Topic   Web Sites   
HSBC Bank Notifies Customers of Data Breach
Overview: "HSBC Bank sent a letter to an undisclosed number of customers informing them of a data breach that might have exposed their personal information," Tripwire reports. 
Author: David Bisson   Web Site:   Date: 11/6/2018
Topics: General Security Awareness

Files Encrypted by GandCrab Ransomware Can Now Be Decrypted for Free
Overview: "GandCrab has become one of the most devastating, and hence most successful, ransomware families of 2018. Alongside the Dharma cryptovirus family, GandCrab has enslaved the files of millions of users in a number of active campaigns via several iterations," Tripwire reports. 
Author: Tripwire   Web Site:   Date: 10/25/2018
Topics: Malicious Software Controls

RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
Overview: "A US court has sentenced a programmer to 30 months in a federal prison in connection with software that claimed to be a legitimate tool for Windows sysadmins to remotely manage computers, but was actually used by criminals to backdoor PCs and secretly spy on victims," Tripwire reports. 
Author: Graham Cluley   Web Site:   Date: 10/18/2018
Topics: General Security Awareness, Legal, Regulatory and Compliance

Scottish Ambulance Service Exposed Employees’ Data Online
Overview: "The Scottish Ambulance Service suffered a data breach in which it exposed its staff members’ personal information online," Tripwire reports. 
Author: David Bisson   Web Site:   Date: 10/15/2018
Topics: Data Privacy

For some cloud services more than 75% of accounts are utilized by hackers
Overview: "Researchers found that 21.57% percent of accounts originating from cloud service IP ranges appear to be fraudulent. Malicious accounts are eight times more likely to originate via cloud services than normal users. In fact, some cloud services and data centers can have more than 75% fraudulent accounts," Help Net Security reports. 
Author: Help Net Security   Web Site:    Date: 10/4/2018
Topics: Access Control, Cloud Computing Security, User ID Management

Network Outage at Some Recipe Unlimited Locations Caused by Malware
Overview: "A malware outbreak was responsible for a network outage that affected a limited number of Recipe Unlimited restaurant locations," Tripwire reports. 
Author: David Bisson   Web Site:   Date: 10/3/2018
Topics: Malicious Software Controls

Tesco Bank Fined £16.4 Million for 2016 Digital Attack
Overview: "Regulators imposed a fine of £16.4 million on Tesco Bank for a digital attack that affected some customers and their accounts in 2016," Tripwire reports. 
Author: David Bisson   Web Site:   Date: 10/1/2018
Topics: General Security Awareness

FBI forces Apple iPhone X owner to unlock device through Face ID
Overview: "US law enforcement has forced an Apple iPhone X user to unlock their device with their face as part of an investigation...this is believed to be the first recorded incident in which law enforcement in any country has used a search warrant to force a mobile device owner to bypass the facial recognition technology," ZDNet reports. 
Author: Charlie Osborne   Web Site:   Date: 10/1/2018
Topics: General Security Awareness

DDoS attacks took down Calif. Democratic hopeful’s website during primaries
Overview: "A distributed denial of service (DDoS) attack took down California Democratic congressional hopeful Bryan Caforio’s website just hours before he stepped onto the debate stage to face fellow Democrats," SC Magazine reports. 
Author: Teri Robinson   Web Site:   Date: 9/21/2018
Topics: Network Security

Equifax fined £500,000 over customer data breach
Overview: "Equifax has been issued a £500,000 fine after a catastrophic data breach in 2017 led to the compromise of data belonging to up to 15 million UK citizens," ZDNet reports. 
Author: Charlie Osborne   Web Site:   Date: 9/20/2018
Topics: Data Privacy, Legal, Regulatory and Compliance

The makers of the Mirai IoT-hijacking botnet are sentenced
Overview: "Three men who operated and controlled the notorious Mirai botnet have been sentenced to five years of probation," Tripwire reports. 
Author: Graham Cluley   Web Site:   Date: 9/19/2018
Topics: Legal, Regulatory and Compliance, Malicious Software Controls

Equifax IT staff had to rerun hackers' database queries to work out what was nicked – audit
Overview: "Equifax was so unsure how much data had been stolen during its 2017 mega-hack that its IT staff spent weeks rerunning the hackers' database queries on a test system to find out," The Register reports. 
Author: John E. Dunn   Web Site:   Date: 9/17/2018
Topics: Data Loss Prevention (DLP)

MageCart Attackers Compromise Cloud Service Firm Feedify
Overview: "Payment card data from customers of hundreds of e-commerce websites may have been stolen after the MageCart threat actors managed to compromise customer engagement service Feedify," Security Week reports. 
Author: Ionut Arghire   Web Site:   Date: 9/15/2018
Topics: General Security Awareness

