Infosecurity News
BSIA Publishes Guidelines to Reduce Exposure to Digital Sabotage
Guidelines will assist the supply chain in their duty of care to other network users
Third-Party Breach Exposed 31K Patient Records
Managed Health Services of Indiana Health Plan announced two security incidents.
Dems Use Fake News Propaganda in Alabama Campaign
A cybersecurity firm reportedly aided progressive group of Democrats in spreading fake news to take down Roy Moore.
Side-Channel Attack Targets Windows, Linux
A hardware-agnostic page cache attack targets operating systems.
US Shutdown Plays into Hackers’ Hands
Expired web certificates expose users to man-in-the-middle attacks
Zurich Refuses to Pay Out for NotPetya ‘Act of War’
Confectionary maker Mondelez is claiming $100m
MongoDB Instance Leaks 200 Million Chinese CVs
Exposed database spilled huge volume of sensitive data online
Phishing Attacks Bypass Two-Factor Authentication
Phishing attacks are made easy with a pen testing tool, says security researcher.
Cooking Utensil Firm OXO Files Data Breach in California
Hackers are believed to have accessed names, addresses and credit card information.
Hyatt First Major Hotel Chain to Launch Bug Bounty
Hyatt invites global security researchers to search for vulnerabilities.
Global DNS Hijacking Blamed on Iranian Hackers
Attacks seek to harvest log-ins from Middle East government users
IT Guy’s Help Snares Mexican Drugs Baron
Consultant helped Feds listen in on ‘secret’ chats
Reddit Locks Down Accounts After Security Incident
Possible credential stuffing attack prompts investigation
IcePick-3PC Malware Strain Steals Device IPs
More than 100 businesses were impacted by a malware strain targeting Android devices, says The Media Trust.
Scapy-Sploit, Plugin Problems and the Year of Drupal
Attackers target WordPress plugins and Drupal vulnerabilities, says Imperva.
Phone Carriers Selling Customer Location Data
T-Mobile, Sprint, and AT&T are selling customer location data, says Motherboard.
NHS Digital CISO Quits After Three Months
Robert Coles reportedly moves on for personal reasons
Firm Offers $2m for iOS Zero-Day Exploits
Zerodium increases pay-outs for high-risk vulnerabilities
Microsoft Kicks Off 2019 With Medium Patch Load
Some 49 vulnerabilities addressed by Redmond
Sophos Acquires Avid Secure, Expands Cloud Security
Sophos moves to augment cloud business strategy with acquisition of next-gen cloud infrastructure security company