Category: Industry News – HOTforSecurity

Read the original article: 80% of Drivers Don’t Remove Personal Information Before Selling Their Car Four in five drivers don’t remove their personal information before selling their car, a new survey from Which? reveals. Between December 2019 and February 2020,…

Read more →

Read the original article: DDoSecrets thrown off Twitter after distributing 269GB BlueLeaks data dump The activist group Distributed Denial of Secrets, perhaps better known by their shorter but clumsy moniker DDoSecrets, has been permanently banned from Twitter. The self-declared “transparency…

Read more →

Read the original article: Data Breach: Hacker Sells Over 1.3 Million User Records of Popular Stalker Online MMO Game on Dark Web Marketplace This week, Cyber News researchers announced that cyber thieves are offering for sale more than 1.3 million…

Read more →

Read the original article: Adobe to Remove Flash Download Links, Recommends People Uninstall It Now Adobe is taking further steps in its Flash-dismantling process scheduled to take place by the end of 2020, and said users should uninstall it long…

Read more →

Read the original article: Zoom to Implement End-to-End Encryption for All Users, Not Just Paid Zoom announced that end-to-end encryption (E2EE) will be available to all users, free and premium, marking a shift in strategy at the US company. One…

Read more →

Read the original article: BlueLeaks: Activist Group Publishes More Than 1 Million Police and Federal Agency Documents Online On June 19, an activist group called Distributed Denial of Secrets (DDoSecrets) published a 270-gigabyte collection of sensitive documents exfiltrated from 200…

Read more →

Read the original article: Man Accused of Selling Personal Information of 65,000 UPMC Employees Arrested in Michigan Last week, the Department of Justice (DOJ) announced that the individual who allegedly breached the human resource database of University of Pittsburgh Medical…

Read more →

Read the original article: Woman who deliberately deleted firm’s Dropbox is sentenced 58-year-old Danielle Bulley may not look like your typical cybercriminal, but the act of revenge she committed against a company had just as much impact as a conventional…

Read more →

Read the original article: Ransomware Attack Confirmed by Australia-Based Beverage Manufacturer On June 9, Australian beverage giant Lion announced it had fallen victim to a cyberattack that forced the company to shut down its IT systems, limiting its manufacturing and…

Read more →

Read the original article: European and North American Countries are Least Exposed to Cyberattacks, New Study Reveals A new report from PasswordManagers.co highlights the exposure of countries worldwide to the growing wave of cyberattacks. In its Cybersecurity Exposure Index (CEI)…

Read more →

Read the original article: Cyber Readiness Institute: Small Businesses to Become Hot Target for Hackers during COVID-19 Pandemic A company’s perception of the importance of cybersecurity depends on the size of the business, new research shows. Small businesses are less…

Read more →

Read the original article: Akamai Registers Massive 1.44 Terabit-per-second DDoS Attack An unnamed webhost was just hit with one of the largest DDoS attacks ever registered by Akamai, one of the world’s biggest web and cloud providers. The attack was…

Read more →

Read the original article: Your Hacked Facebook Account Goes for $75 on the Dark Web A new report from Privacy Affairs says that cybercriminals on the Dark Web will pay on average $1,000 for a full range of stolen documents…

Read more →

Read the original article: MaxLinear Discloses Maze Ransomware Attack That Compromised Employee Data MaxLinear, a US provider of integrated radio-frequency analog and mixed-signal semiconductor solutions for broadband communications, announced it has been hit by a Maze ransomware attack. While the…

Read more →

Read the original article: Delivery Hero Confirms Data Breach After Customer Data is Posted On a Dark Web Forum Delivery Hero, a popular food delivery service, has confirmed a data breach at the Foodora brand it bought in September 2015.…

Read more →

Read the original article: Online Voting Platform in Three U.S. States Vulnerable to Multiple Types of Attacks Security researchers from the Massachusetts Institute of Technology (MIT) and the University of Michigan found numerous security issues and vulnerabilities within Democracy Live’s…

