Close Menu
  • Home
  • Articles
    • Attacks
      • BEC
      • Data Breach
      • DDoS
      • Evasion Attacks
      • Injection
      • Malware
      • MITM
      • Phishing
      • Ransomware
      • RCE
      • Social Engineering
      • Spoofing
      • Spyware
    • Business and Policy
      • BCP and DRP
      • GRC
      • Regulations
    • Data Protection
      • DLP
      • DRM
      • Encryption
      • IAM
    • Future, Trends and Insight
      • AI
      • Events & Community
      • Emerging Tech
      • Expert Panel
      • Interviews With Experts
      • Insights
      • Study & Research
    • Resources
      • Guides
      • Tools
      • Training & Education
    • Security
      • API
      • Apps
      • Cloud
      • Critical Infrastructure
      • Endpoint
      • Hardware
      • IoT
      • Mobile
      • Network
      • OT
      • Port Security
      • Security Architecture
      • Software Development
      • Supply Chain
      • Zero Trust
    • Threats and Vulnerabilities
      • Emerging Threats
      • Insider Threats
      • Risk Management
      • Threat Intelligence
      • Zero Day
  • News and Exclusives
    • Latest News
    • ISB Exclusive
    • Positive News
  • Who We Are
    • About Us
    • Information Security Buzz Expert Panel​
    • Write for Us
    • Media Pack
  • Contact Us
  • Newsletter
Facebook X (Twitter) LinkedIn
Facebook X (Twitter) LinkedIn
Information Security BuzzInformation Security Buzz
  • Home
  • Articles
    • Attacks
      • BEC
      • Data Breach
      • DDoS
      • Evasion Attacks
      • Injection
      • Malware
      • MITM
      • Phishing
      • Ransomware
      • RCE
      • Social Engineering
      • Spoofing
      • Spyware
    • Business and Policy
      • BCP and DRP
      • GRC
      • Regulations
    • Data Protection
      • DLP
      • DRM
      • Encryption
      • IAM
    • Future, Trends and Insight
      • AI
      • Events & Community
      • Emerging Tech
      • Expert Panel
      • Interviews With Experts
      • Insights
      • Study & Research
    • Resources
      • Guides
      • Tools
      • Training & Education
    • Security
      • API
      • Apps
      • Cloud
      • Critical Infrastructure
      • Endpoint
      • Hardware
      • IoT
      • Mobile
      • Network
      • OT
      • Port Security
      • Security Architecture
      • Software Development
      • Supply Chain
      • Zero Trust
    • Threats and Vulnerabilities
      • Emerging Threats
      • Insider Threats
      • Risk Management
      • Threat Intelligence
      • Zero Day
  • News and Exclusives
    • Latest News
    • ISB Exclusive
    • Positive News
  • Who We Are
    • About Us
    • Information Security Buzz Expert Panel​
    • Write for Us
    • Media Pack
  • Contact Us
  • Newsletter
Subscribe
Information Security BuzzInformation Security Buzz
Home - Archives for ISBuzz Team - Page 503

ISBuzz Team

ISBuzz Team
  • Website

HealthEquity Breach Affects 23,000

ISBuzz TeamJune 15, 20183 Mins Read

HealthEquity, a custodian of more than 3.4 million health savings accounts, has had a data breach after one employee’s email account was accessed by an unauthorized person. HealthEquity also handles flexible spending accounts, 401(k) accounts and health reimbursement arrangements, providing a range of services for about 40,000 companies. Comments this morning from cybersecurity experts at Bomgar and Panorays. Sam Elliott, Director of Security Product Management at Bomgar: “Attacks like phishing and social engineering are among the most common used against businesses. The use of faked user credentials is a tried and true method. Often, attacks like these target privileged users with access to…

Read More

Behavioral Research Showing Consumers Choosing Paswordless MFA

ISBuzz TeamJune 15, 20181 Min Read

70% of Consumers will choose Passwordless multi-factor authentication logins over traditional usernames and passwords if given the chance according to a new behavioral study out by research firm – Blink and Trusona, an identity authentication company. Robert Capps, VP and Authentication Strategist at NuData Security: “This report shows that consumers are ready to move beyond passwords and usernames to more secure authentication methodologies. Using a multi-layered authentication framework that combines behavioral analytics with biometrics allows companies to verify users accurately without adding unnecessary friction and detect any unauthorized activity before it enters the environment. Multi-layered solutions that include these technologies…

Read More

UK’s Traffic Control Systems Under Threat From Cyber Attack

ISBuzz TeamJune 14, 20183 Mins Read

Speaking with the BBC Today programme, and reported by the Daily Telegraph, General Sir Christopher Deverell has warned that the UK’s traffic control systems are under threat from cyber attack, with road systems one of several potential points that could be targeted by countries including Russia. IT security experts commented below. Andrea Carcano, Chief Product Officer at Nozomi Networks: “General Sir Christopher Deverell’s observation voices concerns that the security community has raised for a number of years now. The every day reality is that the UK’s infrastructure, and those in every developed country around the world, is being continually poked and…

