Security researchers said they’ve found a new kind of malware that takes its instructions from code hidden in memes posted to Twitter. The malware itself is relatively underwhelming: like most primitive remote access trojans (RATs), the malware quietly infects a vulnerable computer, takes screenshots and pulls other data from the affected system and sends it […]
View More New malware pulls its instructions from code hidden in memes posted to TwitterCategory: security breaches
Equifax breach was ‘entirely preventable’ had it used basic security measures, says House report
A House Oversight Committee report out Monday has concluded that Equifax’s security practices and policies were sub-par and its systems were old and out-of-date, and bothering with basic security measures — like patching vulnerable systems — could’ve prevented its massive data breach last year. It comes a little over a year after Equifax, one of […]
View More Equifax breach was ‘entirely preventable’ had it used basic security measures, says House reportCredit card stealing malware on Canada’s 1-800-FLOWERS website went undetected for four years
It’s going to take more than a bunch of posies to make up for this one. The Canadian branch of 1-800-FLOWERS revealed in a filing with the California attorney general’s office that malware on its website had siphoned off customers’ credit cards over a four-year period. Four years. Let that sink in. The company said […]
View More Credit card stealing malware on Canada’s 1-800-FLOWERS website went undetected for four yearsUber’s bill for 2016 breach and cover-up rises by $1M+ on EU fines
The legal bill for Uber’s 2016 data breach, which affected some 57 million customers, revealing names, email address and phone numbers, has increased by more than a million dollars. Two months ago the ride-hailing giant agreed to pay $148M to resolve legal inquiries pertaining to the breach in the U.S., with that settlement covering all 50 states and […]
View More Uber’s bill for 2016 breach and cover-up rises by $1M+ on EU finesMozilla adds website breach notifications to Firefox
Mozilla is adding a new security feature to its Firefox Quantum web browser that will alert users when they visit a website that has recently reported a data breach. When a Firefox user lands on a website with a breach in its recent past they’ll see a pop up notification informing them of the barebones […]
View More Mozilla adds website breach notifications to Firefox1-877-KARS4KIDS had a data breach
Bad news: 1-877-KARS4KIDS had a data breach. Worse news: now you’ll have that awful jingle stuck in your head all day. The New Jersey-based charity has plagued the American airwaves for years with the “most hated” jingle to try to get consumers to trade in their car — for the kids! In return, you get […]
View More 1-877-KARS4KIDS had a data breachCivil servant who watched porn at work blamed for infecting a US government network with malware
A U.S. government network was infected with malware thanks to one employee’s “extensive history” of watching porn on his work computer, investigators have found. The audit, carried out by the U.S. Department of the Interior’s inspector general, found that a U.S. Geological Survey (USGS) network at the EROS Center, a satellite imaging facility in South […]
View More Civil servant who watched porn at work blamed for infecting a US government network with malwareA flood of fake installers will really update Flash for you – but also install cryptocurrency mining malware
If you think that Flash, the once-popular web plugin, couldn’t die fast enough, even those annoying fake Flash installers riddled with malware aren’t going anywhere any time soon. In fact, they’re getting even sneakier. New research out of Palo Alto Networks found a recent spike of fake Flash installers not only dropping cryptocurrency mining malware […]
View More A flood of fake installers will really update Flash for you – but also install cryptocurrency mining malwareWhat Instagram users need to know about Facebook’s security breach
Even if you never log into Facebook itself these days, the other apps and services you use might be impacted by Facebook’s latest big, bad news. In a follow-up call on Friday’s revelation that Facebook has suffered a security breach affecting at least 50 million accounts, the company clarified that Instagram users were not out […]
View More What Instagram users need to know about Facebook’s security breachAlphabet’s Chronicle launches an enterprise version of VirusTotal
VirusTotal, the virus and malware scanning service own by Alphabet’s Chronicle, launched an enterprise-grade version of its service today. VirusTotal Enterprise offers significantly faster and more customizable malware search, as well as a new feature called Private Graph, which allows enterprises to create their own private visualizations of their infrastructure and malware that affects their machines. […]
View More Alphabet’s Chronicle launches an enterprise version of VirusTotalChegg resets 40 million user passwords after data breach
Chegg, a technology giant specializing in textbook rental, has confirmed a data breach affecting some 40 million customers. In a filing with the Securities and Exchange Commission, the company said it will reset all user passwords after hackers gained access to the company’s customer database. That database includes users for Chegg’s website but also other […]
View More Chegg resets 40 million user passwords after data breachEquifax slapped with UK’s maximum penalty over 2017 data breach
Credit rating giant Equifax has been issued with the maximum possible penalty by the UK’s data protection agency for last year’s massive data breach. Albeit, the fine is only £500,000 because the loss of customer data occurred when the UK’s prior privacy regime was in force — rather than the tough new data protection law, […]
View More Equifax slapped with UK’s maximum penalty over 2017 data breach