Read more →

Read the original article: Data Breach: Bundle of Dating Apps Leaking Sensitive Information Discovered Three misconfigured Amazon Web Services (AWS) S3 buckets leaking highly sensitive information from multiple dating apps and websites were discovered by vpnMentor researchers on May 25.…

Read more →

Read the original article: Extended Tax Season in the US Spurs Additional Concerns for Identity Theft and Tax-Related Fraud Fraudsters often stay ahead of the game, using every trick in the book to catch citizens off guard and steal millions…

Read more →

Read the original article: South Africa’s PostBank is Replacing 12 Million Bank Cards After Major Security Breach South Africa’s Postbank has suffered a major data breach, forcing the financial institution to replace 12 million bankcards after rogue employees stole its…

Read more →

Read the original article: Black Lives Matter-Related Spam Used to Deploy Malware Black Lives Matter is the latest hook bad actors are using to persuade people to open email attachments containing malware, according to Bitdefender’s telemetry. Criminals use any new…

Read more →

Read the original article: Fraudsters Set Up Shop on the Dark Web Promoting How-To Guides on Filing for Unemployment Benefits In the past 3 months, more than 44 million Americans have filed for unemployment, and as local officials rush to…

Read more →

Read the original article: Despite resolution not to give in to hackers’ ransom demands, some cities are still paying up after attacks The City of Florence in northern Alabama has agreed to pay a ransom of US $300,000 worth of…

Read more →

Read the original article: Australian Beverage Manufacturer Shutdown IT Systems After Cyberattack A cyberattack forced Australian beverage manufacturer Lion to shut down its IT system, interrupting manufacturing and orders, the company disclosed on June 9. “We immediately shut down all…

Read more →

Read the original article: Increased Use of Mobile Banking Apps May Lead to Cyber Attacks, FBI Warns The Covid-19 lockdown and stay-at-home orders have changed the way we work, shop and handle our finances. As mobile banking tools become a…

Read more →

Read the original article: Nintendo Confirms Additional 140,000 Accounts Compromised in April Data Breach Yesterday, Nintendo released a new statement confirming that an additional 140,000 user accounts were exposed after the Nintendo Network ID (NNID) system was compromised in April…

Read more →

Read the original article: Honda Car and Motorcycle Production Halted After Cyberattack Honda reportedly has been forced to shut down some of its plants around the world following a cyberattack of unknown origin. Honda’s auto plants in Ohio (United States)…

Read more →

Read the original article: Employment Scams Are On The Rise. Here’s What To Look Out For Nearly 39 million Americans have lost their jobs since the COVID-19 crisis struck the nation three months ago. With this unprecedented level of unemployment,…

Read more →

Read the original article: 1.3 Million WordPress Websites Targeted by Attackers Looking for Old Vulnerabilities A vast campaign targeting WordPress-based websites was identified by the Wordfence Firewall as it targeted 1.3 million pages, trying to leverage known plugins and theme…

Read more →

Read the original article: EU’s Law Enforcement Agency Launches Center for Financial and Economic Crime On June 5, Europol announced the launch of the European Financial and Economic Crime Centre (EFECC), designed to reinforce and strengthen support for European Union…

Read more →

Read the original article: Maze Team Hits US Nuclear Missile Contractor with Ransomware The infamous cyber extortionist gang known as Maze Team has breached a company that supports the US Minuteman III nuclear deterrent, according to reports. Westech International has…

Read more →

Read the original article: Data Breach: Canada’s Fitness Depot Blames ISP for Security Incident As Covid-19 spread across the world, opportunities to exercise outdoors became limited for most people. Workout routines quickly shifted online, and with gyms now closed, online…

Read more →

Read the original article: Hackers Use VPN Impersonation in Phishing Emails to Steal Office 365 Credentials A phishing attack is using VPN impersonation to trick people into revealing their Microsoft Office 365 credentials. With so many people working from home,…

Read more →

Read the original article: UK Ministry of Defence Launches Its First Specialized Cyber Regiment Recent spikes in cyber-attacks have provoked heated reaction from governments around the world. Nation-state hackers are targeting medical facilities, government agencies and critical infrastructure in their…

