Following a news report that Russian investigators have uncovered a hacking campaign where “malware planted on Android mobile devices [was used] to steal from domestic bank customers”, Javvad Malik calls for mobile users to be more aware and to understand the risks associated when accessing information from insecure sites. Javvad Malik, Security Advocate at AlienVault commented below. Javvad Malik, Security Advocate at AlienVault: “The attack highlights the growing number of attacks against mobiles and the need for users to be increasingly vigilant. Jailbreaking a phone or downloading apps from unofficial app stores increases the possible attack venues. Similarly, clicking on…
ISBuzz Team
PT BlackBox Scanner allows website owners to find vulnerabilities which are increasingly used by hackers as first point of breach Positive Technologies today announced the availability of beta testing on a free online service which gives companies of all sizes a quick and easy new way to uncover flaws in their website applications. PT BlackBox Scanner can be launched from the cloud, running a secure and simple scan to find vulnerabilities in web applications all through a simple web-based interface. The online service draws on 15 years of specialist research and is based on Positive Technologies enterprise-grade application security technologies,…
Mark Zuckerberg made headlines last year when a photo he posted on Facebook showed tape over his webcam on his laptop in the background. And an image of Steve Bannon recently made the rounds after a third-party posted a photo on his social accounts with Bannon’s whiteboard in the background. While Zuckerberg was exhibiting strong security practices and most of what people pulled from Bannon’s whiteboard were points that have already been discussed publicly, it shows that oversharing can uncover private information that you didn’t want to go public. Oversharing can also enable cyber security risks depending on the information…
News broke today of follow-up worm to the WannaCry malware was used in a global cyber-attack last Friday. WannaCry used a pair of NSA hacking tools to spread and install malware, EternalRocks has a further five NSA tools in its malicious toolbox, making a total of seven. This makes it more dangerous in terms of being able to potentially infect more PCs in an even swifter manner than WannaCry managed. IT security experts from One Identity, FireMon and Comparitech.com commented below. Andrew Clarke, EMEA Director at One Identity: “As with all the challenges facing interconnected business infrastructures, a new worm is no surprise and is to be expected; a…
Following the news that Twitter has updated its privacy policy and how it handles data sharing, Lee Munson, Security Researcher at Comparitech.com commented below. Lee Munson, Security Researcher at Comparitech.com: “A quick perusal of Twitter’s full privacy policy shows that it is written in a much clearer language than most and totally transparent about how a user’s information is handled and used. Given the fact that the service has strict rules on how personal data may be used and shared by third parties, especially in terms of prohibiting advertisers from targeting anyone based on sensitive information, such as gender, sexual orientation, race or…
The global nightmare of ransomware shows no sign of slowing down, with the volume of mobile ransomware rising over three-fold (3.5 times) during the first few months of the year, according to Kaspersky Lab’s Malware Report for Q1, 2017. The number of mobile ransomware files detected reached 218,625 during the quarter, compared to 61,832 in the previous quarter, with the Congur family accounting for more than 86 per cent. Ransomware targeting all devices, systems and networks also continued to grow, with 11 new cryptor families and 55,679 new modifications making their appearance in Q1. Congur ransomware is primarily a blocker –…
Cosmetic company Tatcha has warned customers that hackers compromised its website and harvested payment card details. The company sent notices out to customers whose card details were stolen back in January after they discovered the breach last month. Robert Capps, VP of Business Development at Fraud Mitigation Company, NuData Security commented below. Robert Capps, VP of Business Development at NuData Security: “Data in the wrong hands – especially credit card information – can have a huge impact on consumers, far beyond the unauthorised use of their payment cards. Credit card information, combined with other data on the consumer from other breaches and social…
Given today’s leading cyber security story in City AM detailing how salaries for Chief Information Security Officers (CISOs) at top European firms have topped €1m (£850,000) as the threat of data breaches grows, Cindy Provin, Chief Strategy Officer at Thales e-Security commented. Cindy Provin, Chief Strategy Officer at Thales e-Security: “It’s no surprise to see the financial value that top European firms now place on the role of CISOs, particularly given that the GDPR will be coming into effect a year from now. “More importantly however, these figures are evidence that the startling rise of cyber-attacks year-on-year has caused boardrooms to recognise the dangers…
Exploring Cybersecurity’s Diversity Problem The latest report from the Center for Cyber Safety and Education and Executive Women’s Forum on Information Security, Risk Management & Privacy (EWF) on Women in Cybersecurity, sponsored by PricewaterhouseCoopers, Alta Associates, Veracode, IBM Security and (ISC)², confirms that cybersecurity is still a predominantly male, middle-aged profession that is failing to attract female recruits. The Center’s Global Information Security Workforce Study, sponsored by Booz Allen Hamilton, a study of almost 20,000 cybersecurity professionals worldwide has revealed that the proportion of women in the workforce remains stubbornly low with women comprising only 8% of the UK cybersecurity profession and…
The EU cybersecurity agency ENISA will receive a makeover in September when the European Commission renews its mandate amid a whirlwind of new cybersecurity measures. The director of the Athens-based agency has been requesting a larger budget to deal with the rise in attacks on internet-connected devices. IT security experts from Positive Technologies, AlienVault and ESET commented below. Alex Mathews, Lead Security Evangelist at Positive Technologies: “As last weekend’s global attacks demonstrated, cybersecurity is fast becoming the most pressing problem of our age. It has gone beyond becoming a problem of people having their personal details stolen, and is impacting people’s lives in…
