featured Archives - Page 31 of 75 - Cyber Security Minute

Neiman Marcus Confirms Payment Cards Compromised in Data Breach

Issued by: Security Week

During the incident, which occurred in May 2020, hackers were able to exfiltrate information associated with online customer accounts, including payment card data, the company says. A total of 4.6 million online customers were affected by the attack and Neiman Marcus is working on notifying them. The company also says that 3.1 million payment and…

Malware & Threats

China Intensified Attacks on Major Afghan Telecom Firm as U.S. Finalized Withdrawal

Issued by: Security Week

Threat intelligence company Recorded Future reported on Tuesday that it had seen four different Chinese threat groups targeting a mail server belonging to Roshan, a major telecom provider that has more than 6.5 million subscribers across Afghanistan. The attacks were conducted by the groups known as Calypso and RedFoxtrot, as well as two different Winnti…

Malware & Threats

BloodyStealer: Advanced New Trojan Targets Accounts of Popular Online Gaming Platforms

Issued by: Dark Reading

Kaspersky researchers have discovered an advanced Trojan, dubbed BloodyStealer, sold on darknet forums and used to steal gamers’ accounts on popular gaming platforms, including Steam, Epic Games Store, and EA Origin. With features to avoid analysis and detection, a low subscription price, and some interesting capabilities, BloodyStealer is a prime example of the types of…

Malware & Threats

A multi-party data breach creates 26x the financial damage of single-party breach

Issued by: Help Net Security

Cyentia Institute and RiskRecon released a research that quantifies how a multi-party data breach impacts many organizations in today’s interconnected digital world. The study is based on an analysis of 897 multi-party breaches involving three or more interrelated companies. The impact of multi-party data breach events 897 multi-party data breach incidents, also referred to as…

Malware & Threats

UK Minister Sorry Over Afghan Interpreters’ Data Breach

Issued by: Security Week

A Defense Ministry email to more than 250 Afghans who are eligible for relocation and still remain in Afghanistan was mistakenly copied to all applicants Monday instead of blind copied. British media reports said the people whose email addresses were distributed included some individuals who are in hiding from the Taliban. “It is an unacceptable…

Malware & Threats

Ransomware Group Demands Millions From U.S. Farmer Cooperative

Issued by: Security Week

The attackers are a group that uses the BlackMatter ransomware and the victim is Fort Dodge, Iowa-based New Cooperative, which has 60 members and offers agronomy, grain, feed, energy, and software solutions. New Cooperative has confirmed that it’s dealing with a “cybersecurity incident” that has impacted some of its systems. The company says it has…

Software Security

A Journey in Organizational Cyber Resilience Part 2: Business Continuity

Issued by: Security Intelligence

Keeping a business up and running during a problem takes the right people for the job. When it comes to cyber resilience through tough times, many things come down to the human factor. We focused on that in the first piece in this series, but it also makes a big difference to the second topic:…

Malware & Threats

Mirai Botnet Starts Exploiting OMIGOD Flaw as Microsoft Issues More Guidance

Issued by: Security Week

Microsoft’s guidance was published just as researchers noticed that one of the vulnerabilities is already being exploited in the wild. It appears that the Mirai botnet is attempting to compromise vulnerable systems and that it also closes port 5896 (OMI SSL port) to keep other attackers out. An open-source Web-Based Enterprise Management (WBEM) implementation, OMI…

Application Security

Zoom Introduces End-to-End Encrypted Phone Calls

Issued by: Security Week

Starting last year, the video calling platform has been offering E2EE in Zoom Meetings, and it is now ready to make it available for one-on-one phone conversations made through the Zoom client as well. Once the new feature is available, users will see a “More” option during phone calls, allowing them to turn on encryption,…

Vulnerabilities

Swiss Post Offers up to €230,000 for Critical Vulnerabilities in e-Voting System

Issued by: Security Week

The country introduced e-voting in 2003 on a limited basis, as part of ongoing tests, and earlier this year it disclosed the future Swiss e-voting system, in phases, to be able to implement any necessary improvements. The e-voting system is expected to deliver not only transparency, but also reliability, voting secrecy, and verifiability, while meeting…