Read more →

Read the original article: Healthcare Remained the Most Breached Industry in Q1, Research Shows Cybercriminals exposed more than 5 billion records in 2019, costing US organizations over $1.2 trillion, according to a new report. Healthcare was the most targeted industry…

Read more →

Read the original article: A Couple Critical Zoom Chat Vulnerabilities Found and Fixed Security researchers found a couple of vulnerabilities affecting the chat features of the popular video conferencing app Zoom that, if exploited, would have let attackers achieve arbitrary…

Read more →

Read the original article: Most Victims Choose a Similar or Weaker Password after a Data Breach, Study Finds Researchers from Carnegie Mellon University published a paper about people’s behavior after their passwords were compromised in a data breach, and the…

Read more →

Read the original article: Coincheck cryptocurrency exchange targeted by hackers, customer emails exposed Japanese cryptocurrency exchange Coincheck has announced that earlier this week hackers managed to access some emails sent to the firm by its customers. Reading (with a little…

Read more →

Read the original article: Healthcare Is 20 Years Behind Banks on Cybersecurity in Canada, Experts Say Hospitals and clinics in Canada can’t cope with growing cyber threats amid the COVID-19 pandemic, say healthcare and cybersecurity professionals. The reason? Healthcare institutions…

Read more →

Read the original article: Joomla Open-Source CMS Affected by Data-Breach A data breach affecting Joomla, the popular open-source content management system (CMS), was announced by its developers from Open Source Matters. While some data breaches take place when bad actors…

Read more →

Read the original article: Abandoned Mobile Apps Are a Security Problem, Research Finds Mobile apps dropped by developers and removed from official stores remain a security issue because many people continue to use them daily, according to new research from…

Read more →

Read the original article: Amtrak Announces Data Breach and Potential Leak of Guest Rewards Account Information Even with the travel restrictions prompted by the COVID-19 pandemic, the travel industry is once again tainted by a security incident that resulted in…

Read more →

Read the original article: Data Breach at Independent Artist Marketplace Affects 5 Million Users Minted, a digital marketplace for independent artists, started informing its members last week about a security incident that exposed personal information of 5 million users. Apparently,…

Read more →

Read the original article: Researcher Reports Zero-Day ‘Sign in with Apple’ Bug that Could Allow Full Account Takeover Infosec researcher Bhavuk Jain has pocketed a handsome $100,000 from Apple’s bug bounty program after reporting a critical flaw that could have…

Read more →

Read the original article: Most Apps Use Vulnerable Open-Source Libraries, Veracode Research Shows New research from Veracode found that most applications use open-source libraries that also present vulnerabilities, but the distribution of such libraries depends on the programming languages used.…

Read more →

Read the original article: Pablo Escobar’s brother says FaceTime flaw revealed his address, sues Apple for a publicity stunt (and $2.6 billion) You may not have heard of Roberto Escobar, but if his surname isn’t familiar to you it surely…

Read more →

Read the original article: Japanese Telecoms Giant NTT Suffers Data Breach, Takes Four Days to Learn of Intrusion Japanese Telecoms Giant NTT Suffers Data Breach, Takes Four Days to Learn of Intrusion Japanese telecommunications company Nippon Telegraph & Telephone (NTT)…

Read more →

Read the original article: BigFooty.com Leaks 70 Million Records from Sports Fan Members The team at Security Detectives has discovered another leaky database. BigFooty, a popular Australian sports fan website, was found to be leaking around 132 GB (70 million…

Read more →

Read the original article: Russian ’Sandworm‘ Hackers Attacking Exim Email Servers, Says NSA An advanced Russian government cyber-espionage unit has been exploiting a known Exim email server vulnerability since August 2019, according to an NSA security alert. The NSA said…

Read more →

Read the original article: 48% of UK Public Believes Cybercriminals Will Abuse NHS COVID-19 Tracing App With the launch of the NHS contact-tracing app just around the corner, 48% of UK citizens do not trust the UK government to keep…

