Subscribers of UK-based MoDaCo, a forum specialising in smartphone news and reviews, have been unpleasantly surprised by notifications that the site and their account have been compromised. IT security experts from AlienVault and ESET commented below. Javvad Malik, Security Advocate at AlienVault: “This unfortunately highlights how poor the threat detection and breach monitoring capabilities of most companies are. It appears as if the breach occurred in January 2016, a full eight months ago. Being attacked or being a victim of a successful breach is an unfortunate event that can’t always be prevented. But knowing that you’ve been breached is just as important…
ISBuzz Team
Some organisations dispose of their IT assets by recycling what they can and discarding the rest. For others, the process involves reselling parts that still hold some market value. And although today’s IT disposition industry claims to have a strong focus on compliance, governance and security, there are still several accounts of sensitive business or personal data falling into the wrong hands due to improperly disposing of IT assets. As CIO reports, Kessler International conducted a 2009 survey in which it purchased 100 used hard disk drives on eBay. The study found that 40% of the purchased drives contained sensitive corporate data…
Chinese researchers have been able to hack into the Tesla Model S while it is in motion up to 12 miles away. These researchers have withheld details of the a zero day attack and privately disclosed the flaws to Tesla. IT security experts commented below. Craig Young, Cybersecurity Researcher at Tripwire: “At first glance, it would appear that the details provided by the researchers conflicts somewhat with the information released by Tesla. While the researchers indicated that they could compromise a car from 20km, Tesla has reported that the car must be connected to a malicious Wi-Fi and the standard range…
Nearly a year after the EMV liability shift in the U.S.—a move specifically engineered to incent retailers to install EMV-compliant POS systems in their stores—only 44% of merchants are equipped with the new terminals, according to a new report from The Strawhecker Group. Furthermore, not all of those merchants that have installed EMV-enabled systems are using them. Only 29% of U.S. merchants can actually accept chip cards, the report said, with terminal certification delays the main culprit. Despite fewer U.S. merchants accepting chip transactions a year into the transition to EMV than predicted, however, the effects experts predicted have largely come…
Kaspersky Lab has released a new version of its Kaspersky Small Office Security software to help very small businesses (VSBs) stay on top of the ever growing number of cyber-threats they face today. With enhanced anti-ransomware functionality, improved safeguarding of online financial transactions and convenient security status monitoring, Kaspersky Small Office Security can help VSBs flourish by keeping the fraudsters at bay. In line with recent research[1] from Kaspersky Lab, finding that 42 per cent of VSBs are concerned about the threat of cryptomalware, the latest version of Kaspersky Small Office Security offers enriched protection against the growing threat of “cryptors”.…
With the recent revelations about the extent of additional data gathering by the German Foreign Intelligence Agency (BND) from a leaked classified report written by the Federal Data Protection Commission. Jonathan Parker-Bray, Founder and CEO of encrypted communications solution at Pryvate commented below. Jonathan Parker-Bray, Founder and CEO at Pryvate: Given the regular revelations about the surveillance activity of nation states and global powers the recent revelations that the German Foreign Intelligence Agency (BND) has been scooping up more data than it needs on every investigation it does is not surprising. The saddening reality is that this sort of behaviour has become normal and what…
Phishing attacks continue to rise in volume and impact in 80 percent of businesses surveyed, with hackers preferring email and social engineering to deliver threats San Carlos, CA . Check Point® Software Technologies Ltd. (NASDAQ: CHKP) today published findings from two research projects, the Check Point 2016 Security Report and Exploits at the Endpoint: SANS 2016 Threat Landscape Study, revealing critical challenges and key recommendations for IT leaders, as businesses continue to build-up protections against evolving cyber threats. In the company’s fourth annual 2016 Security Report, Check Point researchers analyzed the activity of more than 31,000 Check Point gateways worldwide, revealing…
MoDaCo; a forum specialising in smartphone and Pocket PC news and reviews, has just notified users of a data breach. MoDaCo founder, Paul O’Brien has reported the breach on Twitter: “haveibeenpawned is reporting a data breach. We’ll post a statement later today, however be assured all passwords are hashed and salted.” In response of this news Mark James, IT Security Specialist at ESET commented below. Mark James, IT Security Specialist at ESET: “People are receiving reports from one of the many breach notification sites that MoDaCo has suffered a breach of over 875 thousand accounts. With data that includes email &…
A new report from Financial Fraud Action UK has found that fraud in the UK payments industry has soared by 53% in a year, totalling £755 million in 2015. Brian Spector, CEO at MIRACL: “Given the current state of security in the payments industry, it’s inevitable that the number of cases of financial fraud has risen so dramatically in the past year. Hackers have become more sophisticated and are managing to bypass traditional methods of security with alarming ease. A range of tactics which once seemed secure – such as identity verification via text message – are becoming easier for…
Chinese researchers have managed to control the brakes, lights and mirrors within a Tesla Model S from afar, while the cars are moving and up to 20 kilometres (12 miles) away. Brian Spector, CEO at MIRACL commented below. Brian Spector, CEO at MIRACL: “These hacks demonstrate the serious problems around identity verification in today’s connected cars. Having very limited encryption, identity management and data protection within such a powerful computer is extremely dangerous and poses a real and serious threat to everyone using our roads today. Move forwards to the increasing trend for driverless cars, and the potential fallout from this…