransomware attack where the threat actors are demanding the largest known ransom to date, $50,000,000. REvil is demanding a $50 million sum from Acer, offering until March 28 for the company to send over funds before any alleged stolen data is leaked.