Read more →

Read the original article: Microsoft warns of PonyFinal ransomware attacks Malware experts at Microsoft have warned businesses to be on their guard against hackers plotting to plant the PonyFinal ransomware on compromised IT systems. Attacks incorporating the Java-based PonyFinal ransomware…

Read more →

Read the original article: HackerOne Celebrates $100 Million in Bounties Paid HackerOne, a bug bounty platform used by numerous companies and people around the world, just celebrated a new milestone, reaching $100 million in bounties paid. The term “hacker” might…

Read more →

Read the original article: Hacker Charged in Germany for Stealing and Leaking Private Data of Public Figures and Politicians A 22-year old accused of publishing private data on multiple public figures in Germany, including politicians, has been charged with various…

Read more →

Read the original article: 26 million LiveJournal users warned that their passwords have been breached On underground criminal marketplaces the email addresses and plaintext passwords of over 26 million LiveJournal blogging accounts are being traded, despite LiveJournal’s owners refusing to…

Read more →

Read the original article: FBI Officials Arrest Another Alleged FIN7 Gang Member According to newly released court documents, Ukrainian national Denys Iarmak has been arrested for alleged involvement in the malicious cyber campaigns run by the infamous hacking group FIN7.…

Read more →

Read the original article: Airbonne International Discloses Data Breach Affecting Thousands of Californians Earlier this month, Arbonne, a multi-level marketing company advertising vegan skincare, cosmetics, and nutrition products, disclosed a data breach affecting 3,527 California residents. However, the total number…

Read more →

Read the original article: White House Press Secretary Accidentally Reveals Trump’s Private Banking Info The White House press secretary, Kayleigh McEnany, showed a bank statement during a briefing trying to demonstrate that President Donald Trump is donating his salary to…

Read more →

Read the original article: Unc0ver Hackers Find New Zero Day Bug to Jailbreak iOS 13.5 The infamous unc0ver hacker group has released the latest jailbreak for Apple’s notoriously hard-to-crack iOS operating system. The hack allows iPhone and iPad users on…

Read more →

Read the original article: Extortion Campaign Targeting Online Shops Threatens to Sell Customer Database Unless Ransom is Paid Cyber thieves are putting up for sale on a public website more than two dozen SQL databases of e-commerce platforms from across…

Read more →

Read the original article: As UK Data Breach Reports Drop, Britain’s Privacy Watchdog Reveals Surge in Other Cyber Incidents The latest report from the UK’s Information Commissioner’s Office (ICO), reveals a steady drop in data security incidents between January and…

Read more →

Read the original article: Why should teach cybersecurity to your kids? Now more than ever, we understand the importance of safety, both online and in the real world. The coronavirus epidemic has forced millions of families from across the globe…

Read more →

Read the original article: New COVID-19-themed Malware Campaign Spreading through Emails Microsoft warns of a new COVID 19-related malware campaign spreading by email and using Excel 4.0 macros and NetSupport Manager to compromise systems. The email is a favorite method…

Read more →

Read the original article: As hackers sell 8 million user records, Home Chef confirms data breach Meal kit and food delivery company Home Chef has confirmed that hackers breached its systems, making off with the personal information of customers. Quite…

Read more →

Read the original article: Signal Introduces PINs, Slowly Moves to End Reliance on Phone Numbers as Security Measure The Signal messaging app is getting a new security feature called Signal PINs, allowing users to secure their cloud-stored information in a…

Read more →

Read the original article: Home Security Vendor Sued After Technician Spied on Customers in ‘Intimate Moments’ Users of ADT home security systems have filed a class action against the vendor after discovering that a technician used his own credentials to…

Read more →

Read the original article: Military Active-Duty Personnel Are 76% More Likely to Report Identify Theft, FTC Reports A five-year analysis of data gathered by IdentityTheft.gov reveals that “active duty service members are 76% more likely than other adults to report…

Read more →

Read the original article: Bank of America Notifies SBA Loan Applicants of Potential Data Leak This week, the Bank of America revealed that personal data of some of its customers may have been exposed when they uploaded their Paycheck Protection…

