Bell Canada is alerting some customers that their information has been illegally accessed in a potential data breach. The company’s notice doesn’t say how many Bell customers were affected but media reports say the total could be 100,000. Bell says the information consisted primarily of names and email addresses and that there’s no indication that any credit card, banking or other information was accessed. Lisa Baergen, Marketing Director at NuData Security commented below. Lisa Baergen, Marketing Director at NuData Security: “Another of the ever-happening breaches has been revealed, this time targeting Bell. It seems to have leaked customer names and emails only, no credit card information. However, we all know…
ISBuzz Team
Subhead: When everyone’s data has been breached, how do you confirm employees are who they say they are? In the aftermath of the Equifax breach in which millions of people’s Personally Identifiable Information (PII) was stolen, everyone from press to the Senate has been focused on the customers. From a consumer perspective, many still don’t know how to protect themselves or whether they should freeze their credit. The attention is well-deserved, but consumers are not the only ones made more vulnerable by this major breach. Given that so many people’s PII has entered into the public domain, enterprises are at…
Regions of the world in geopolitical turmoil, like Turkey, are prime targets for cyber espionage campaigns. Starting in mid-November, an unknown actor purporting to be from the tax collection arm of the Turkish government began a spear phishing campaign against a Turkish defense contractor. The group used tactics that have become extremely useful for cyber spies—spear phishing emails that social engineer the victim to download an attached or embedded file and then enable macros. These macros contain executable files that download a Remote Access Trojan (RAT), which can log keystrokes, take screenshots, record audio and video from a webcam or microphone, and…
Following the news that OnePlus has confirmed that up to 40,000 customers have been affected by a data breach, IT security experts commented below. Dan Panesar, VP EMEA at Certes Networks: “OnePlus have confirmed that up to 40,000 customers have been affected by a data breach which saw hackers harvest users’ credit card details through a malicious script injected into the payment code page on their website back in November 2017. This cybersecurity breach is another in a long line of incidents that show that organisations are not taking the protection of their customers’ financial data seriously. It certainly begs the questions why it was…
It has been discovered that the cyber hacking group Turla is targeting the UK with updated variants of Neuron and Nautilus, a type of malware designed to embed itself into compromised networks and stealthily conduct espionage. The UK’s National Cyber Security Centre (NCSC) has issued a warning that Turla is deploying a new version of Neuron which has been modified to evade discovery. IT security experts commented below. Israel Barak, CIO at Cybereason: “Critical infrastructure is the soft underbelly of any developed society, and the UK has indeed been lucky to escape the wave of attacks in countries around the world. An attack on energy, transport, finance…
It has been revealed that Uber ignored a security bug that could give potential hackers access into user accounts by bypassing two-factor authentication, with the taxi giant stating the flaw “isn’t a particularly severe” problem. Javvad Malik, Security Advocate at AlienVault commented below. Javvad Malik, Security Advocate at AlienVault: “Bug bounties are great for identifying flaws that may have slipped through regular testing and secure design. However, they shouldn’t be used as an alternative to rigorous testing. It also illustrates one of the oft-mentioned challenges mentioned by researchers in that their findings are either not taken seriously, or are dismissed as…
In response to Sir Nick Carter’s comments advocating an increase in government spending to combat cyber-security threats from Russia, Piers Wilson, Head of Product Management at Huntsman Security commented below. Piers Wilson, Head of Product Management at Huntsman Security: “It is absolutely right to call for increased resources for British cyber-security defences. However, the problem is more than just a need for more money and personnel to address the issue. Every day the UK is assailed by thousands of cyber-threats, from cyber-espionage aimed at the Government itself to attacks on critical infrastructure, industries, intellectual property and personal information. Put simply, our defences could…
It has been reported that Cyber attacks have pushed corporate fraud around the world to an all-time high, with information theft overtaking the appropriation of physical assets for the first time on record, according to new data. Levels of reported fraud have gradually climbed since 2012, but 86 per cent of companies around the world reported that they had experienced at least one cyber incident in 2017, according to responses given to Kroll’s annual global fraud and risk survey. The responses come as anxiety is high in boardrooms about hacking following a year when the WannaCry cyber attacks targeted tens…
It has been reported that cyber-attack damage could cost as much as Hurricane Katrina. Paul Cant, VP EMEA at BMC Software commented below. Paul Cant, VP EMEA at BMC Software: “As we saw all too often over the course of the last twelve months, although organisations are increasingly realising the host of advantages that can be gleaned from multi-cloud environments and IoT devices, this has, in turn, created new security vulnerabilities and a much larger attack surface for hackers to exploit.” If organisations are to protect themselves from both the crippling financial and reputational consequences that a breach of their…
Your office printer might not appear to pose much of a security threat. But if left unprotected, it may in fact present a serious risk to your network and resources. For example, with access to a networked printer, an unauthorised user can discover device configurations, network information and user credentials. This is because printers are often installed with access to multiple network subnets. This enables different departments to use them but also makes the printer a target for potential hackers to plant Wi-Fi devices, sniff traffic and access system passwords. Smart multi-function printers (MFPs) offer the same potential for harm.…