Police Investigating Data Breach at Chinese Hotel Group
Overview: "Local authorities are currently investigating a data breach at a Chinese hotel group that could have exposed customers’ personal information," Tripwire reports. 
Author: David Bisson   Web Site:   Date: 8/30/2018
Topics: General Security Awareness

Fiserv Flaw Exposed Customer Data at Hundreds of Banks
Overview: "Fiserv, Inc., a major provider of technology services to financial institutions, just fixed a glaring weakness in its Web platform that exposed personal and financial details of countless customers across hundreds of bank Web sites, KrebsOnSecurity has learned," Brian Krebs reports. 
Author: Brian Krebs   Web Site:   Date: 8/28/2018
Topics: General Security Awareness

OCR software firm ABBYY leaks 203,000 customer documents in MongoDB server snafu
Overview: "ABBYY, the developer of optical character recognition and text-scanning software, left a server containing 142GB of a customer’s scanned documents exposed for anyone on the internet to access, no password required," Tripwire reports. 
Author: Graham Cluley   Web Site:   Date: 8/28/2018
Topics: Data Loss Prevention (DLP)

Hackers help themselves to data belonging to 2 million T-Mobile customers
Overview: "T-Mobile has reported a security incident which may have led to the exposure of personal data belonging to approximately two million customers," ZDNet reports. 
Author: Charlie Osborne   Web Site:   Date: 8/27/2018
Topics: Data Loss Prevention (DLP), Data Privacy

26.5 million Comcast Xfinity customers had their partial home addresses and SSNs exposed
Overview: "Poor security measures have reportedly put the personal details of over 26.5 million Comcast Xfinity customers at risk, a researcher has revealed," Tripwire reports. 
Author: Graham Cluley   Web Site:   Date: 8/9/2018
Topics: Data Loss Prevention (DLP)

Clarksons says single user account to blame for data breach
Overview: "Clarkson PLC has revealed that a single user account was at the crux of a data breach resulting in the theft of confidential information," ZDNet reports. 

Clarksons provided a security update on the 2017 data breach: 

"On November 7, 2017, Clarksons learned that it was the subject of a cyber security incident in which an unauthorized third party accessed certain Clarksons' computer systems in the UK, copied data, and demanded a ransom for its safe return. As soon as the incident was discovered, Clarksons took steps to respond to and manage the incident, including launching an immediate investigation into the nature and scope of the event, notifying regulators, working with third party forensic investigators, and informing law enforcement.

"Through the forensic investigation, Clarksons quickly learned that the unauthorized third party had gained access to its system from May 31, 2017 until November 4, 2017. Clarksons learned that the unauthorized access was gained via a single and isolated user account. Upon discovering this access, Clarksons immediately disabled this account."

Author: Charlie Osborne   Web Site:   Date: 7/31/2018
Topics: Access Control, Password Management System, User ID Management

Breach at Electronics Retailer Might Have Exposed 10M Data Records
Overview: "A 2017 breach at one of the largest consumer electronics retailers in Europe might have exposed 10 million records containing personal data," Tripwire reports. 
Author: David Bisson   Web Site:   Date: 7/31/2018
Topics: Data Loss Prevention (DLP), General Security Awareness

Idaho inmates hacked prison system to add money to their accounts
Overview: "364 inmates at five correctional facilities in Idaho have managed to add nearly a quarter million dollars worth of credit to their JPay accounts by exploiting a vulnerability in the system," Help Net Security and the Associated Press reported.
Author: Zeljka Zorz   Web Site:   Date: 7/30/2018
Topics: General Security Awareness

Shipping Company Struck by Ransomware Attack
Overview: "A shipping company suffered a ransomware attack that affected certain network systems in one of its regions of operation," Tripwire reports. 
Author: David Bisson   Web Site:   Date: 7/27/2018
Topics: Malicious Software Controls

Russian hackers said to have infiltrated US electric utilities
Overview: "According to a Wall Street Journal report citing official at the Department of Homeland Security, hackers from a Russian-sponsored group broke into networks of key U.S. power companies as early as spring of 2016," CNBC reports (see video). 
Author: CNBC   Web Site:   Date: 7/24/2018
Topics: General Security Awareness

Google Chrome: HTTPS by default D-Day is tomorrow, folks
Overview: "Google Chrome users who visit unencrypted websites will be confronted with warnings from tomorrow...The changes will come for surfers using the latest version of Google Chrome, version 68," The Register reports. 
Author: John Leyden   Web Site:   Date: 7/23/2018
Topics: Application Security, Authentication

Google: Security Keys Neutralized Employee Phishing
Overview: "Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place of passwords and one-time codes, the company told KrebsOnSecurity," Brian Krebs reports. 
Author: Brian Krebs   Web Site:   Date: 7/23/2018
Topics: Authentication, Social Engineering (e.g., phishing)