Infosecurity News

Hailstorm Spam Begins to Pelt
Hailstorm campaigns are sent out in very high volume over a short time span.

Analysis: Majority of Holiday Retailers Put Shoppers at Risk
More than 50% of the 48 largest retailers may have failed to meet the PCI DSS requirements.

WAN Complexity Hampers Security for Orgs
Respondents cited maintaining security policies and practices, and complexity due to cloud and mobile applications.

Rapid7 Named CVE Numbering Authority
Rapid7 will now be able to assign CVE numbers to vulnerabilities found in Rapid7’s and any other vendors’ products.

App Devs Prioritize Security but Frustrations Remain
Veracode study reveals areas for improvement

UK Consumers Fear Hackers Will Disrupt their Christmas
Warning to firms understaffed this festive season

Multi-Factor Authentication Sees Huge 40% Jump in 2016
93% of organizations are using MFA in some capacity.

Irish Eyes Not Smiling on Ryanair as $5M Fraudulently Takes Off
Funds normally used to buy jet fuel were fraudulently removed via electronic transfer to a Chinese bank.

PayAsUGym Breach Exposes More Security Failings
Reports claim 300,000 customers were affected

LinkedIn’s Lynda Latest to Suffer Data Breach
Millions are contacted but few are thought to be affected

Bayrob Fraud Ring Extradited to US
Romanians captured after eight-year investigation, says Symantec

Election Hacking Bombshell: Putin Personally Involved, Voting Machine Overseer Hacked
Credentials to computers at the US Election Assistance Commission sold on Dark Web, while spies say Putin directed election hacks.

Cyber Chief in UK Election Hack Warning
Ciaran Martin argues hackers may be inspired by US election debacle

Over Half of Global Firms Still Not Progressing with GDPR
Compliance efforts stalling as final 18 months approaches

Faketivists Could Play Havoc with Euro Elections in 2017
ThreatConnect warns of Russian attempts to pass efforts off as lone hacktivism

Tordow Android Trojan Can Do...Just About Anything
Tordow can make phone calls, control SMS messages, download and install programs, steal login credentials, encrypt files...

Non-Malware Attacks on the Rise, in the Shadow of Ransomware
Attackers are increasingly using non-malware attacks in an attempt to remain undetected and persistent in organizations’ networks.

ICO Confirms Yahoo Communication Post Breach
The Information Commissioner’s Office (ICO) has confirmed that it is talking to Yahoo about the reported billion account breach.

Alleged JPMorgan Hacker Arrested in New York
Joshua Aaron was deported from Russia and cuffed on entry to US

New Yahoo Breach: One Billion Accounts Compromised
Attack in 2013 led to what is believed to be biggest ever data breach



