Parliament has used its legal powers to seize internal Facebook documents in an extraordinary attempt to hold the US social media giant to account after chief executive Mark Zuckerberg repeatedly refused to answer MPs’ questions. The cache of documents is alleged to contain significant revelations about Facebook decisions on data and privacy controls that led to the Cambridge Analytica scandal. It is claimed they include confidential emails between senior executives, and correspondence with Zuckerberg. Commenting on Parliament’s intentions and the possible implications for Facebook is Paul Bischoff, Privacy Advocate with Comparitech. Paul Bischoff, Privacy Advocate at Comparitech: “Parliament’s seizure of the documents is mainly…
ISBuzz Team
British citizens are among the most afraid in Europe of cyberattacks taking place during elections, a report by the European Commission has found. Three out of four voters in the UK are concerned about widespread hacking while casting their vote, the report said. This level of concern was only beaten by Spain, where 77pc said they were afraid of such attacks. The survey asked more than 27,000 individuals from across the 28 EU member states about their concerns over disinformation campaigns, and whether they thought data breaches and cyberattacks would interfere with electoral processes. Corin Imai, Senior Security Advisor at DomainTools: “When we consider how disinformation campaigns…
It has been reported that two years after the chaotic Mirai botnet blocked access to major websites using hacked consumer routers and other IoT devices, a new variant is taking aim at x86 Linux servers in the enterprise. Sean Newman, Director Protect Management, Corero Network Security explains the attack. Sean Newman, Director Protect Management at Corero Network Security: “Although smaller damaging attacks are happening all the time, we haven’t seen a significant sized DDoS attack since Memcached back in February this year. This has mainly been attributed to the rise in popularity of cryptocurrency mining, as a more immediately profitable use…
Following the announcement that Uber has been fined £385,000 by the ICO over ‘a series of avoidable data security flaws’ which allowed hackers to collect sensitive information on 2.7 million customers, IT security experts commented below. Rich Campagna, CMO at Bitglass: “This fine shows that even the most prominent public organisations need to pay more attention to data security policies and put in place appropriate measures to keep personal data safe. Many companies continue to display poor stewardship over the personal details belonging to customers, employees, and other parties. Unless organisations begin to respect the importance of protecting customer data, we will continue to…
Atrium Health, previously Carolinas HealthCare System, said today that data of about 2.65 million patients including addresses, dates of birth and social security numbers may have been compromised in a breach at its third-party provider AccuDoc Solutions. Atrium, which provides healthcare and wellness programs throughout the Southeast region in the United States, said a review revealed an unauthorized access to AccuDoc’s databases between Sept. 22 and Sept. 29. Pravin Kothari, CEO at CipherCloud: “Just when we thought things might be improving in healthcare data security, the Atrium Health Breach repositions 2018 as a record year for healthcare cyber attackers. In the…
In response to findings that a new Mirai variant is targeting x86 Linux servers running Hadoop YARN (Yet Another Resource Negotiator) rather than IoT devices, a cybersecurity expert with Corero offers insight. Sean Newman, Director Product Management at Corero Network Security: “Although smaller damaging attacks are happening all the time, we haven’t seen a significant sized DDoS attack since Memcached back in February this year. This has mainly been attributed to the rise in popularity of cryptocurrency mining, as a more immediately profitable use of hijacked CPU resource, but you just knew it would only be a matter of time before the next…
43 Percent of Firms Do Not Know if Devices Accessing Corporate Data Have Downloaded Malware Bitglass, the Next-Gen CASB company, has released its 2018 BYOD Security Report. The analysis is based on a survey of nearly 400 enterprise IT experts who revealed the state of BYOD and mobile device security in their organizations. According to the study, 85 percent of organizations are embracing bring your own device (BYOD). Interestingly, many organizations are even allowing contractors, partners, customers, and suppliers to access corporate data on their personal devices. Amidst this BYOD frenzy, over half of the survey’s respondents believe that the volume…
Jon Fielding, Managing Director, EMEA at Apricorn: “Whatever the future holds in term of new and advancing technologies, the questions we need to answer are the same: what are the security implications, and how do we manage them? Everyone has a view on this, but the overarching response should always be to revert to basic security best practice. The biggest threats to enterprise data assets are the same ones we were worried about last year – and even a decade ago. Ultimately, our goals remain unchanged: data protection, compliance, breach avoidance, and – worst case scenario – incident response and remediation.…
The German government has revealed plans to issue guidelines and rules for securing Small Office and Home Office (SOHO) routers. Published by the German Federal Office for Information Security (BSI), the rules have been put together with input from router vendors, German telecoms, and the German hardware community. Once approved, router manufacturers don’t have to abide by these requirements, but if they do, they can use a special sticker on their products showing their compliance. While Germany isn’t passing official laws, it will become the first country that tries to pass any kind of router-specific guidelines. Lamar Bailey, Director of Security Research and Development…
Krebs on Security reported today that Half of all Phishing Sites Now Have the Padlock and warned: “Maybe you were once advised to “look for the padlock” as a means of telling legitimate e-commerce sites from phishing or malware traps. Unfortunately, this has never been more useless advice. New research indicates that half of all phishing scams are now hosted on Web sites whose Internet address includes the padlock and begins with “https://”… The presence of the padlock does not mean the site is legitimate, nor is it any proof the site has been security-hardened against intrusion from hackers. “In response, security experts commented…