Personal information such as private addresses and email addresses were vulnerable to exposure in one the world’s most trending apps Check Point Research revealed today that it uncovered multiple vulnerabilities in TikTok which could have allowed attackers to manipulate content on user accounts, and even extract confidential personal information saved on these accounts. TikTok is used mainly by teenagers and kids to share, save and keep private (and sometimes very sensitive) videos of themselves and friends. The research found that an attacker could send a spoofed SMS message to a user containing a malicious link. If the user clicked on…
ISBuzz Team
Chase Bank is going to ban third-party access to customer accounts through customer passwords according to new reports. It is an effort to tighten up security on customer accounts.
As reported by Sky News, a US government-operated website has been hacked by a group claiming to be acting in retaliation for the killing of Iran’s top general. Those who clicked on the American Federal Depository Library Programme (FDLP) site on Saturday night were faced with a black page claiming to be from the Islamic Republic of Iran. It showed a picture of President Donald Trump being hit in the face by a fist with blood dripping from his mouth. Underneath it said “Hacked by Iran Cyber Security Group Hackers” with a claim that the attack was “only a small part”…
In response to US actions against Iran and the potential of escalation on the cyber front, three cybersecurity experts with KnowBe4 with strong defense and national security background offer perspective.
A Japanese search engine used for locating Love Hotels in Japan has been breached. Similar to the Ashley Madison breach, customers are awaiting the fall-out should the data be posted online.
Iran has already demonstrated intent and capability to attack inside the US as well as a high tolerance for escalating risk, specifically during the 2011 plot to assassinate the Saudi Ambassador to the US inside the US. Therefore current risk of escalatory action by Iran is particularly high, given that the “red lines” are not clearly defined in cyberspace and the Iranian government will be under intense internal pressure to take strong action. In 2011-2012, Iran went after banks for implementing sanctions and we should now anticipate actions against the contractors involved in the development and deployment of drones. The…
The Sun revealed that the Travelex website is still down, four days after a cyber attack on New Year’s Eve. The currency provider has taken down its site and app, leaving some customers struggling to access funds. The currency exchange provides services to several major banks including Sainsbury’s Bank, Asda, Barclays, HSBC and First Direct. The Sun HACK ATTACK Travelex foreign currency website STILL down after 4 days following cyber attack https://www.google.co.uk/amp/s/www.thesun.co.uk/money/10680248/travelex-foreign-currency-website-still-down/amp/
A cryptocurrency exchange has been forced to reset customer passwords after a suspected data leak via social media, although its incident response efforts caused more confusion among some users. US-based exchange Poloniex informed around 1% of its customer base that they had to reset their log-ins, following a tweet claiming to contain a list of leaked email/password combos.The company released a statement in a blog: “Our immediate priority was to ensure that our customers’ accounts were safe. As a result, we reset the passwords of potentially impacted customers, as users often reuse passwords or minor variants of the same password,”…
As we charge into the third decade of the 21st century, it’s time to ask: so what will happen next with cybersecurity? We reached out to 100+ cybersecurity experts with diverse backgrounds for their predictions and below are the responses. This is the most comprehensive post predicting the Cybersecurity landscape in 2020.
Austria’s foreign ministry has been targeted by a cyber-attack that is suspected to have been conducted by another country. The ministry said the seriousness of the attack suggested it might have been carried out by a “state actor”. The hack started on Saturday night and experts warn it could continue for several days. A Russian group called Fancy Bear was suspected to have been involved and was blamed for a similar attack on the German parliament in 2015. The full story can be found here: https://www.bbc.co.uk/news/world-europe-50997773