Cybersecurity News


Virgin Media exposes data of 900,000 users via unprotected marketing database

UK telephone, television, and internet provider Virgin Media discloses data leak.
05 March 2020

3 Data Breaches Disclosed This Week: J.Crew, T-Mobile, and Carnival

The separate incidents show how data theft knows no market-based limits.
05 March 2020

One of Roman Abramovich's companies got hit by ransomware

Steel maker EVRAZ's North American operations are down after an infection with the Ryuk ransomware.
05 March 2020

Attackers Distributing Malware Under Guise of Security Certificate Updates

Approach is a twist to the old method of using fake software, browser updates, Kaspersky says.
05 March 2020

Zynga Faces Lawsuit Over Massive Words with Friends Breach

Zynga Faces Lawsuit Over Massive Words with Friends Breach Meanwhile, breach incidents have hit Carnival Cruise Lines, T-Mobile and J. Crew customers.
05 March 2020

Zynga Faces Lawsuit Over Massive Words with Friends Breach

Zynga Faces Lawsuit Over Massive Words with Friends Breach Meanwhile, breach incidents have hit Carnival Cruise Lines, T-Mobile and J. Crew customers.
05 March 2020

Contacts of 1m Virgin Media customers left on unsecured database

Contacts of 1m Virgin Media customers left on unsecured database

At least one person from outside Virgin Media accessed non-financial details

Almost a million Virgin Media customers had their personal details stored on a marketing database that had been left unsecured since last April, the company has admitted.

Records show that the database has been accessed by at least one person from outside the company, Virgin Media said, although it does not yet have any evidence that the information has been used illegally.

Continue reading...
05 March 2020

Facebook sues Namecheap for letting scammers register lookalike domains

Facebook says Namecheap did not cooperate and share details about owners of suspicious domains.
05 March 2020

Facebook sues Namecheap to unmask hackers who registered malicious domains

Facebook says Namecheap did not cooperate and share details about the owners of the suspicious domains.
05 March 2020

Chris Eng: Patch Management Challenges Drive ‘Security Debt’

Chris Eng: Patch Management Challenges Drive ‘Security Debt’ Chris Eng with Veracode talks about how organizations are falling into security debt due to patch management issues.
05 March 2020

Chris Eng: Patch Management Challenges Drive ‘Security Debt’

Chris Eng: Patch Management Challenges Drive ‘Security Debt’ Chris Eng with Veracode talks about how organizations are falling into security debt due to patch management issues.
05 March 2020

6 Steps CISOs Should Take to Secure Their OT Systems

The first question each new CISO must answer is, "What should I do on Monday morning?" My suggestion: Go back to basics. And these steps will help.
05 March 2020

Poll: Strengthening Security ... by Easing Security?

If security measures were made easier for end users, would your organization be more secure?
05 March 2020

Microsoft, Google, Facebook, and others join forces with law enforcement on child abuse crackdown

Participating tech firms include Facebook, Google, Microsoft, Twitter, Snap, and Roblox.
05 March 2020

Researchers Find 670+ Microsoft Subdomains Vulnerable to Takeover

The now-fixed flaw could have enabled attackers to trick users into downloading malicious content or sharing credentials.
05 March 2020

Request for Comments: Software-based PIN Entry on COTS Standard v1.1

 

From 2 March to 31 March 2020, PCI SSC stakeholders can participate in a Request for Comments (RFC) on the Software-based PIN Entry on COTS Standard v1.1 draft. 

05 March 2020

Search Engine Aims to Make Dark Markets More Accessible

Two years after the administrator of the Grams search engine shuttered the service, another search engine for finding questionable and illegal goods on the Dark Web has opened up shop.
05 March 2020

High-Severity Cisco Webex Flaws Fixed

High-Severity Cisco Webex Flaws Fixed The high-severity flaws, existing in Webex Player and Webex Network Recording Player, can allow arbitrary code execution.
05 March 2020

High-Severity Cisco Webex Flaws Fixed

High-Severity Cisco Webex Flaws Fixed The high-severity flaws, existing in Webex Player and Webex Network Recording Player, can allow arbitrary code execution.
05 March 2020

Advanced Tech Needs More Ethical Consideration & Security

Unintended consequences and risks need board-level attention and action.
05 March 2020