H&M has been hit with a $40m GDPR fine for illegally surveilling employees in Germany.
ISBuzz Team
A “nationally significant” vulnerability were discovered in Huawei equipment used in the UK’s telecommunications networks. Vulnerabilities are usually software design failures which could allow hostile actors (in particular the Chinese state when it comes to Huawei) to conduct a cyber attack. They are not necessarily intentional and can’t be seen as an indication of any hostile intent on the part of the developers themselves. More information: https://news.sky.com/story/gchq-discovered-nationally-significant-vulnerability-in-huawei-equipment-12086688
Blackbaud recently confirmed that bank details and passwords may have been stolen in a charity hack. Blackbaud suffered a data breach back in May, but the attack has resurfaced with new information coming out. The software developer originally paid the ransomware and confirmed bank details were not leaked. While the question around whether to pay for a ransomware attack or not divides opinion, this reinforces the need for transparency.
Facebook said it has filed a lawsuit in the US against two companies that used scraping to engage in an international data harvesting operation. These companies scraped data from Facebook, Instagram, Twitter, YouTube, LinkedIn and Amazon, in order to sell “marketing intelligence” and other services.
This morning marks the start of European Cybersecurity Month, with a focus on combating cyber scams, as well as a focus on developing and growing digital skills. This year’s ECM is particularly important, with industry research suggesting that cyberattacks during the coronavirus pandemic are up 30% compared to the same time last year. Also, with so many of us more reliant on the internet in an effort to minimise social interaction, the inevitable pivot to online shopping, online communication, and online working has increased the threats impacting most individuals, as well as organisations. The economic impact of cybersecurity threats is…
Almost half of UK residents admit to making security mistakes when they leave their home When you’re heading out of the door in a rush – perhaps late for a meeting or trying to beat the school run traffic – the security of our homes isn’t always at the forefront of our minds. Almost half of UK residents admit to making security mistakes when they leave their homes, according to new data from smart alarm systems specialist, SimpliSafe. When surveyed, 45% of people said they only check their front door – and maybe set a burglary alarm – when they…
According to data analyzed by the Atlas VPN research team, gamers are hit with 14.02 million credential stuffing attacks daily. A successful credential abuse attack steals the victim’s account and puts the owner’s credit card information as well as in-game assets at risk. Worth noting – veteran players might have thousands of dollars worth of items in their game inventory. Credential stuffing is a cyber-attack where fraudsters use large numbers of stolen credentials to log into individuals’ or companies’ accounts. This cyber-attack type is on the rise due to the high number of data breaches in the past years. While…
Now in its 17th year, Cybersecurity Awareness Month continues to play a critical role in raising awareness of the online threats faced by both organisations and individuals alike. This year’s theme – ‘Think Before U Click’ (#ThinkB4UClick) focuses on the importance of personal accountability: whether we’re checking personal emails or accessing the company server, diligence must always be exercised to avoid inadvertently opening the door to hackers. This year, attackers have doubled down on social engineering (i.e. phishing) to exploit the disruption caused by the Covid-19 pandemic and take advantage the subsequent spike in the use of online services. In…
On Sunday, Universal Health Services, one of the largest healthcare providers in the US, was hit by a ransomware attack. UHS published a statement on Monday, saying its IT network “is currently offline, due to an IT security issue.” UHS has 400 hospitals and healthcare facilities in the US and UK. According to reports, UHS employees have said the ransomware has the hallmarks of Ryuk, linked to a Russian cybercrime group known as Wizard Spider. More information: https://techcrunch.com/2020/09/28/universal-health-services-ransomware/
The Kylie’s Cosmetics has issued a statement to customers in relation to a security incident involving its eCommerce platform, Shopify. https://twitter.com/BBCWorld/status/1311254105936007168