Read more →

Read the original article: Hackers Stole 220GB of Data in Toll Group Ransomware Attack Following the revelation that the Toll Group, an Australian transportation company with a global reach, was compromised with ransomware a second time in less than six…

Read more →

Read the original article: Facebook Fined $9 Million in Canada Over ‘False’ Privacy Claims After incurring billions of dollars in fines from international regulators over the Cambridge Analytica scandal, Facebook faces yet another penalty – albeit a much smaller one…

Read more →

Read the original article: Home Chef Confirms Data Breach Incident Affecting 8 Million Customers Meal kit services have been on popular demand during the lockdown phase of Covid-19. Earlier in the week, Home Chef confirmed a security incident that exposed…

Read more →

Read the original article: Covve Contacts App Data Breach Exposes 23 Million Emails Addresses and Other Private Details An open Elasticsearch database belonging to a company named Covve leaked online, impacting around 23 million email addresses and other personal details.…

Read more →

Read the original article: U.S. Treasury’s FinCEN Warns of Medical Scams Exploiting COVID-19 The US Financial Crimes Enforcement Network (FinCEN) is warning companies and financial institutions of a sudden rise in medical scams related to the COVID-19 pandemic, in the…

Read more →

Read the original article: Scammers Leverage Contact Tracing Measures, FTC Warns The US Federal Trade Commission (FTC) issued a warning Tuesday regarding the way scammers could take advantage of contact tracing to steal personal information. A key strategy for preventing…

Read more →

Read the original article: Brazil’s Natura & Co Cosmetics Accidentally Exposes Personal Details of 192 Million Customers Nobody gets a free pass when it comes to data breaches. Natura, one of Brazil’s largest cosmetics companies, accidentally exposed the personal identifiable…

Read more →

Read the original article: Information of 9 Million Passengers Compromised in EasyJet Data Breach UK low-cost airline EasyJet just announced it was the target of a highly sophisticated cyber-attack that exposed personal details of 9 million customers. “Following discussions with…

Read more →

Read the original article: FBI Warns that ProLock Ransomware Decryptor Corrupts Encrypted Files A new ransomware named ProLock is affecting various industries in the United States, and the FBI is warning companies and other interested parties that the decryptor doesn’t…

Read more →

Read the original article: Cybersecurity Guidelines for U.S. High-Risk Chemical Facilities Are a Decade Old The US Government Accountability Office (GAO) has issued a report on the cybersecurity of the high-risk chemical facilities and found serious security issues as the…

Read more →

Read the original article: 65% of European Consumers Worry About Online Fraud. Do You Shop Online Safely? The Coronavirus lockdown has ramped up online shopping 57%, according to a new study from Mastercard in partnership with independent research company Fly…

Read more →

Read the original article: Firefox to Fully Drop Flash Support by the End of 2020 Firefox to Fully Drop Flash Support by the End of 2020 Mozilla has decided to remove support altogether for Flash from its Firefox browser by…

Read more →

Read the original article: Hackers Threaten to Release Stolen Documents from Law Firm Implicating Donald Trump The group that deployed REvil ransomware into the network of the Grubman Shire Meiselas& Sacks law firm just last week now threatens to release…

Read more →

Read the original article: Cyber-crime against children spikes amid stay-at-home orders The sudden shift to remote work has forced millions of individuals and families to set aside their daily routines and quickly adapt to self-isolating measures to stay safe amid…

Read more →

Read the original article: Edison Mail bug exposed users’ email accounts to complete strangers The makers of a popular iOS email app have warned their users that their accounts may have been compromised after a buggy software update made it…

Read more →

Read the original article: U.S. Secret Service Exposes Unemployment Benefits Scam by Overseas Fraud Ring The latest memo from the U.S. Secret Service reveals that overseas criminals are registering for unemployment claims using stolen Social Security numbers and personally identifiable…

Read more →

Read the original article: Interserve Hit by Data Breach; 100,000 Employee Records Stolen Hackers stole sensitive details on 100,000 people from an outsourcing company named Interserve, but the attackers are unknown and the company offered no additional information. News of…

