Security

Cyber Security Reviews – Security will bring to our readers whats happening on the Security scene around the world.

0 Comments
A globally franchised courier company has issued a notice confirming that it was the subject of a cyber-attack. The assault on Fastway Couriers was discovered by one of the company’s third-party IT development contractors on February 25.  In a security notice issued March 11, Fastway Couriers confirmed that a cyber-attack had occurred and that it had resulted in a
0 Comments
Cybersecurity company Lookout, Inc. has announced the acquisition of CipherCloud as it seeks to develop an integrated endpoint-to-cloud security solution. The deal will enable Lookout to secure CipherCloud solutions as part of its product portfolio. This includes solutions that span developing SASE categories, including Cloud Access Security Broker (CASB), Zero-Trust Network Access (ZTNA), Secure Web
0 Comments
A Utah company has exposed the sensitive information of more than 50,000 customers by storing data on an unsecured server. The breach at Premier Diagnostics was discovered on February 22 by cybersecurity expert Bob Diachenko at consumer privacy watchdog Comparitech. Sensitive customer data stored in a publicly accessible database included scans of passports, health insurance ID cards, and driver’s licenses. 
0 Comments
by Paul Ducklin Getting to grips with the HAFNIUM gang/vulnerabilities/exploits/webshells/attacks. Why it’s important to think before you share those home-based selfies. What you need to know about social engineering. How (not!) to prove a point when you’re a programmer. With Kimberly Truong and Paul Ducklin. Intro and outro music by Edith Mudge. LISTEN NOW Click-and-drag
0 Comments
by Paul Ducklin Don’t panic. This isn’t a case of secretive nation-state phone interception methodologies (or spying, as it is often called). It’s not a tale of cybercriminals deliberately trying to listen in to your business discussions so they can divert massive invoice payments or implant ransomware with multi-million dollar blackmail demands. That’s the good
0 Comments
by Paul Ducklin News outlet Bloomberg has gone public with a dramatic cybersecurity news story about surveillance. Bloomberg claims that an “international hacker collective” was responsible for breaking into a network of 150,000 surveillance cameras and accessing private footage from live video feeds. According to Bloomberg, one of the hacking crew, Tillie Kottmann, claimed to
0 Comments
Telecommunications giant Vodafone is calling for the introduction of new cybersecurity policies to help small businesses in the UK recover from the impact of the global health pandemic. In a statement released today, the company asked Boris Johnson’s government to protect small and medium-sized businesses by providing more support to the National Cyber Security Centre and making cybersecurity protections
0 Comments
British tech company TiG Data Intelligence has successfully completed the acquisition of identity and security company ThirdSpace.  ThirdSpace began life in 2002 as Oxford Computer Group UK. The company’s first ever client, University West of England, is still working with them today. Operating as a specialist arm of TiG, ThirdSpace will retain its independent capability and expertise and
0 Comments
by Paul Ducklin Remember the last big jailbreak news? It was nearly a year ago, back in May 2020, when well-known Apple jailbreaking crew unc0ver released version 5 of their jailbreak toolkit, just a week after Apple came out with iOS 13.5. The word jailbreak, at least in the IT world, is a generic term
0 Comments
An American mortgage lender has shelled out $1.5m to resolve allegations that it violated the New York Department of Financial Services (NYDFS) Cybersecurity Regulation.  Residential Mortgage Services, Inc. (RMS), which is headquartered in South Portland, Maine, was accused of failing to report a data breach that occurred in 2019.  The breach was uncovered during an investigation of
0 Comments
Elite cybercrime forum Maza aka MFclub has been taken over by hackers, according to new research by risk intelligence company Flashpoint. The Russian-language forum, which was originally known as Mazafaka, has served thousands of cyber-criminals since its launch in 2003.  “Little is known at this time about the attackers who successfully compromised Maza,” wrote Flashpoint researchers. But
0 Comments
The United States Justice Department has warned that cyber-criminals are impersonating state workforce agencies (SWAs) to steal Americans’ personal data. In a press release issued March 5, the department said it had received reports that bad actors are creating fake websites that mimic sites genuinely belonging to SWAs.  “The fake websites are designed to trick consumers into
0 Comments
A cyber-attack on an optometrist located in Sierra Vista, Arizona, has affected up to 100,000 patients.  Cyber-criminals successfully hit Cochise Eye and Laser with ransomware in January, encrypting the office’s patient scheduling and billing software.  Patient data stored in the billing software included names, dates of birth, addresses, phone numbers, and in some cases Social Security numbers.
0 Comments
Two teenage girls who went missing from the same North Carolina county used school-issued laptops to communicate with their alleged abductors.  Savannah Grace Childress vanished on February 11 from her home on Canaan Church Road in Denton. The 14-year-old was found alive ten days later in Arkansas.  Law enforcement officers investigating Childress’ disappearance discovered that the teen had
0 Comments
A threat actor stole the identities of recipients of the US Congressional Medal of Honor and used their personal data to purchase goods from American military exchanges.  According to a Secret Service search warrant application obtained by The Daily Beast, the identities of a third of the living holders of the US government’s highest and most
0 Comments
by Paul Ducklin If you’re active on social media, you probably know that copyright infringement is a big deal online, and that even accidentally including or referring to somebody else’s material can leave you facing a copyright complaint notice sent by the social media platform involved. If you don’t sort out the complaint, you could