Topic   Web Sites   
   
26.5 million Comcast Xfinity customers had their partial home addresses and SSNs exposed
Overview: "Poor security measures have reportedly put the personal details of over 26.5 million Comcast Xfinity customers at risk, a researcher has revealed," Tripwire reports. 
 
Author: Graham Cluley   Web Site: www.tripwire.com   Date: 8/9/2018
Topics: Data Loss Prevention (DLP)

Clarksons says single user account to blame for data breach
Overview: "Clarkson PLC has revealed that a single user account was at the crux of a data breach resulting in the theft of confidential information," ZDNet reports. 

Clarksons provided a security update on the 2017 data breach: 

"On November 7, 2017, Clarksons learned that it was the subject of a cyber security incident in which an unauthorized third party accessed certain Clarksons' computer systems in the UK, copied data, and demanded a ransom for its safe return. As soon as the incident was discovered, Clarksons took steps to respond to and manage the incident, including launching an immediate investigation into the nature and scope of the event, notifying regulators, working with third party forensic investigators, and informing law enforcement.

"Through the forensic investigation, Clarksons quickly learned that the unauthorized third party had gained access to its system from May 31, 2017 until November 4, 2017. Clarksons learned that the unauthorized access was gained via a single and isolated user account. Upon discovering this access, Clarksons immediately disabled this account."


 
Author: Charlie Osborne   Web Site: www.zdnet.com   Date: 7/31/2018
Topics: Access Control, Password Management System, User ID Management

Breach at Electronics Retailer Might Have Exposed 10M Data Records
Overview: "A 2017 breach at one of the largest consumer electronics retailers in Europe might have exposed 10 million records containing personal data," Tripwire reports. 
 
Author: David Bisson   Web Site: www.tripwire.com   Date: 7/31/2018
Topics: Data Loss Prevention (DLP), General Security Awareness

Idaho inmates hacked prison system to add money to their accounts
Overview: "364 inmates at five correctional facilities in Idaho have managed to add nearly a quarter million dollars worth of credit to their JPay accounts by exploiting a vulnerability in the system," Help Net Security and the Associated Press reported.
 
Author: Zeljka Zorz   Web Site: www.helpnetsecurity.com   Date: 7/30/2018
Topics: General Security Awareness

Shipping Company Struck by Ransomware Attack
Overview: "A shipping company suffered a ransomware attack that affected certain network systems in one of its regions of operation," Tripwire reports. 
 
Author: David Bisson   Web Site: www.tripwire.com   Date: 7/27/2018
Topics: Malicious Software Controls

Russian hackers said to have infiltrated US electric utilities
Overview: "According to a Wall Street Journal report citing official at the Department of Homeland Security, hackers from a Russian-sponsored group broke into networks of key U.S. power companies as early as spring of 2016," CNBC reports (see video). 
 
Author: CNBC   Web Site: www.cnbc.com   Date: 7/24/2018
Topics: General Security Awareness

Google Chrome: HTTPS by default D-Day is tomorrow, folks
Overview: "Google Chrome users who visit unencrypted websites will be confronted with warnings from tomorrow...The changes will come for surfers using the latest version of Google Chrome, version 68," The Register reports. 
 
Author: John Leyden   Web Site: www.theregister.co.uk   Date: 7/23/2018
Topics: Application Security, Authentication

Google: Security Keys Neutralized Employee Phishing
Overview: "Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place of passwords and one-time codes, the company told KrebsOnSecurity," Brian Krebs reports. 
 
Author: Brian Krebs   Web Site: krebsonsecurity.com   Date: 7/23/2018
Topics: Authentication, Social Engineering (e.g., phishing)

Four Healthcare IT Companies Warn PHO Put 800K Patients’ Data at Risk
Overview: "Four healthcare IT companies warned that a primary health organization (PHO) put up to 800,000 patients’ medical data at risk," Tripwire reports. 
 
Author: David Bisson   Web Site: www.tripwire.com   Date: 7/17/2018
Topics: Data Loss Prevention (DLP), Legal, Regulatory and Compliance

User data exposed in Domain Factory hosting security breach
Overview: "German hosting provider Domain Factory has experienced a data breach which has exposed customer data," ZDNet reports. 
 
Author: Charlie Osborne   Web Site: www.zdnet.com   Date: 7/9/2018
Topics: Data Loss Prevention (DLP)

Disgruntled programmer accused of trying to sell his firm’s iPhone spyware for $50 million
Overview: "Israeli media have uncovered an indictment that details how an employee allegedly stole NSO Group’s spyware code and attempted to steal it for a third party for $50 million," Tripwire reports. 
 
Author: Graham Cluley   Web Site: www.tripwire.com   Date: 7/6/2018
Topics: General Security Awareness

Restaurant Chain Struck by Payment Card Data Breach
Overview: "An American restaurant chain revealed it suffered a data breach affecting customers’ payment card details at most of its locations...On 22 June, PDQ issued a statement explaining that a malicious attacker obtained unauthorized access to its computer system and acquired the names, credit card numbers, expiration dates and cardholder verification value (CVV) of some of its customers," Tripwire reports. 
 
