Infosecurity News

  1. Carphone Warehouse Breach Results in £400K Fine

    ICO forces retailer to pay up, but larger fines await with GDPR

  2. Patch Tuesday: More Work for Admins With 56 Flaws to Fix

    Scheduled updates follow last week’s out-of-band patches

  3. FBI Boss: We Don’t Want Backdoors, but We Do Want Access to Encrypted Devices

    Wray claims Feds have nearly 7800 devices they can’t access

  4. Reddit Users Lose Bitcoin Tips After Third-Party Breach

    Reddit has confirmed that one of its email providers, Mailgun, has been breached.

  5. (ISC)² Names Infrastructure and Security Director

    Bruce Beam will lead all aspects of (ISC)²’s global IT/ICT and cybersecurity operations.

  6. India Exposes Personal Info for 1 Billion Citizens

    The Tribune of India was able to access the entirety of the state identification database for just $8.

  7. Cloud Workloads at Risk from Security, Management & Compliance Failures

    Security top concern on future cloud adoption for IT decision makers

  8. Tories left Red-Faced After HTTPS Gaffe

    UK Conservative Party lets secure cert expire

  9. VTech to Pay $650K to Settle Kids’ Privacy Case

    Digital toymaker was also accused by FTC of failing to properly secure children’s data

  10. WPA3 Set to Secure Public Wi-Fi Networks in 2018

    New protocol will land later this year

  11. Hard-Coded Backdoor in My Cloud Devices Offers Attackers Access to Personal Photos, Videos

    Threat actors could gain control over the device, exfiltrate information and spread malware.

  12. Google Drive Exploited to Download Malware Directly from URL

    Proofpoint uncovered the vulnerability and created a proof of concept exploit for the issue, which exists in the Google Apps Script.

  13. Monero Crypto-Mining Invades BlackBerry Mobile Site

    Coinhive weighed in on the Reddit thread saying that the site appears to have been surreptitiously infected.

  14. UK Companies Set to Splurge on Cyber-Risk Mitigation

    ICSA report claims cyber remains top risk for boardrooms in 2018

  15. Attackers Target Winter Olympics with Weaponized Word Doc

    New steganography tool used to obfuscate attack

  16. UK Firms Deluged with Cyber-Attacks in 2017

    ISP spots 633 daily attempts per business to breach the corporate firewall

  17. Apple Confirms Devices Affected by Meltdown, Spectre

    As vendors rush patches out, Shadow Brokers claims it has an exploit for sale.

  18. Nuisance Adware Torments Android Users

    Victims are forced to press on ads to answer or end calls, make a Wi-Fi connection, charge the phone or unlock the screen.

  19. Private Eyes, Fire and Fines: ICO Hands Down Record Damages

    A firm of loss adjusters has been fined £50K for using rogue private investigators to collect information illegally in insurance claim.

  20. White House Bans Personal Phones in West Wing

    Trump administration cites security concerns, but CISO role remains unfilled

Why Not Watch?

  1. Time Is a New Attack Surface: Securing Networks with Trusted Time Synchronization

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. Audit & Compliance in the Era of AI and Emerging Technology

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?