It was reported today that Montreal’s STM public transport system is the latest victim of a ransomware attack that has affected its services and online systems.
ISBuzz Team
Cisco Reports Privacy and Security Concerns Increase in Today’s Remote World News Summary: Two new global surveys highlight the challenges and opportunities of the accelerated transition to a cloud-first, remote world that demands us to be secure, connected, and productive from anywhere. IT teams were not fully prepared for the sudden transition to remote work. Secure access and endpoint security continue to be a top challenge in enabling hybrid work environments going forward. Consumers and workers voice skepticism around the privacy protections in remote work technologies and the trustworthiness of companies to protect their data as their healthcare, education, work, and social lives…
Data reveals the top 10 cities for Technology A new study from Business Fibre reveals the best cities to be a tech student around the world London ranks highest as the overall winner, offering the highest number of universities with technology & engineering courses (36) as well as boasting the highest number of Tech companies 509300 Jerusalem tops the list as the city investing the most money into tech-related research (4.8% of the countries GDP) October 2020: A new index by Business Fibre has analyzed 34 of the world’s Organisation for Economic Co-operation and Development (OECD) capital cities to find 2020’s best…
Today, the NSA issued the Cybersecurity Advisory “Chinese State-Sponsored Actors Exploit Publicly Known Vulnerabilities” – a list of 25 known vulnerabilities that it warns are currently being exploited actively “against networks of interest that hold sensitive intellectual property, economic, political, and military information. Since these techniques include exploitation of publicly known vulnerabilities, it is critical that network defenders prioritize patching and mitigation efforts.
Researchers from Tel-Aviv based ‘Pandora Security’ have discovered a new wave of SS7 attacks that targeted at least twenty subscribers of the ‘Partner Communications Company’ (former ‘Orange Israel’) telecom services provider and these targets are also members of cryptocurrency projects. The actors were well prepared and feared that they have an account password and now targetting SMS codes to defeat two-factor authentication.
The ICO has updated its data security trends – and misdirected emails continue to top the list of named incidents, with them being a 44% bigger risk than phishing attacks.
A hacker has breached the forum of Albion Online, a popular free medieval fantasy MMORPG, and stole usernames and password hashes, the game maker disclosed on Saturday. “The intruder was able to access forum user profiles, which include the email addresses connected to those forum accounts,” said Sandbox Interactive GmbH, the company behind Albion Online. The attacker also harvested encrypted passwords. Sandbox Interactive said the passwords were hashed with the Bcrypt password-hashing function and then salted with random data to make it harder for attackers to reverse and crack the password. “These can NOT be used to log in to Albion Online, the website or the forum, nor can they…
It has been reported that The US Department of Justice has unsealed today charges against six GRU officers believed to be members of Sandworm, one of today’s most advanced state-sponsored hacking groups. Their attacks span the last decade and include some of the biggest cyber-attacks known to date, including trying to undermine UK efforts to hold Moscow accountable for the Salisbury spy poisoning. The charging announcement came as Britain accused Russian cyber spies of attacking the 2020 Olympics and Paralympics before they were postponed, and of posing as Chinese and North Korean hackers to target the 2018 games.
Ireland’s Data Protection Commissioner is investigating Instagram over how the platform handles personal data of children. If the company has broken any privacy laws, Facebook, the parent company could be liable to pay a huge fine. Recently, reports highlighting Instagram’s inability to protect data gained traction online. According to the reports, Instagram allowed email addresses and phone numbers of minors, or those aged below 18, to become public. Full story here: https://www.bbc.co.uk/news/business-54594825
The huge Twitter hack that occurred back in July came about due to stolen VPN credentials, according to TechRadar. It has now been revealed that Twitter employees were tricked into handing over their account details by hackers that had managed to create a site that looked identical to the genuine VPN login page. The hackers pretended to be from the social network’s internal IT department, telephoning members of staff to ask for the relevant credentials. Such claims were believed because VPN issues were commonplace at the time.