The Ashley Madison breach has been a Christmas-in-August present for spammers and scammers of all kinds, and your company could be the next target.
Here are some scams to watch out for.
Phishing
There is a significant amount of spam related to the …
Ashley Madison still a top lure for scammers and crooks Read More »
The US Court of Appeals has ruled that the FTC mandate to protect consumers against fraudulent, deceptive and unfair business practices extends to oversight of corporate cybersecurity efforts — and lapses. But security experts are split about whet…
Court: FTC can take action on corporate data breaches Read More »
In the past two years, 81 percent of hospitals and health insurance companies have had a data breach, according to a report released by KPMG.”These are all incidents where they have determined they lost data,” said Greg Bell, Cyber US Leader at KPMG…
Study: 81% of large health care organizations breached Read More »
Enterprises tend to be highly focused on keeping attackers out of their systems, but most of the actual damage happens not when the bad guys first break in, but when they’re able to successfully steal data — and the techniques they’re using to do t…
Intel: Criminals getting better at data exfiltration Read More »
Wouldn’t it be convenient if all the spam and malware sites were all grouped together under one top-level domain — .evil, say — so that they would be easy to avoid? According to a new study from Blue Coat, there are in fact ten such top-level doma…
The Web’s ten most dangerous neighborhoods Read More »
The real cause of the talent shortage in the information security field isn’t a lack of new people entering the profession, but retention and churn at the highest levels, according to a new report by IDC.
“It’s a fairly common theme to suggest that…
CSO burnout biggest factor in infosec talent shortage Read More »
Amazon will stop accepting Flash ads on its advertising network on Tuesday, and it will help make the entire Web more secure, security experts say.
According to Amazon, the move was prompted by a recent update from Google Chrome that limited how Fl…
Amazon dumps Flash, and the Web is better off Read More »
Just 1 percent of employees are responsible for 75 percent of cloud-related enterprise security risk, and companies can dramatically reduce their exposure at very little additional cost by paying extra attention to these users.According to newly-rel…
Most corporate risk due to just 1% of employees Read More »
CrytoLocker is malware cyber criminals use to encrypt the contents of a computer until users pay up.But that’s only one type of cyber extortion, according to Tim Francis, enterprise cyber lead at Hartford, Conn.-based insurance company Travelers.Cri…
Tips for protecting your business against cyber extortion Read More »
According to the latest statistics from The Cloud Market, Ubuntu now accounts for 59% of all images on the Amazon EC2 platform. Windows has 8%, and the other distributions of Linux split the remaining 33%.To read this article in full or to leave a comm…
Review: Canonical continues cloud push with Ubuntu 15.04 Read More »
The criminals behind the GameOver ZeuS Botnet didn’t just steal $100 million from banks — they also spied on several countries on behalf of Russia, according to a Black Hat presentation Wednesday by an FBI agent and two other security experts.
These countries included Ukraine, Turkey, Georgia, and OPEC members, according to FBI special agent Elliott Peterson.
The gang, which called itself Business Club, had two leaders, one of whom was Evgeniy Bogachev who is still uncaught. The FBI is offering a $3 million reward for information leading to Bogachev’s arrest.
[ Follow all the stories out of Black Hat 2015 ]
To read this article in full or to leave a comment, please click here
GameOver ZeuS criminals spied on Turkey, Georgia, Ukraine and OPEC Read More »
LAS VEGAS – An ongoing conflict between website owners and ad injectors who place unwanted ads on those websites has just flared up into full-blown war, with advertisers and carriers caught in the crossfire.
Take, for example, T-Mobile, which is proudly named as a customer by Flash Networks, a company that brags about creating “new monetization opportunities” for mobile operators when it “inserts the most relevant engagement display into the selected webpages.”
This seems to have been a surprise to T-Mobile. Cynthia Lee, the company’s senior digital media manager, adamantly denied that T-Mobile was using Flash Networks to inject ads into webpages it was serving up to mobile customers.
To read this article in full or to leave a comment, please click here
T-Mobile caught in crossfire of injected ad war with Flash Networks Read More »
In a decision that should send major corporations to double-check their cyberinsurance, a federal appeals court ruled Monday that retail customers could go ahead and file a class-action lawsuit against Neiman Marcus in the wake of last year’s data breach.
Previously, such cases were dismissed because the customers hadn’t suffered any actual damages.
In the decision, the judges ruled that breach posed a substantial risk of harm to the customers.
“Why else would hackers break into a store’s database and steal consumers’ private information?” they said.
To read this article in full or to leave a comment, please click here
Neiman Marcus case a reminder to check your cyber coverage Read More »
In a decision that should send major corporations to double-check their cyberinsurance, a federal appeals court ruled Monday that retail customers could go ahead and file a class-action lawsuit against Neiman Marcus in the wake of last year’s data breach.
Previously, such cases were dismissed because the customers hadn’t suffered any actual damages.
In the decision, the judges ruled that breach posed a substantial risk of harm to the customers.
“Why else would hackers break into a store’s database and steal consumers’ private information?” they said.
To read this article in full or to leave a comment, please click here
Neiman Marcus case a reminder to check your cyber coverage Read More »
If you have a Google account and a stranger sends you a link to a document on Google Drive, think twice before clicking — it could be a phishing scam designed to harvest your Google credentials.According to Aditya Sood, architect at Elastica Cloud …
Google Drive phishing is back — with obfuscation Read More »
