In response to the new 2018 breach report from cybersecurity watchdogs with DLA Piper that European companies experience 60,000 data breaches in last 8 months. Experts Commented below: Byron Rashed, VP of Marketing at Centripetal Networks: “It’s no surprise the amount of data breaches that are now reported. Before GDPR, it may not have been reputationally feasible to report data breaches. However, with GDPR, it’s mandatory. Whenever a regulation is enacted, it requires a large amount of internal and external resources as well as capital investment to ensure compliance. Many organizations in the EU were not investing in the proper…
ISBuzz Team
It has been reported that a Chinese nation-state hacking group known as APT10 has hacked and stolen data from Visma, a Norwegian company that provides cloud-based business software solutions for European companies. The intrusion into Visma’s network took place on August 17, 2018, according to a joint report published today by US cyber-security firms Rapid7 and Recorded Future. https://twitter.com/browninfosecguy/status/1094377163006963714 Sam Curry, Chief Security Officer at Cybereason: “As I commented in my last blog, we so often only know about cyber conflict when it goes wrong. It’s important to state right up front that there is no shame in being targeted…
Cybercriminals are launching bot networks to circumvent ads.txt protections, which are designed to allow publishers to list authorized sellers of their inventory according to security researchers at DoubleVerify. https://twitter.com/doubleverify/status/1093562537507995648 Chris Olson, CEO at The Media Trust: “It is absolutely crucial for all players along the ad supply chain to know who they’re doing business with, and only do business with players they trust. For publishers, that means closely and continuously monitoring all the domains and code executing in their digital environment. This will show them who’s there and how these players are affecting consumers who visit their sites or use…
An EE customer has said she was stalked by an ex-partner who worked at the firm after he accessed her personal data without permission. Francesca Bonafede’s number was switched to a new handset and her address and bank details were accessed. She said the company failed to take the data breach seriously and she had to involve the police. https://twitter.com/TheOtherMcClane/status/1093931972810936322 Expert Comments below: Anna Russell, VP at comforte AG: “Data abuse or theft by company insiders is something that happens quite regularly. A research study from 2018 found that about 1 out of 4 data breaches are caused by employees…
Apps like Abercrombie & Fitch, Hotels.com and Singapore Airlines also use Glassbox, a customer experience analytics firm, one of a handful of companies that allows developers to embed “session replay” technology into their apps. These session replays let app developers record the screen and play them back to see how its users interacted with the app to figure out if something didn’t work or if there was an error. Every tap, button push and keyboard entry is recorded — effectively screenshotted — and sent back to the app developers. https://twitter.com/SteffordPrawn/status/1094540347592658945 Ilia Kolochenko, CEO at High-Tech Bridge: “In many countries, such…
Australian authorities are investigating an attempt to hack into the national parliament’s computer network, two senior lawmakers said on Friday, but there was no evidence yet that any data had been accessed or stolen. https://twitter.com/petrovdempski/status/1094427413642207232 Experts Comments below: Dr Darren Williams, CEO and Founder at BlackFog: “Nobody is safe from cyber-attack, not even governments. Whilst Australian lawmakers have claimed there’s no sign that the hacking attempt aimed to “disrupt or influence electoral or political processes” we are seeing signs of war being waged through coordinated cyber-attacks targeting both citizens and institutions for both political and monetary gain and governments must…
The numbers for Denial-of-Service attacks were down in the 4th quarter but the ones that got through were more stealth and persisted for a longer duration according to a report from Kaspersky. https://twitter.com/MarkZuplaso/status/1094186881418293248 Justin Jett, Director of Audit and Compliance at Plixer: “DDoS attacks are becoming extremely clever in how they hide within the network. The latest data show attacks are down, but they last longer, which means when businesses are being attacked, they have reduced productivity compared with shorter attacks. This makes catching a DDoS even more important. Specifically, IT professionals must be able to know from where the…
STEALTHbits Technologies announced mitigation capabilities for a recently-discovered* Microsoft Exchange privilege escalation attack that lets any user become a Domain Admin. STEALTHbits is making the capabilities available as a free trial for 30 days upon registration and request. The attack method was detailed in the January 24, 2019 post Abusing Exchange: One API call away from Domain Admin of researcher Dirk-jan Mollema. It combines known vulns to achieve privilege escalation and attack Active Directory, as follows: An attacker sends a request to Exchange that causes Exchange to respond with an NTLM authentication request over HTTP; Exchange responds, and because NTLM…
This morning noted security blogger Brian Krebs reported on a highly targeted, malware-laced phishing campaign landed in the inboxes of multiple credit unions last week. The missives are raising eyebrows because they were sent only to specific anti-money laundering contacts at the CUs. https://twitter.com/briankrebs/status/1093858644507148288 Experts Comments below: Colin Bastable, CEO at Lucy Security: “This phishing campaign is a classic, multi-stage “Golden Keyholder” attack. A Golden Keyholder is a highly trusted employee or associate, with access to and influence over core systems, people and information. In this case, it appears that a spearphishing attack was launched on a Golden Keyholder in…
Mumsnet, has experienced a data leak. Users logging into their accounts were given access to other users’ details, with account information being “switched”. It appears this happened while Mumsnet was migrating services to the cloud. https://twitter.com/CrispSurv/status/1094538508084088837 Experts Comments below: Stephen Gailey, Solutions Architect at Exabeam: “The Mumsnet breach is not that shocking, at least to me. It is not the activity of malicious hackers trying to steal data; instead it seems to be the result of poor programming – again. And this particular problem is also nothing new. Banks and other online organisations have been experiencing just this problem for…