Hardware wallet creator Ledger has issued a warning to clients to be vigilant of Youtube accounts designed as phishing scams. According to a tweet published Jan. 27, Ledger claimed to be facing phishing attacks by way of hacked YouTube accounts. The company reiterated that they are not affiliated with the series of video streams and have reported the malicious accounts to YouTube. The majority of these phishing scams are centred around obtaining a user’s 24-word recovery seed for their Ledger wallet. Hackers have been hijacking YouTube accounts to run cryptocurrency scams in an attempt to trick users. In one reported case, a…
ISBuzz Team
In late December 2019, fuel and convenience store chain Wawa Inc. said a nine-month-long breach of its payment card processing systems may have led to the theft of card data from customers who visited any of its 850 locations nationwide. Now, fraud experts say the first batch of card data stolen from Wawa customers is being sold at one of the underground’s most popular crime shops, which claims to have 30 million records to peddle from a new nationwide breach. Now, on the evening of Monday, Jan. 27, a popular fraud bazaar known as Joker’s Stash began selling card data from “a new huge…
It has been reported that medical products maker Tissue Regenix Group said yesterday that its computer systems and a third-party IT service provider in the United States were accessed without authorization, sending its shares down as much as 22%. The company said it had taken the affected systems offline, appointed external specialists to investigate the incident and was in talks with relevant legal authorities, but did not provide details on when the incident occurred or came to light. The Leeds-based company’s ability to manufacture at its U.S. facility will be hit in the short term while the investigation continues, it said, adding that…
Following the news that a new piece of file-encrypting ransomware, which some are linking to Iran, has been targeting processes and files associated with industrial control systems (ICS), please see below for a comment from experts. https://twitter.com/VK_Intel/status/1222193507428753409
An internal confidential document from the UN was leaked, saying that 42 servers were “compromised” and another 25 were deemed “suspicious,” nearly all at its offices in Geneva and Vienna. Three of the compromised servers belonged to the Office of the High Commissioner for Human Rights, and two were used by the U.N. Economic Commission for Europe. The U.N. document also highlights a vulnerability in the software program Microsoft Sharepoint, which could have been used for the hack. https://twitter.com/leahmcelrath/status/1222585712920363008
The Ring doorbell app for Android sends personally identifiable information of customers to third parties without “meaningful” user knowledge or consent, according to new research by the Electronic Frontier Forum (EFF). Ring user names, private IP addresses, mobile network carriers, persistent identifiers, and sensor data are all sent to four analytics and marketing companies – branch.io, mixpanel.com, appsflyer.com, and facebook.com. EFF warned that these companies are able to combine this information to develop a “fingerprint” that follows the users as they interact with other apps and use their devices. Separately, an Amazon software engineer is calling for the shutdown of…
Cnet reported late today that a major Facebook data partner was hacked to gain access to advertising accounts and operate credit card scams. In October, hackers commandeered the personal account of a LiveRamp employee and used it to gain access to the company’s Business Manager account — allowing them to run ads using other people’s money. https://twitter.com/alfredwkng/status/1222628011008319491
Professional services firm PwC surveyed over 1,600 CEOs from around the world and found that cyber attacks have become the most feared threat for large organisations – and that many have taken actions around their personal use of technology to help protect against hackers. A total of 80 per cent of those surveyed listed cyber threats as the biggest threat to their business, making it the thing that most CEOs are worried about, ranking ahead of skills (79 per cent) and the speed of technological change. (75 per cent) 48 per cent CEOs surveyed said the risk of cyber attacks had…
A vulnerability in LabCorp’s website that hosts the company’s internal customer relationship management system, exposed thousands (at least 10,000) of medical documents that contained names, dates of birth, Social Security numbers of patients, lab test results and diagnostic data. While the system was password-protected, the part of the website that pulls patient files from the back-end system was left exposed. https://twitter.com/Jimbo0o0/status/1222430047795122176
Any organisation can face significant downtime, data loss and employee displacement if unprepared when a disaster strikes. All of these can have a serious and detrimental impact on the viability of a business. So, planning for them can help companies identify risks and take relevant steps to manage them. Business continuity supports the strategic objectives of an organisation by identifying its priorities and proactively building the capability to continue activities that support those priorities in the event of a disruption. It is an on-going process of continuous improvement that reflects the internal and external operating environment. If implemented and maintained…