CSO Magazine

APRIL 15, 2021

Yes, tons of people still use “123456” as a password, according to NordPass's 200 most common passwords of the year for 2020, which is based on analysis of passwords exposed by data breaches.

Passwords 145

Passwords Data breaches 145

Troy Hunt

JULY 12, 2019

Enough about that, this week I'm also talking about Scott's upcoming public Glasgow workshop, more data breaches, Namecheap's faux pas and EVE Online's great security work they've very generously shared publicly. Someone also created a website dedicated to him (seems legit!)

Data breaches 207

Data breaches Passwords Accountability Hacking 207

Adam Levin

JUNE 3, 2019

Like a severed head, stolen data is the proof of success in this arena. Case in point: the hacking group Lulzsec’s 2011 hack of the U.S. The post What Game of Thrones Can Teach You About Data Breaches appeared first on Adam Levin. The most important one: there really are people out there who are out to get you.

Data breaches 119

Data breaches Marketing Firewall Hacking 119

Krebs on Security

DECEMBER 3, 2021

com back in 2011, and sanjulianhotels[.]com ” A report on Palvisa (PDF) purchased from Rekvizitai.vz — an official online directory of Lithuanian companies — says Palvisa was established in 2011 by a Vytautaus Mockus, using the phone number 86.7273687 , and the email address bo3dom@gmail.com. com (2017).

Ransomware 354

Ransomware Accountability Passwords Cybercrime 354

SecureWorld News

OCTOBER 6, 2021

Livestreaming platform Twitch, frequented by a community of online gamers, experienced a massive data breach. Twitch confirmed a breach had happened through a tweet: We can confirm a breach has taken place. It rebranded as twitch in 2011, so this looks like a long-standing piece of infrastructure.".

Data breaches 93

Data breaches Cybersecurity Passwords 93

Krebs on Security

FEBRUARY 22, 2022

But Missouri prosecutors now say they will not pursue charges following revelations that the data had been exposed since 2011 — two years after responsibility for securing the state’s IT systems was centralized within Parson’s own Office of Administration. Missouri Gov. Mike Parson (R), vowing to prosecute the St.

Education 356

Education Technology Hacking Media 356

SiteLock

AUGUST 27, 2021

With 80 percent of the biggest law firms in the country being hacked since 2011, law firms are prime targets for data breaches. SiteLock offers comprehensive, automated cyber security protection, designed to protect law firms from a data breach.

Data breaches 52

Data breaches Hacking 52

CyberSecurity Insiders

AUGUST 17, 2021

Pearson, a London based e-textbook publishing firm that supplies software to Schools and Universities has been slapped with a fine of $1 million for misleading investors about a 2018 data breach that witnessed siphoning of millions of student records by hackers.

Data breaches 120

Data breaches Education Cyber Risk Cyber Attacks 120

Troy Hunt

JUNE 25, 2018

Pretty much every day, I get a reminder from someone about how little people know about their exposure in data breaches. Frequently, it's some long-forgotten site they haven't even thought about in years and also frequently, the first people know of these incidents is via HIBP: large @ticketfly data breach.

Passwords 279

Passwords Data breaches Password Management Accountability 279

CSO Magazine

JANUARY 6, 2023

Pates Grammar School in Gloucestershire is one of 14 to have been impacted by the data breach, the BBC reported , with Vice Society hackers using generic search terms to steal documents.

Data breaches 118

Data breaches Cybercrime Education Ransomware 118

Security Affairs

FEBRUARY 13, 2020

The hacktivists claim that once hacked the universities did not disclose the data breach and attempted to hide the incident, violating the European Privacy Law GDPR. Two weeks after the hack, one of the universities breached by the group, Uniparthenope, sent a data breach notification via email to the impacted students and teachers.

Hacking 145

Hacking Data breaches Advertising Education 145

Adam Levin

JULY 24, 2020

Recent reports have confirmed that the outage was caused by WastedLocker, a ransomware often used to specifically target and disrupt business operations, and closely associated with Evil Corp, the hacking group behind a $100 million crime spree that began in 2011.

Ransomware 152

Ransomware Hacking Data breaches 152

Krebs on Security

FEBRUARY 22, 2024

i-SOON CEO Wu Haibo, in 2011. Indeed, among the documents apparently leaked from i-SOON is a sales pitch slide boldly highlighting the hacking prowess of the company’s “APT research team” (see screenshot above). Image: nattothoughts.substack.com.

