Researchers at Forcepoint – formerly Raytheon|Websense – have discovered the website of a leading travel company has been serving malware to customers worldwide after it was infected by code that delivers a new exploit of Adobe Flash Player. The popular European transport company’s site, which cannot be named as Forcepoint is assisting it with ongoing investigations, has been compromised with injected code that leads to Angler exploit kit and Flash Player exploit kit. [su_note note_color=”#ffffcc” text_color=”#00000″]Carl Leonard, Principal Security Analyst at Raytheon|Websense: “This attack shows Angler exploit kit is still operating at the top of its game, incorporating a vulnerability in…
Author: ISBuzz Team
A recent survey finds that more Americans are taking action in response to privacy concerns in comparison to other nationalities, with many willing to switch services to protect their privacy. Sixty-six per cent of respondents to a recent F-Secure survey agreed that they were concerned about their data being exposed to intelligence agencies while using online services, with 57 per cent saying they’d be willing to pay to prevent their data from passing through American, Russian or Chinese services and territories. The survey asked nearly 9,000 respondents from eleven different countries – including the United States, the United Kingdom, Germany,…
New study reveals that most British citizens would expect a payout if their personal and financial data was lost as a result of completing a tax return online HMRC could face compensation claims of over £13 billion if it were to lose people’s personal and financial data as a result of a cyber attack, according to a new study by digital authentication provider, MIRACL. The research, which surveyed the attitudes of 1,000 UK consumers about their personal security online, revealed that three-quarters of British citizens would expect to be compensated in the event of a data breach at HMRC in…
Craig Young, Cybersecurity Researcher for Tripwire have the following comments on Browser Extensions are Prime Targets. Craig Young, Cybersecurity Researcher for Tripwire “With so many critical business and financial activities occurring within the web browser, malicious extensions and add-ons must be considered a prime target for infection. As with browser interstitials warning of invalid SSL certificates, many users likely gloss over the permissions declaration when installing extensions or do not recognize the risk of allowing an extension to have access to read data from web sites. The reality though is that extensions are allowed to run in a very privileged…
HSBC’s online banking website is down, leaving thousands of customers unable to access its services after a cyber attack. A spokesperson said HSBC had been hit by a distributed denial of service (DDos) attack but did not say if the source was known. “HSBC internet banking came under a denial of service attack this morning, which affected personal banking websites in the UK,” she added. “HSBC has successfully defended against the attack, and customer transactions were not affected. We are working hard to restore services, and normal service is now being resumed.” Security experts from MIRACL, ESET, Splunk, AlienVault, Comparitech, Lieberman Software…
Davos Summit met in Switzerland and is due to run until tomorrow to discuss the Fourth Industrial Revolution and the global impact of new technologies. Technology is constantly evolving and bringing with it new risks that businesses need to be prepared for. Geraldine Osman, VP of International Marketing at Nexsan highlighting how businesses can be prepared in the digital age. Geraldine Osman, VP of International Marketing at Nexsan: “The digital age means we now all live in a connected world and constant advances in mobile and cloud technology have opened up a range of new possibilities around the way we…
Google is making an interesting change to Chrome. In the future your Chrome browser will flag unencrypted websites as insecure, displaying a red “x” over a padlock in the URL bar. This will flag that your website is unsafe. With this upcoming change, Google is making it clear that websites should all be encrypted, and be served over HTTPS. Ilia Kolochenko, CEO of High-Tech Bridge have the following comments on it. [su_note note_color=”#ffffcc” text_color=”#00000″]Ilia Kolochenko, CEO of High-Tech Bridge: “This is a great initiative that will definitely help to make a web browsing experience more secure. Taking into consideration how…
Encryption can be a response to many data security requirements – but only if you choose the proper solution, implement it thoroughly and don’t overestimate its power. Regardless of whether you want to protect your data or anything else, remember that security is an ongoing process. If you are faced with the need to choose a proper encryption solution, your job does not end just with getting one. Encryption doesn’t make your data secure by itself: there are a variety of other activities and steps that you have to take. For your data to be safe, you should stick with…
In light of the breaking news that Belgian Bank Crelan, Credit Agricole’s Belgian subsidiary, has announced it was the victim of a fraud camaign and lost of €70m in the process, Troy Gill, Manager of Security Research at AppRiver have the following comments on it. [su_note note_color=”#ffffcc” text_color=”#00000″]Troy Gill, Manager of Security Research at AppRiver : “The use of social engineering spear phishing attacks to defraud companies via wire transfer emails also picked up recently. The targeted users represented many verticals, from large enterprises to small nonprofits. Typically in these fraudulent emails, the victim, who is normally a high level member of…
As US ‘fast food’ restaurant chain Wendy’s is investigating claims of a possible credit card breach at some locations, a Wendy’s spokesperson Bob Bertini, said: “We have received this month from our payment industry contacts reports of unusual activity involving payment cards at some of our restaurant locations. Reports indicate that fraudulent charges may have occurred elsewhere after the cards were legitimately used at some of our restaurants. We’ve hired a cybersecurity firm and launched a comprehensive and active investigation that’s underway to try to determine the facts.” Security experts from Balabit and Proofpoint have the following comments on it. [su_note note_color=”#ffffcc”…