ANCIBE

Noticias Information Security Buzz (English)

NCSC Annual Review – Experts Comments
Publicado el: Wednesday October 23, 2019

NCSC published its annual review, finding among other things that it has thwarted more than one million cases of suspected payment card fraud.

The ISBuzz Post: This Post NCSC Annual Review – Experts Comments appeared first on Information Security Buzz.


NordVPN Breach: How Bug Bounty Programs Can Help And Resolve
Publicado el: Tuesday October 22, 2019

NordVPN, the virtual private network provider, today confirmed it was hacked through an expired, exposed, and outdated internal private key. VPN providers are becoming significantly popular due to providing security and are used frequently by users in hostile environments. So apparently NordVPN was compromised at some point. Their (expired) private keys have been leaked, meaning …

The ISBuzz Post: This Post NordVPN Breach: How Bug Bounty Programs Can Help And Resolve appeared first on Information Security Buzz.


The Guide To Achieving A Robust Cyber-Security Strategy
Publicado el: Tuesday October 22, 2019

Cybercrime damages are expected to cost businesses an enormous $6 trillion annually by 2021, and as cyber-threats become more frequent and sophisticated, the stakes are getting higher. Now, more than ever, it has become crucial for businesses of all sizes to implement a security strategy that delivers around the clock. All organisations should be operating under …

The ISBuzz Post: This Post The Guide To Achieving A Robust Cyber-Security Strategy appeared first on Information Security Buzz.


Expert On Spelevo Exploit Kit & Maze Ransomware
Publicado el: Tuesday October 22, 2019

The Spelevo exploit kit was spotted by security researchers while infecting victims with Maze Ransomware payloads via a new malicious campaign that exploits a Flash Player. Maze Ransomware, a variant of Chacha Ransomware, was initially found by Malwarebytes security researcher Jérôme Segura in May. The researcher found that the ransomware was being distributed using the Fallout exploit kit via a …

The ISBuzz Post: This Post Expert On Spelevo Exploit Kit & Maze Ransomware appeared first on Information Security Buzz.


COMMENT: Equifax Used Default ‘Admin’ User Name And Password To Secure Hacked Portal
Publicado el: Tuesday October 22, 2019

Equifax staffers used the default user name and password – ‘admin’ – to secure a portal containing sensitive customer information, Computing reported. That’s according to a class-action lawsuit launched against the company in the US, claiming securities fraud by the company over the 2017 data breach that spilled information on around 148 million accounts of people in …

The ISBuzz Post: This Post COMMENT: Equifax Used Default ‘Admin’ User Name And Password To Secure Hacked Portal appeared first on Information Security Buzz.


Comment: US Military And Government Data Included In 179GB Database Leak
Publicado el: Tuesday October 22, 2019

An open database exposing records containing the sensitive data of hotel customers as well as US military personnel and officials has been disclosed by researchers. It is said the database belonged to Autoclerk, a service owned by Best Western Hotels and Resorts group. Autoclerk is a reservations management system used by resorts to manage web bookings, revenue, loyalty programs, guest …

The ISBuzz Post: This Post Comment: US Military And Government Data Included In 179GB Database Leak appeared first on Information Security Buzz.


Iranian Spying Operation Russian Hijack
Publicado el: Tuesday October 22, 2019

A group of Russian cyber attackers dubbed ‘Turla’ have hacked another Iran-based group of cyber actors, known as ‘OilRig’ to spy on multiple countries, according to advisories by published today by the UK’s NCSC and the US’ NSA. According to reports, attacks were discovered against more than 35 countries, many of which were located in the …

The ISBuzz Post: This Post Iranian Spying Operation Russian Hijack appeared first on Information Security Buzz.


New Phishing Campaign Targets Stripe Users To Obtain Banking Data
Publicado el: Monday October 21, 2019

A phishing campaign using fake invalid account Stripe support alerts as lures has been spotted while attempting to harvest customers’ bank account info and user credentials using booby-trapped Stripe customer login pages. Stripe is one of the top online payment processors, a company that provides the payment logistics internet businesses need to accept payments over the Internet …

The ISBuzz Post: This Post New Phishing Campaign Targets Stripe Users To Obtain Banking Data appeared first on Information Security Buzz.


Experts Reaction On Government Partnering With Arm To Develop New Cyber Techie
Publicado el: Monday October 21, 2019

It has been reported that the Government announced that it has partnered with UK tech giant Arm as it pumps more than £50m into a new programme to improve the country’s cybersecurity. Chipmaker Arm, which was bought by Softbank in 2016, will receive £36m to develop new chip technology that is more resistant to cyber-attacks. A further £18m will be injected into …

The ISBuzz Post: This Post Experts Reaction On Government Partnering With Arm To Develop New Cyber Techie appeared first on Information Security Buzz.


Stripe Phishing Attack Steals Banking Info – Expert Comments
Publicado el: Friday October 18, 2019

The Cofense Phishing Defense Center (PDC) published research Thursday on a phishing campaign that aims to harvest credentials from Stripe, the online payment facilitator handling billions of dollars annually, making it an attractive target for threat actors seeking to use compromised accounts to gain access to payment card information and defraud consumers.

The ISBuzz Post: This Post Stripe Phishing Attack Steals Banking Info – Expert Comments appeared first on Information Security Buzz.