You searched for identity management/ | SC Media

Your search for identity management/ returned 19 results

Active Filters

Click on a filter below to refine your search. Remove a filter to broaden your search.

Last 2 years remove
Data Breach remove

Your search for identity management/ returned 19 results

Sort Results:

Relevant Recent
Executive Insight, Opinion

Cloud Infrastructure IAM Lessons from the Capital One Breach

Cloud infrastructure is the foundation of more companies than ever. As with any foundation, any crack can lead to significant damage to the infrastructure. One potential crack is a trusted identity with unnecessary and excessive privileges. A “trusted identity” is invariably associated with people — employees, contractors or other insiders. But identity in the cloud…
FTC lodges new set of complaints against alleged cell phone spammers
Data Breach, Security News

Sprint customer data breached via Samsung website flaw

Threat actors gained unauthorized access to an undisclosed number of Sprint customer accounts via a compromised Samsung website.   “On June 22, Sprint was informed of unauthorized access to your Sprint account using your account credentials via the Samsung.com ‘add a line’ website,” the wireless provider said in a letter to impacted customers posted on Scribd. “The…
Data Breach, Security News

Data breach compromises 64,000 Tomorrowland festival attendees

Threat actors managed to access the information of 64,000 Tomorrowland festival-goers who attended the 2014 event in Boom, Antwerp, Belgium. Personal information including names, addresses, age, postcodes, and genders may have been compromised in the incident although this may be enough information to commit identity theft and other forms of fraud. “The managers of the…
Security News

Undisclosed number of TurboTax accounts breached

Intuit, the company behind tax preparation software TurboTax, said users’ accounts may have been accessed by an unauthorized party. Threat actors used usernames and password combinations obtained from a non-Intuit source after an undisclosed number of TurboTax accounts were breached in a credential stuffing attack. Tax returns from the prior year, current tax returns in…
Data Breach, Network Security, Security News, Web Services Security, E-Commerce Security

Federal agencies still using insecure knowledge-based verification for online services

A performance audit of six U.S. government agencies found that four of them are still using knowledge-based questions to verify the identities of individuals applying for federal benefits or services, even though this practice is considered outdated and insecure, especially in light of the 2017 Equifax breach. Knowledge-based verification questions are typically created by credit…
Data Breach, Database security, Government, Privacy & Compliance News and Analysis, Security News

Unsecured storage bucket exposes applications for birth certificate copies

A leaky Amazon Web Services storage bucket has exposed more than 752,000 applications requesting copies of birth certificates. A report yesterday by TechCrunch said the unsecured data set dates back to late 2017, but was just recently discovered by U.K.-based penetration testing company Fidus Information Security. The data is managed by a company that helps…
Security News

Wendy’s to pay $50M in data breach settlement

Wendy’s has agreed to pay $50 million to settle negligence claims following its 2015-2016 data breach that affected more than 1,000 of the burger chain’s locations. Payment card data was stolen from victims who purchased food at these locations then used fraudulently at other merchants after malware was installed through a third-party vendor. The settlement…
leakplumbing_863980
Security News

Dozens of high-profile Box accounts found leaking sensitive data

Adversis researchers have discovered that dozens of companies have leaked sensitive data as a result of misconfigured Box accounts. Box is a cloud based “content management platform” primarily used to share files and folders and similar to AWS S3 buckets. The files can be shared to anyone with the link, restricted to those within a…
Cybercrime, Data Breach, Phishing, Security News

Choppy waters: Data breach impacts Princess and Holland America cruise lines

The personal information of cruise passengers, crew and employees were compromised last year after an unauthorized party gained access to the email accounts of employees working for Princess Cruises and Holland America Line — both divisions of Carnival Corporation & plc. According to a disclosure notification posted on both cruise lines’ websites [1, 2], as…
Cybercrime, Data Breach, Security News

Details on 267M Facebook users sold for cheap on dark web

A cybercriminal actor on the dark web has made available a dataset of Facebook accounts belonging to 267 million users, recently selling the collective lot to researchers for 500 Euros. User data includes one’s email address, first and last names, phone number, Facebook ID, last connection, status and age, according to a blog post report…
Next post in Security News