Business email compromise (BEC) has overtaken ransomware and data breaches as the main reason companies filed a cyber-insurance claim in the EMEA (Europe, the Middle East, and Asia) region last year, said insurance giant AIG. According to statistics published in July, AIG said that BEC-related insurance filings accounted for nearly a quarter (23%) of all cyber-insurance claims the company received in 2018, ZDNet reported. https://twitter.com/GSalwaysrules/status/1168789766780981248
ISBuzz Team
It has been reported that British travel company Teletext Holidays has suffered a data breach in which some 212,000 customer call audio files were left unprotected on an online server for three years, exposing customer names, email addresses, home addresses, phone numbers and dates of birth. Verdict discovered the files – which have since been removed – on an unsecured Amazon Web Services server. The calls took place between the 10 April 2016 and 10 August 2016. They range from a few minutes to up to an hour and, based on accents, appear to involve UK customers.
The Twitter account of Twitter CEO Jack Dorsey, known by twitter handle @jack was apparently hacked last friday. The suspected method o fthe account takeover is a SIM swap, whereby attacker intercept the SMS message by changing teh association of SIM card number to different device. https://twitter.com/Shannon_Liao/status/1167889677732343810
MPs and House of Commons staff were hit with 20,973,102 cyber attacks through spam emails in the most recent financial year, according to official figures. The data, released under the freedom of information act, revealed on average 1.9 million junk email attacks were sent to Parliamentary staff including phishing, viruses and malware, all of which was blocked by the Parliamentary estate’s security systems. A Parliamentary Estate spokesman refused to provide a full breakdown of the a type of action blocked, saying, “This level of detail would reveal information about our security operations and network set-up which would be useful to potential…
It has been reported that Cisco is urging customers to install updates for a critical bug affecting its popular IOS XE operating system that powers millions of enterprise network devices around the world. The bug has a rare Common Vulnerability Scoring System (CVSS) version 3 rating of 10 out of a possible 10 and allows anyone on the internet to bypass the login for an IOS XE device without the correct password.
In response to multiple news reports that hundreds of dentist’s offices have been attacked by ransomware this week as a result of software providers Digital Dental Record and PerCSoft, two Wisconsin-based companies who collaborated on DDS Safe a dental records and patient information back-up and security organization. An expert with the Shared Assessments Program, the member-driven leaders in third party risk management, offers perspective.
Digital fingerprints are being sold in the Richlogs Marketplace according to a new report from IntSights. The report reveals thatdigital fingerprints which include the full fingerprinting of a user’s web browser and computer characteristics, allows an attacker to almost flawlessly impersonate the victim. https://twitter.com/KeoXes/status/1164203447870267393
New survey reveals which applications security professionals believe are worst at spreading malware A new study from Gigamon has revealed that 17 percent of organisations are adding as many ten new applications into enterprise networks every day, however 14 percent do not have policies in place to manage their security which could be putting sensitive corporate data at risk. The study, which was carried out at Infosecurity Europe and studied the attitudes of 217 IT professionals, also revealed that 26 percent of organisations have no idea how many applications are being added to their network each day, while 11 percent do…
According to recent research from Kaspersky, the number of worldwide phishing attacks detected by Kaspersky hit 129.9 million during the second quarter of 2019. During the most recent quarter, the average percentage of spam in global mail traffic hit 57.6%, up 1.67 percentage points from the previous year’s quarter The largest share of spam was seen in May at 58.7% Banks received the greatest percentage of phishing emails at 30.7%, followed by payment systems at 20.1%, global Internet portals at 18%, and social networks at 9% As usual, spammers and cybercriminals used seasonal events and topics in the news to catch the…
Security researchers at Google have found evidence of a “sustained effort” to hack iPhones over a period of at least two years.The attack was said to be carried out using websites which would discreetly implant malicious software to gather contacts, images and other data. Google’s analysis suggested the booby-trapped websites were said to have been visited thousands of times per week, the BBC reported.