Government 335

Government Hacking Cyber threats Mobile 335

Krebs on Security

APRIL 16, 2024

Questions about who stole tax and financial data on roughly three quarters of all South Carolina residents came to the fore last week at the confirmation hearing of Mark Keel , who was appointed in 2011 by Gov. Nikki Haley to head the state’s law enforcement division.

Identity Theft 307

Identity Theft Banking Cybercrime Hacking 307

SecureWorld News

MAY 26, 2022

But instead of using this information for the sole purpose of improving security, Twitter profited by allowing advertisers to use this data to target individuals. This action violated a 2011 FTC order that prohibited the social media site from misrepresenting its privacy and security practices. FTC Chair Lina M.

Advertising 98

Advertising Media Accountability Account Security 98

Security Affairs

MARCH 18, 2024

This isn’t the first incident suffered by IMF, the agency suffered a major security breach in 2011. Bleeping computer contacted IMF, which confirmed that that despite it uses the Microsoft 365, the incident does not appear to be part of Microsoft targeting recently disclosed.

Accountability 138

Accountability Hacking Cybersecurity Data breaches 138

Security Affairs

NOVEMBER 21, 2018

Increasing Bounties for Account Takeover VulnerabilitiesSince 2011, our Bug Bounty program has been among the most… Gepostet von Facebook Bug Bounty am Dienstag, 20. The bug bounty programs are becoming crucial for companies to assess their products and infrastructure and to avoid data breaches. November 2018.

Accountability 109

Accountability Data breaches Advertising Media 109

Security Affairs

NOVEMBER 15, 2021

I launched Security Affairs for passion in 2011 and millions of readers walked with me. Ten years together! I’m very excited. Ten years ago I launched Security Affairs, the blog over the past decade obtained important successes in the cyber security community, but the greatest one is your immense affection.

Cybercrime 109

Cybercrime Hacking Cybersecurity Data breaches 109

CyberSecurity Insiders

FEBRUARY 8, 2023

Second is the news related to the leak of sensitive details belonging to over 20 million users created between the time frame of 2011 and 2019. was notified of the incident when a hacker named ‘IntelBroker’ posted the accessed details on a data breach forum. million customers was accessed/leaked.

Cyber Attacks 105

Cyber Attacks Ransomware Accountability Data breaches 105

Security Affairs

JUNE 23, 2019

Unfortunately, this was not the first time hackers broke into JPL , it has already happened back in 2009, 2011, 2014, 2016 and 2017. National Aeronautics and Space Administration (NASA) notifies employees of a data breach that exposed social security numbers and other personal information. In December the U.S.

Hacking 112

Hacking Data breaches Advertising Firewall 112

Security Affairs

JANUARY 25, 2020

“On June 28, last year, a suspicious behavior was detected and investigated on a terminal in our company, and as a result of unauthorized access by a third party, data was transmitted to the outside,” reads a data breach notification published by the company.

Antivirus 145

Antivirus Hacking Advertising Media 145

CyberSecurity Insiders

NOVEMBER 24, 2022

In the past few months, many companies witnessed foreign infiltration on their networks and among them, the most noted were Optus Cyber Attack and data breach on Insurance company Medibank. It all depends on the severity of the vulnerability that has been discovered and hackers accessed whether any sensitive data.

Cyber Attacks 80

Cyber Attacks Insurance Data breaches Cyber threats 80

eSecurity Planet

JULY 23, 2021

In 2011, LastPass CEO Joe Siegrist announced that the company’s servers may have been breached, as evidenced by anomalies in network traffic. Although none of these security incidents led to major data breaches, they’re enough to make users skeptical of LastPass’s security controls.

Password Management 133

Password Management Passwords Authentication Architecture 133

Security Affairs

APRIL 22, 2024

Compromised data vary by individuals and organizations, it includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers, and more. Curiously, in 2011, Thomson Reuters acquired World-Check, then in October 2018, Thomson Reuters closed a deal with The Blackstone Group.

