A lack of investment in cyber-security protections could imperil the future of smart cities and the IoT devices on which they run
Azure Blob Storage and Web Sites misused by scammers to create a semi-targeted and rather convincing credential harvesting page tailored to the user's organisation to fool users
Paige Thompson, the person behind the massive Capital One data breach that exposed more than 100 million records will request a bail before a federal judge on 23 August
A MoviePass subdomain database housing 161 million records was left unsecured and exposed credit card and customer card information on at least 60,000 of the ticket service's customers
The Google Nest Cam IQ Indoor camera harbours a series of security loopholes, which could be used to disrupt or hijack the device
Records of online porn access from all over the world exposed, with particular concentrations located in France, Germany and Russia
Ransomware threats continue to evolve at an accelerated rate, according to security researchers
Security researchers have warned of a new malware campaign that spreads a banking trojan by using fake websites of popular software. Hackers fool users with valid SSL certificate
The number of data breaches reported and records exposed both increased by more than 50 percent during the first half of 2019
The US has renewed a temporary licence that allows American companies to sell their products to Huawei, saying more time is necessary to prevent any disruption
Delta Airlines has sued its chatbot vendor 7.ai, alleging that the company took nearly six months to disclose a breach
Using external data storage and third-party digital technology clearly puts banks on the hackers' radar, warned European Central Bank's supervisory arm director general Korbinian Ibel following a hack of ECB's website
Estonia's president calls on state to develop cyber-security, cryptography capabilities after an earlier ID card crisis put half the population at risk of id theft.
A breach at online hacking forum Cracked.to resulted in a public doxxing that exposed a database containing 749,161 email accounts, as well as corresponding IP addresses
Almost half of the cyber-security incidents reported in the UK over the past 12 months were caused by internal errors, where employees failed to follow security protocol or data protection policies
First American Financial Corp. has become the subject of a US Securities and Exchange Commission investigation, following the discovery of a website defect that left 885 million documents exposed to the public
Veteran threat actor group Cloud Atlas boosts favoured tactics, tools and procedures by introducing polymorphic components that hinder detection
Security issues in F5 devices potentially make hundreds of thousands of load balancers into cyber-attack entry-points
A new password-stealer malware, which targets cryptocurrencies, brute-forces and steals administrator credentials from unsecured WordPress websites
A Russian hacking group has gained access to corporate networks through hacking their IoT devices
North Korea has amassed £1.6 billion through at least 35 attacks on financial companies and cryptocurrency exchanges across 17 countries
A new variant of MegaCortex ransomware is targeting enterprises across the US and Europe
Confidence/romance fraud is the seventh most commonly reported scam, said an alert from FBI
Researchers have revealed a dedicated "sextortion" scam botnet targeting more than 200 million compromised accounts
Heavy financial penalties can act as a deterrent for organisational complacency on cyber-security, says Chartered Institute of Information Security CEO Amanda Finch
Republican members of the House of Representatives' Committee on Oversight and Reform have sent open letters to Capital One and Amazon to arrange a briefing with Congressional staff members on the recent data breach
Pearson has discovered and patched a breach that exposed student data, including first and last names, dates of birth, and emails
The financial services sector is on its toes after reports of more breaches and security shortfalls internationally in the wake of the Capital One disclosure.
Spear-phishing emails containing a malicious Microsoft Word attachment that installs RAT are specifically targetting utilities in a new campaign.
Amavaldo was found specifically targeting Brazilian banks and their users earlier, but they have shifted their activities to Mexico
Autonomous vehicle sensors can be tricked by using drones, which project road images too quick for humans to see but slow enough for the vehicle's sensors
Honda Motor Company has left open approximately 134 million documents totalling 40GB of data
Entrepreneurial cyber-criminals are now renting out access to databases that combine log-in, passwords and other details, having first curated and packaged stolen credentials before selling them.
Field Army rebalancing is part of the Army's response to emerging threats; 6th Division to focus on cyber, electronic warfare, intelligence, information operations and unconventional warfare.
Sephora informed its online customers about a breach on 29 July, adding that no credit card information was involved nor has any of the data exposed been used in a malicious manner
A former AWS employee accessed Capital One data, including information on consumers and small businesses as of the time they applied for credit cards from 2005 through early 2019
Criminals could spend more than £30 limit on Visa contactless cards using MitM attack that worked on five UK banks.
Digital transformation knocks cyber-security off its perch, staff incentives not working, the skills gap impacts maturity & business' ability to quantify security risk, says Brennan P Baybeck, ISACA board chair.
Russian interference in the US elections may have been to gather as much information as possible for espionage purposes, explore potential vulnerabilities for possible future exploitation, said a US senate committee report
On the third anniversary of the No More Ransom initiative Europol issued statistics on its successes including that the site has helped more than 200,000 people recover files after a ransomware attack.
Organisations are urged to update systems to avoid attacks following concerns that exploits using the BlueKeep vulnerability may be soon available to hackers.
Intrusion Truth has named three individuals as members of cyber-espionage group APT17, all of whom are located in the city of Jinan, the capital of China's Shandong province.
ICCS 2019: AG Barr criticises strong encryption, European experiment offers teen hackers second chance
Hack Right programme aims at identifying and employing the skills of young hackers in community service
EMEA IT teams receive more suspicious emails than the global average, are most likely to fall victim to a spear-phishing attack and suffer greater reputational impact, but over half thought they were more secure.
Monokle spyware snares Android users when they download trojanised versions of what appear to be legitimate applications
UK ransomware volume jumps 195 percent in the first half of 2019; average cost of a data breach reaches £3.14 million
Cyber-espionage group members are using fake LinkedIn profiles to gain their victim's trust to open malicious documents
Researchers discovered a new reverse shell malware program used by cyber-criminal FIN8 group to establish command-and-control communications with infected machines
UK government delays decision on allowing Huawei to set up 5G network, but pledges to tighten up cyber-security in telecoms sector
Charge against Bulgarian cybersecurity worker Kristian Boykov has been reduced from computer crime against critical infrastructure to crime against information systems, which has a much lesser jail term
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout