Data Breaches News, Articles and Updates

Technology director arrested in Abingdon-Avon School District on electronic eavesdropping charges

Technology director arrested in Abingdon-Avon School District on electronic eavesdropping charges

By

Law enforcement officials in Knox County, Ill. earlier this week arrested a longtime IT employee of Abingdon-Avon School District #276 on electronic eavesdropping charges in connection with a recent data breach, according to local reports.

China cyber incursions drop, but more focused, report

China cyber incursions drop, but more focused, report

By

A new study from FireEye finds that while Chinese cyber attacks have declined, they are now "more focused, calculated, and still successful in compromising corporate networks."

Guccifer 2.0 out - Cozy Bear, Fancy Bear hacked DNC, Fidelis analysis shows

Guccifer 2.0 out - Cozy Bear, Fancy Bear hacked DNC, Fidelis analysis shows

By

A comparative analysis by Fidelis Cybersecurity of malware samples provided by the DNC supported findings by CrowdStrike that a pair of intrusions were the handiwork of the Cozy Bear and Fancy Bear APT groups purported to have ties to Russian intelligence.

Clarke: Military may be falling short in protecting weapons systems from cyberattacks

Clarke: Military may be falling short in protecting weapons systems from cyberattacks

By

The U.S. military may not be doing enough to protect its weapons systems from cyberattacks, former National Security Council (NSC) Cybersecurity Director Richard Clarke said during a recent conference.

'Password attacks' continue; Citrix becomes latest victim

'Password attacks' continue; Citrix becomes latest victim

By

Hackers used login information to launch a "sophisticated password attack" to login to Citrix's GoToMyPC user accounts, according to a company blog post.

1.5M T-Mobile records likely exposed in Czech Republic

1.5M T-Mobile records likely exposed in Czech Republic

By

Customers are at risk of marketers using the data to approach them with unsolicited offers.

Reports: Geneva authorities make arrest in Panama Papers breach case

Reports: Geneva authorities make arrest in Panama Papers breach case

By

Authorities in Geneva have reportedly arrested a former IT worker at the law firm Mossack Fonseca in connection to the Panama Papers scandal that exposed global public officials' alleged misuse of offshore tax havens.

Russian hackers access Trump files in DNC hack

Russian hackers access Trump files in DNC hack

By

Russian government hackers apparently broke into the Democratic National Committee (DNC) computer system and accessed the party's entire database on Republican candidate Donald Trump.

Survey: 66% of IT pros think their companies' cyberincident response plans are ineffective

Survey: 66% of IT pros think their companies' cyberincident response plans are ineffective

By

Companies are failing to develop, update and execute successful incident response plans in the event of a damaging cyberattack, a new white paper from AT&T Business warns.

Louisiana grapples with hurricanes, gators, now a hacker who posted data of 290K citizens on dark web

Louisiana grapples with hurricanes, gators, now a hacker who posted data of 290K citizens on dark web

By

A hacker has put drivers' license and other personal information on 290,000 of the bayou state's citizens for sale on the dark web.

Wendy's POS breach 'considerably' bigger than first thought

Wendy's POS breach 'considerably' bigger than first thought

By

Even more fast-food patrons may have a beef with The Wendy's Company, after the restaurant chain announced yesterday that the number of restaurants affected by a POS data breach may be "considerably higher" than first thought.

Report: Office of Personnel Management names Cord Chase as first CISO

Report: Office of Personnel Management names Cord Chase as first CISO

By

The U.S. Office of Personnel Management (OPM) in April discreetly hired a cybersecurity adviser from within the Office of Management and Budget (OMB) to be its new CISO, according to a report.

Consumers taking their business elsewhere after a hack, Centrify survey

Consumers taking their business elsewhere after a hack, Centrify survey

By

A new study examines consumer attitudes toward corporate hacking and companies should take heed.

Morgan Stanley to pay $1M for failing to protect 730,000 customer accounts

Morgan Stanley to pay $1M for failing to protect 730,000 customer accounts

By

Morgan Stanley agreed to pay a $1 million fine to settle a proceeding launched by the Securities and Exchange Commission's that the financial services giant failed to set up adequate precautions of customer data.

Tessa88 hacker continues rampage, puts Twitter account info up for sale

Tessa88 hacker continues rampage, puts Twitter account info up for sale

By

Already linked to the LinkedIn, Myspace, Tumblr and VK.com breaches, Russian hacker Tessa88 earlier this week claimed access to 379 million Twitter accounts, reportedly offering to sell the leaked database for 10 bitcoins.

Uber forks over $10K bounty for login bypass flaw

Uber forks over $10K bounty for login bypass flaw

By

Uber paid Finnish researcher Jouko Pynnönen a $10,000 bounty for discovering a login bypass vulnerability.

Feds not prosecuting enough cyberthieves, survey

Feds not prosecuting enough cyberthieves, survey

By

More government personnel are needed to pursue and prosecute cyberthieves, ESET said.

Two-factor authentication added to IRS site

Two-factor authentication added to IRS site

By

The IRS has pumped up its web security by adding multifactor authentication to thwart cyberthieves eager for the trove of taxpayer information held in its databases.

Site of grassroots abortion group hacked

Site of grassroots abortion group hacked

By

A website belonging to the National Network of Abortion Funds was hacked around April 7.

'Cruel' lesson: GhostShell hacking group leaks 36M records as punishment for using databases on public servers

'Cruel' lesson: GhostShell hacking group leaks 36M records as punishment for using databases on public servers

By

Calling its actions a "cruel reminder of what happens when you don't use proper security hygiene," the hacker group GhostShell doxxed approximately 36 million online accounts from various databases found on public servers that don't require credentials to access.

Strategize to gain advantage in corporate cybersecurity war

Strategize to gain advantage in corporate cybersecurity war

By

At SC Congress Toronto retired Brigadier Gen. Charly Shugg, COO at Sylint, stressed the importance of having a cybersecurity strategy.

Cyber needs to speak language of the C-suite

Cyber needs to speak language of the C-suite

By

Communicating with the C-suite depends in part of creating a language they understand and identifying company assets that are most important, panelists told an SC Congress Toronto audience.

Healthcare struggles to protect privacy of PHI

Healthcare struggles to protect privacy of PHI

By

As the healthcare industry strives to bring data from different sources together to create longitudinal patient records, organizations must find ways to minimize and de-identify data to better protect its privacy.

Guilty pleas for two spammers behind heist of 60M accounts

Guilty pleas for two spammers behind heist of 60M accounts

By

Guilty pleas were entered by two men for a range of computer fraud charge said to have netted $2 million in ill-gotten gains.

Using endpoint security to stop phishing scams

Using endpoint security to stop phishing scams

By

A company may not be able to stop every employee from clicking on malicious links in a phishing scam, but it can make sure -through security controls - that the malware doesn't have the opportunity to do damage.

Compliance at risk

Compliance at risk

A federal data breach notification law would provide much needed uniformity, says David R. Singh.

Senators press for cyberattack strategy

Senators press for cyberattack strategy

By

Two senators lobbied for a cyberattack response policy before the Senate on Wednesday.

Workplace security awareness programs lacking in efficacy, says study

Workplace security awareness programs lacking in efficacy, says study

By

Just because a company offers a cybersecurity training program to its employees doesn't mean it's necessarily doing enough to change workers' dangerous online behaviors, according to a report from Experian and Ponemon Institute.

Credit card skimmers detected in Walmart stores

Credit card skimmers detected in Walmart stores

By

Newer chip-based cards are more difficult for thieves to counterfeit and can combat the vulnerabilities presented by card-skimming strategies.

Study: Federal agencies still lack strong cyber hygiene practices

Study: Federal agencies still lack strong cyber hygiene practices

By

A new study showing how federal agencies still don't have a firm grasp of cybersecurity practices was ironically released just days after the third-party contractor hired to fortify the U.S. Office of Personnel Management's systems suddenly quit.

RECENT COMMENTS

Sign up to our newsletters

FOLLOW US