Author: David Bisson   Web Site: www.tripwire.com   Date: 6/28/2018
Topics: General Security Awareness, Third-party Security

Inbenta, blamed for Ticketmaster breach, says other sites not affected
Overview: "A support chat tool, used to help dozens of major websites interact with customers, has been blamed for a security breach at Ticketmaster, but the tool's creator says no other customers are at risk," ZDNet reports. 
 
Author: Zack Whittaker   Web Site: www.zdnet.com   Date: 6/28/2018
Topics: Third-party Security

Comcast fixes another Xfinity website data leak
Overview: "A little-known page on Comcast's Xfinity website was exposing customers' account information to anyone -- or any app -- on a customer's network," ZDNet reports. 
 
Author: Zack Whittaker   Web Site: www.zdnet.com   Date: 6/25/2018
Topics: Configuration Management, Data Loss Prevention (DLP)

270,000 Med Associates records possibly compromised in data breach
Overview: "Healthcare claims services provider Med Associates is notifying its patients that the facility suffered a data breach in March potentially exposing PII, including medical diagnosis and payment card information," SC Magazine reports. 
 
Author: Doug Olenick   Web Site: www.scmagazine.com   Date: 6/22/2018
Topics: Data Loss Prevention (DLP)

South Korean Cryptocurrency Exchange Loses $32M in Heist
Overview: "A South Korean cryptocurrency exchange suffered a heist in which thieves made off with approximately $32 million in stolen assets," Tripwire reports. 
 
Author: David Bisson   Web Site: www.tripwire.com   Date: 6/20/2018
Topics: General Security Awareness

Apple Removes iPhone USB Access Feature, Blocking Out Hackers, Law Enforcement
Overview: "Apple said an upcoming iOS software update will remove the infamous iPhone USB access feature, blocking out both hackers – and law enforcement – from accessing a locked phones’ data via the device port," Threatpost reports. 
 
Author: Lindsey O'Donnell   Web Site: threatpost.com   Date: 6/14/2018
Topics: Mobile Device Security

FBI announces arrest of 74 email fraudsters
Overview: "The US Justice Department on Monday announced the arrest of 74 individuals, including 42 in the US, for their involvement in 'business email compromise' (BEC) schemes designed to steal money and valuable information from both businesses and individuals," ZDNet reports. 
 
Author: Stephanie Condon   Web Site: www.zdnet.com   Date: 6/11/2018
Topics: Electronic Messaging Security, General Security Awareness

Unprotected Server Exposes Weight Watchers Internal IT Infrastructure
Overview: "A critical server for popular weight-loss service Weight Watchers was left unprotected, allowing researchers to take a bite out of dozens of exposed S3 buckets containing company data and AWS access keys...Researchers at Kromtech Security said that they discovered a Weight Watchers Kubernetes administration console earlier this month that was accessible over the Internet – without any password protection," Threatpost reports. 
 
Author: Lindsey O'Donnell   Web Site: threatpost.com   Date: 6/11/2018
Topics: Cloud Computing Security, Configuration Management

South Korean Cryptocurrency Exchange Coinrail Confirms Hacking Attempt
Overview: "South Korean cryptocurrency exchange Coinrail said it’s cooperating with law enforcement after suffering a hacking attempt," Tripwire reports. 
 
Author: David Bisson   Web Site: www.tripwire.com   Date: 6/11/2018
Topics: General Security Awareness

Password reset flaw at internet giant Frontier allowed account takeovers
Overview: "A bug in how cable and internet giant Frontier reset account passwords allowed anyone to take over user accounts," ZDNet reports. 
 
Author: Zack Whittaker   Web Site: www.zdnet.com   Date: 6/9/2018
Topics: Authentication, Password Management System

Atlanta Ransomware Attack Wiped Out Years of Police Dashcam Footage
Overview: "A ransomware attack targeting the city of Atlanta wiped out years of dashcam footage generated by the Atlanta Police Department," Tripwire reports. 
 
Author: David Bisson   Web Site: www.tripwire.com   Date: 6/5/2018
Topics: Malicious Software Controls

Ex-CEO on TalkTalk mega breach: It woz 'old shed' legacy tech wot done it
Overview: "Infosec Europe Baroness Dido Harding, former chief exec of Brit telco TalkTalk, warned other business leaders of the dangers posed by legacy tech in the opening keynote of the Infosecurity Europe conference," The Register reports. 
 
Author: John Leyden   Web Site: www.theregister.co.uk   Date: 6/5/2018
Topics: Configuration Management, Vulnerability Management

Researchers Warn of Microsoft Zero-Day RCE Bug
Overview: "Researchers have discovered a medium-severity Windows vulnerability that enables remote attackers to execute arbitrary code – and Microsoft hasn’t issued a patch yet," Threatpost reports. 
 
Author: Lindsey O'Donnell   Web Site: threatpost.com   Date: 6/1/2018
Topics: Vulnerability Management

Hoax alert! Starbucks is NOT inviting you to test its shatterproof windows
Overview: "According to a hoax post that’s been making the rounds on Facebook and anarchist forums such as Nerdica.net, Starbucks is installing new shatterproof windows that scientists have been working on for the past three years," Naked Security reports.
 
Author: Lisa Vaas   Web Site: nakedsecurity.sophos.com   Date: 5/31/2018
Topics: Social Engineering (e.g., phishing)