21 May 2019

Millions of Instagram influencers had their private contact data scraped and exposed

A security researcher recently found an unsecured Amazon Web Services server exposing the personal information of over 49 million prominent  Instagram users including so-called “influencers,” celebrities and brands accounts. The leaky database consisted of scraped data. In addition to account information available to all followers, such as the account name,

Read More
21 May 2019

US Delays Huawei Ban for 90 Days

The US Department of Commerce is temporarily delaying the consequences of President Donald Trump’s recent executive order enabling the government to forbid US firms from using Huawei telecommunications equipment. The Commerce Department issued a 90-day license “that grants operators time to make other arrangements and (gives) the Department space to

Read More
21 May 2019

DHS warns of ‘strong concerns’ that Chinese-made drones are stealing data

The US Department of Homeland Security is warning that drones manufactured in China are a “potential risk to an organization’s information,” because they are capable of sending sensitive flight data to servers that may be accessed by the manufacturer as well as by other parties, such as the Chinese government.

Read More
21 May 2019

Political Parties Still Have Cybersecurity Hygiene Problems

Even though the Democratic National Committee (DNC) has bolstered its cyber security since Russian state-backed hackers infiltrated the organization in 2016, its security hygiene still doesn’t cover certain best practices, an investigation by SecurityScorecard found. The same is true for the Republican National Committee (RNC), while smaller US parties tend to

Read More
21 May 2019

Google research: Most hacker-for-hire services are frauds

A new report by Google and the University of California, San Diego shows that individuals looking to hire hackers that will compromise specific user accounts for them, may end up getting scammed themselves. Using fake online identities, the researchers reached out to 27 “account hacking service providers” and asked if

Read More
21 May 2019

How to block hijacking attacks on your Google account

Securing your Google account against the vast majority of account hijacking attempts is as simple as adding a recovery phone number, new research by Google, New York University, and the University of California, San Diego shows. The researchers discovered that the mere addition of a recovery phone number sufficed to

Read More
21 May 2019

Fifth of Docker Containers Have No Root Passwords

New research by Kenna Security found that Docker containers are often not protected with root passwords. Containers are standardized software units that allow software to be run in isolation, so that performance is not influenced by the underlying infrastructure. A security researcher found that 194 (19.4%) of the 1000 most

Read More
21 May 2019

Traditional approach to data security hindering digital transformation initiatives

A new report by TITUS highlights the important connection between security and digital transformation. TITUS CEO Jim Barkdoll says the survey makes it evident that “there are two approaches to security – one where you view it as enabling your business, and one where you view it as a cost

Read More
20 May 2019

After breach, Stack Overflow says some user data exposed

Stack Overflow has admitted that “a very small number” of users had their data compromised when the company suffered a cyberattack earlier this month. The firm behind the world’s largest question and answer site for programmers initially claimed that it had not found evidence of costumer or user data being

Read More
20 May 2019

Chinese cyberspies breached TeamViewer in 2016

According to German newspaper Der Spiegel, German software manufacturer TeamViewer suffered a breach at the hands of Chinese state-backed hackers, as a result of which the attackers have had access to TeamViewer’s internal network since 2014. The attackers allegedly used Winnti, a notorious backdoor Trojan. While TeamViewer acknowledged that it was

Read More