Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Disney+ Credentials Land in Dark Web Hours After Service Launch
The credentials, priced from free to $11 per account, appear to be due to victims' re-use of logins and passwords.
Joker's Stash Puts $130M Price Tag on Credit Card Database
A new analysis advises security teams on what they should know about the underground payment card seller.
California DMV Leak Spills Data from Thousands of Drivers
Federal agencies reportedly had improper access to Social Security data belonging to 3,200 license holders.
Database Error Exposes 7.5 Million Adobe Customer Records
The database was open for approximately one week before the problem was discovered.
FBI Expands Election Security Initiative
The program offers resources and advice to help protect elections at every level within the US.
20M Russians' Personal Tax Records Exposed in Data Leak
An unprotected Elasticsearch cluster contained personally identifiable information on Russian citizens from 2009 to 2016.
One Arrested in Ecuador's Mega Data Leak
Officials arrest a leader of consulting firm Novaestrat, which owned an unprotected server that exposed 20.8 million personal records.
24.3M Unsecured Health Records Expose Patient Data, Images
Several hundred servers storing medical data are connected to the Internet without any protection for sensitive information and images.
US Companies Unprepared for Privacy Regulations
US companies are poorly prepared for even the most rudimentary privacy regulations, a new report says.
Oracle Expands Cloud Security Services at OpenWorld 2019
The company broadens its portfolio with new services developed to centralize and automate cloud security.
Data Leak Affects Most of Ecuador's Population
An unsecured database containing 18GB of data exposed more than 20 million records, most of which held details about Ecuadorian citizens.
Job-Seeker Data Exposed in Monster File Leak
The job website says it cannot notify users since the exposure occurred on a third-party organization's servers.
419M Facebook User Phone Numbers Publicly Exposed
It's still unclear who owned the server storing hundreds of millions of records online without a password.
Imperva Customer Database Exposed
A subset of customers for the company's Incapsula web application firewall had their email addresses, hashed/salted passwords, and more open to unauthorized access, Imperva announced.
6 Ways Airlines and Hotels Can Keep Their Networks Secure
As recent news can attest, travel and hospitality companies are prime targets for cybercriminals. Here are six privacy and security tips that can help lock down privacy and security.
IBM Announces Quantum Safe Encryption
Techniques too tough for quantum computing solutions will be part of public cloud and tape storage encryption.
MoviePass Leaves Credit Card Numbers, Personal Data Exposed Online
Thousands of customers' credit card numbers, MoviePass card numbers, and sensitive data were left in an unprotected database.
Capital One: What We Should Learn This Time
Where Capital One went wrong, what the bank did right, and more key takeaways from the latest mega-breach.
Researcher Find Open 'Road Map' to Honda Computers
An unprotected database, now secured, contained information on every computer owned by the automobile giant.
Equifax to Pay Up to $700M for Data Breach Damages
In a settlement with the FTC, consumers affected by the breach are eligible for up to $20,000 in a cash settlement, depending on damages they can prove.
The Security of Cloud Applications
Despite the great success of the cloud over the last decade, misconceptions continue to persist. Here's why the naysayers are wrong.
Britain Looks to Levy Record GDPR Fine Against British Airways
The penalty is a sign of things to come, say experts.
Federal Photos Filched in Contractor Breach
Data should never have been on subcontractor's servers, says Customs and Border Protection.
Flipboard Confirms Two Hacks, Prompts Password Resets
The company reports two incidents affected a subset of its users and is resetting passwords for involved accounts.
GandCrab Gets a SQL Update
A new attack is found that uses MySQL as part of the attack chain in a GandCrab ransomware infection.
Data Asset Management: What Do You Really Need?
At Interop, a cybersecurity and privacy leader explains her approach to data management and governance at a massive, decentralized company.
49 Million Instagram Influencer Records Exposed in Open Database
An AWS-hosted database was configured with no username or password required for access to personal data.
Misconfigured Ladders Database Exposed 13M User Records
Job-hunting site Ladders leaves job seeker data exposed on the Internet.
Unknown, Unprotected Database Exposes Info on 80 Million US Households
A database with no login required has been found to contain names, addresses, age, and more for over 80 million U.S. households.
App Exposes Wi-Fi Credentials for Thousands of Private Networks
A database used by WiFi Finder was left open and unprotected on the Internet.
Data on Thousands of Law Enforcement Personnel Exposed in Breach
Unknown hackers broke into databases of nonprofit and have posted online personal info on FBI, Secret Service, Capitol Police, US Park Police, others.
In Security, All Logs Are Not Created Equal
Prioritizing key log sources goes a long way toward effective incident response.
40% of Organizations Not Doing Enough to Protect Office 365 Data
Companies could be leaving themselves vulnerable by not using third-party data backup tools, a new report finds.
Enterprise Data Encryption Hits All-time High
A new report by the Ponemon Institute shows 45% of organizations have a comprehensive encryption policy in place.
Tidying Expert Marie Kondo: Cybersecurity Guru?
The "KonMari" method of decluttering can be a huge step toward greater security, according to a growing number of executives.
763M Email Addresses Exposed in Latest Database Misconfiguration Episode
MongoDB once again used by database admin who opens unencrypted database to the whole world.
Hackers Break into System That Houses College Application Data
More than 900 colleges and universities use Slate, owned by Technolutions, to collect and manage information on applicants.
Debunking 5 Myths About Zero Trust Security
Rather than "trust but verify," a zero trust model assumes that attackers will inevitably get in — if they aren't already. However, several misconceptions are impeding its adoption.
Airbus Employee Info Exposed in Data Breach
Few details as yet on a cyberattack that hit Airbus' commercial aircraft business.
Rubrik Data Leak is Another Cloud Misconfiguration Horror Story
A server security mishap exposed vast stores of data belonging to clients of Rubrik, a security and cloud management firm.
Evidence in Starwood/Marriott Breach May Point to China
Attackers used methods, tools previously used by known Chinese hackers.
Starwood Breach Reaction Focuses on 4-Year Dwell
The unusually long dwell time in the Starwood breach has implications for both parent company Marriott International and the companies watching to learn from.
Quora Breach Exposes Information of 100 Million Users
The massive breach has exposed passwords for millions who didn't remember having a Quora account.
First Lawsuits Filed in Starwood Hotels' Breach
Class-action suits have been filed on behalf of guests and shareholders, with more expected.
Massive Starwood Hotels Breach Hits 500 Million Guests
Among the unknowns: who is behind the breach and how many of the affected records have been sold or used by criminals.
Incorrect Assessments of Data Value Putting Organizations at Risk
Information security groups often underestimate or overestimate the true value of data assets, making it harder to prioritize controls.
Barclays, Walmart Join New $85M Innovation Coalition
Innovation incubator Team8 recruits major partners, investors to create new products that help businesses 'thrive by security.'
Oracle Issues Massive Collection of Critical Security Updates
The software updates from Oracle address a record number of vulnerabilities.
GAO Says Equifax Missed Flaws, Intrusion in Massive Breach
A report from the Government Accountability Office details the issues found and opportunities missed in the huge 2017 Equifax data breach.
|
Special Report: Computing's New NormalThis special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Tweet This
0 Comments