Read more →

Read the original article: Cyberattack Against UK Supercomputer ARCHER Forces Operators to Disable Access for Scientists ARCHER, a UK world-class supercomputer, was hit by a cyberattack earlier this week. Providing invaluable resources for scientists studying global issues, the UK National…

Read more →

Read the original article: Fake COVID-19 Cryptocurrency Emerges Promising to Gain Value with Each Death A new report reveals exponential growth in the number of phishing and website scams leveraging the COVID-19 pandemic, including websites peddling fake COVID-19 cryptocurrencies and…

Read more →

Read the original article: Researchers spot 24,000 Android Apps Leaking User Data Comparitech researchers led by cybersecurity expert Bob Diachenko have revealed that 24,000 Android Apps expose user information through misconfigurations on Google Firebase, a popular development platform used by…

Read more →

Read the original article: U.S Government Lists CVEs Most Exploited by Foreign Cyber Adversaries A joint report from the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI) and the broader U.S. government offers information about the…

Read more →

Read the original article: Data Breach at U.S. Marshals Service Exposes Personal Data of 387,000 Prisoners The U.S. Marshals Service (USMS) has started notifying 387,000 former and current inmates of a security breach that may have compromised their personal identifiable…

Read more →

Read the original article: Law Firm Used by Celebrities Affected by REvil Ransomware and Data Breach Grubman Shire Meiselas & Sacks, a New York-based law firm use by numerous celebrities, was hit with REvil ransomware, and the attackers also stole…

Read more →

Read the original article: Thunderspy Attack Affects all Computers with Thunderbolt Released in the Past Decade A slew of seven vulnerabilities identified in the Thunderbolt port allow an attacker with physical access to the device to bypass all security, no…

Read more →

Read the original article: Australian Transport Company Hit with Nefilim Ransomware Months after a Maito Ransomware Attack Toll, a large Australian transportation company, was hit with a new ransomware attack, only three months after a previous incident. This time, the…

Read more →

Read the original article: Personal Information of 3.6 Million MobiFriends is Up for Grabs, Free Download Included Following a data breach incident from January 2019, the personal information of more than 3.6 million MobiFriends users is now up for grabs…

Read more →

Read the original article: 66 Percent of Consumers Recycle Their Account Passwords. Do You? As the world becomes more digitally bound and workers adapt to new business models, our cyber habits should improve considerably. Unfortunately, this hasn’t been the case.…

Read more →

Read the original article: European Cyber Units Dismantle InfinityBlack Hacking Group in Poland InfinityBlack, a hacking group based in Poland and Switzerland, was taken down by Polish and Swiss law enforcement after the arrest of five alleged active members. InfinityBlack…

Read more →

Read the original article: Chatbooks security breach. Users told to change their passwords Customers of Chatbooks, a photo book-making company that turns users’ Instagram posts into books, have been warned that their data has fallen into the hands of hackers.…

Read more →

Read the original article: Cognizant Expects to Lose up to $70 Million from April Ransomware Attack IT services giant Cognizant has calculated it will lose between $50 million and $70 million from a ransomware incident in April, the CFO said…

Read more →

Read the original article: DigitalOcean Accidentally Leaks Customer Data DigitalOcean, a popular web-hosting platform, has started informing customers about a data leak that “unintentionally” exposed personally identifiable information online. According to a notification sent to DigitalOcean users, the incident is…

Read more →

Read the original article: WeChat is Surveilling International User Files to Strengthen China’s National Censorship Model Chinese social media giant WeChat is screening documents and images shared by overseas users, according to researchers from the Citizen Lab of the University…

Read more →

Read the original article: PrivateVPN and Betternet Apps Vulnerability Let Attackers Send Malicious Updates VPN apps PrivateVPN and Betternet were plagued by a vulnerability that could have let attackers push fake updates to the apps and install malicious apps. One…

Read more →

Read the original article: GoDaddy Data Breach Affects 28,000 User Accounts GoDaddy, the world’s largest domain registrar, has confirmed that 28,000 of its customers’ web hosting accounts were compromised following a security incident in October 2019. Unfortunately, the web-hosting company…

Read more →