Read More

The New York Cybersecurity Regulation

ISBuzz TeamJune 14, 20182 Mins Read

The New York Cybersecurity regulation – 23 NYCRR 500 – requires financial institutions to minimize their cyber security risk by formulating a full security risk assessment and plan. Matan Or-El, CEO at Panorays commented below. Matan Or-El, CEO at Panorays: “GDPR mandates that the suppliers of a company must be GDPR-ready in order for the company to be GDPR-ready. Contrary to GDPR, the NY DFS provision in regards to third parties, requires that organizations need to evaluate the risk posed to them by the third parties. However, it does not go that far by requiring the third parties to be…

Read More

June Patch Tuesday: Flash, Microsoft & Spectre

ISBuzz TeamJune 14, 20183 Mins Read

Please see below commentary in response to this month’s Patch Tuesday from Chris Goettl, Director of Product Management, Security at Ivanti. Advice from Chris relates to June’s Flash update, Microsoft OS and IE updates, and news on Meltdown and Spectre mitigation. Chris Goettl, Director of Product Management, Security at Ivanti: Most of the excitement may already have passed with Adobe’s Flash Player release on June 7th. The discovery of a Zero Day vulnerability (CVE-2018-5002) being exploited in the wild resulted in a Flash Player update (APSB18-19) which included the fix for the exploited vulnerability and three others. Microsoft has released 12 updates…

Read More

BabaYaga Malware

ISBuzz TeamJune 14, 20181 Min Read

A new malware named BabaYaga discovered by Wordfense* infects Wordpress websites and generates spam links. When the pages are clicked and the user buys a product, the malware creator receives a commission. Furthermore, this malware deletes competing malware to ensure that it stays functional. Alex Calic, Strategic Technology Partnerships Officer at The Media Trust commented below. Alex Calic, Strategic Technology Partnerships Officer at The Media Trust: “This malware is unique in the comprehensiveness of features that ensure effective and persistent infection. These features are typically used one at a time–rarely have we seen them combined together. While this malware might…

Read More

Streaming Outage That Took Down Netflix

ISBuzz TeamJune 14, 20181 Min Read

Netflix service was interrupted last night by a major outage that took down the service for about an hour. Netflix said it was able to fix the problem, but would not elaborate as to the cause of it. Sean Newman, Director of Product Management at Corero Network Security commented below. Sean Newman, Director of Product Management at Corero Network Security: “You only have to see online the consternation by consumers that this interruption created to understand the reliance on such services.  This customer reaction reinforces how important it is for any business offering services online to ensure the highest levels…

Read More

Google Removing Option To Get Chrome Extensions From Remote Sites

ISBuzz TeamJune 14, 20181 Min Read

Google has removed the option of installing Chrome extensions from remote sites so users will only be able to get the extensions from the official Chrome Web Store. Google has removed this option in the wake of a wave of malicious Chrome extensions on third party sites. Chris Olson, CEO at The Media Trust commented below. Chris Olson, CEO at The Media Trust: “Google is sending a strong signal to developers and consumers that it takes very seriously and is responding to the growing sophistication of cybercriminals on the one hand and rising consumer demand for greater transparency around the…

Read More

Dixon’s Carphone Data Breach

ISBuzz TeamJune 13, 201811 Mins Read

News broke this morning that electronics retailer Dixons have suffered a data breach which has affected the customer cards of 5.9 million people, and the personal records of 1.2 million. IT security experts commented below. Lee Munson, Security Researcher at Comparitech.com: “The breach at Dixons Carphone highlights, yet again, how common attempts at exfiltrating personal data and payment card information have become. What is worrying here is the delay between the breach occurring last year and the disclosure today. Whether or not that was down to the company not being aware until now is unclear. Thankfully, under GDPR, non-disclosure for business reasons is no longer possible as the ICO…

Read More

NEWS: Weight Watchers Data Left Unprotected

ISBuzz TeamJune 13, 20182 Mins Read

Dozens of servers containing Weight Watchers data were left exposed, because the company didn’t use password protect software used for managing its application containers. Numerous activity logs, passwords and private encryption keys were left exposed – you can read more about it here. Broderick Perelli-Harris, senior director, professional services at Venafi commented below as part of our expert comments series. Broderick Perelli-Harris, Senior Director, Professional Services at Venafi: “Weight Watchers may be the latest high-profile firm to expose sensitive data, but it follows a familiar pattern; a cloud service was left unprotected, and data including customer passwords and private encryption keys was left out in…

Read More
Previous 1 … 501 502 503 504 505 … 1,258 Next
ISB-Bora-Side-Bar

 
ISB-Bora-Side-Bar
Black ISB Logo

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics

X (Twitter) LinkedIn Facebook RSS

Working With Us

  • About Us
  • Advertise With Us
  • Contact Us

Write For Us

  • How To Contribute

The Pages

  • Privacy Policy
  • Cookie Policy
  • AI Policy
  • Terms & Conditions
  • Copyright Notice

Information Security Buzz and all its contents are copyright © 2014-2025. All rights reserved. All third-party trademarks are recognized.

Type above and press Enter to search. Press Esc to cancel.

Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}