Risk 139

Risk Spyware Hacking Accountability 139

Malwarebytes

MAY 23, 2022

Breaching education. Around 490,000 students and 56,000 employees found their data breached by those responsible for the ransomware. The data accessed by criminals, stretching from 2015 to 2019, included a variety of information potentially including: Name School CPS email Employee ID number Battelle for Kids username.

Ransomware 92

Ransomware Backups Data breaches Encryption 92

Security Affairs

NOVEMBER 15, 2022

I launched Security Affairs for passion in November 2011 and since then the blog was visited by tens of millions of readers. Happy BirthDay Security Affairs! Eleven years together! Eleven years ago I decided to launch Security Affairs, a blog that is considered today one of the most valuable sources of the cybersecurity industry.

Cybersecurity 100

Cybersecurity Government Hacking Data breaches 100

Security Affairs

MAY 5, 2019

Over 23 million breached accounts were using ‘123456 as password. Report: Unknown Data Breach Exposes 80 Million US Households. But it was 2011. Microsoft removes Password-Expiration Policy in security baseline for Windows 10. New Emotet variant uses connected devices as proxy C2 servers.

Cyber Attacks 83

Cyber Attacks Wireless Advertising Passwords 83

Security Affairs

JULY 17, 2020

Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011. . The group has been known to target a wide range of organizations and government agencies worldwide. continues IBM.

Advertising 130

Advertising Media Authentication Hacking 130

Herjavec Group

AUGUST 26, 2021

Media scrutiny eventually leads the consumer data broker, which has since been purchased by LexisNexis, to reveal another 128,000 people had information compromised. . A DSW data breach also exposes transaction information from 1.4 The breach costs Sony more than $171 million. The breach costs Sony more than $171 million.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

Krebs on Security

JULY 28, 2022

In a 2011 post on Hackforums, Acidut said they were building a botnet using an “exploit kit,” a set of browser exploits made to be stitched into hacked websites and foist malware on visitors. The same account continues to sell subscriptions to Shifter.io. io , and online[.]io.

Advertising 284

Advertising Software Computers and Electronics Internet 284

SecureWorld News

MAY 23, 2024

As cyberattacks and data breaches continue plaguing businesses, the SEC has made cybersecurity disclosure an area of increased focus. In 2011, the staff—and in 2018, the Commission itself—issued guidance on how existing disclosure rules apply to cybersecurity risks and incidents. Hopefully, this is a temporary and short phase!"

CISO 109

CISO CSO Risk Cybersecurity 109

Security Affairs

SEPTEMBER 5, 2019

At the time of writing it is still unknown who amassed this huge quantity of data and for which reason. Facebook disabled the API that shares users’ mobile phone and address details with developers back in 2011. “Facebook has long restricted developers ‘ access to user phone numbers. ” concludes Techcrunch.

Advertising 111

Advertising Accountability Mobile Passwords 111

Security Boulevard

AUGUST 23, 2021

The company's leadership knew they had been breached in a sophisticated APT-style attack, but it was unknown whether the attackers had gained access to the cryptographic keys needed to decrypt sensitive client data. The post Malicious Life Podcast: Ten Years On – Are We Doing Security Right?

Data breaches 59

Data breaches InfoSec 59

Security Affairs

SEPTEMBER 2, 2018

. · Security firm attributes Cosmos Bank cyberheist to Lazarus APT. · Cryptocurrency Platform Atlas Quantum hacked, 260k users impacted. · CVE-2018-15919 username enumeration flaw affects OpenSSH Versions Since 2011. · Data of 130 Million hotel chain guests offered for 8 BTC on Dark Web. · Experts published a PoC code for Intel (..)

Banking 58

Banking Spyware Data breaches Advertising 58

Security Affairs

APRIL 29, 2022

ALET has worked with over 400 companies since 2011 to file over 119,000 customs declarations and has recommendations from Gazprom, Gazprom Neft and Bashneft. ALET is a customs broker for companies in the fuel and energy industries, handling exports and customs declarations for coal, crude oil, liquefied gases and petroleum products.

Banking 104

Banking Hacking Government Data breaches 104

SC Magazine

MAY 12, 2021

Visitors crowd a cloud computing presentation at the CeBIT technology trade fair on March 2, 2011 in Hanover, Germany. New research from security vendor Aqua Security, which draws on the past year of internal customer data, finds that businesses continue to suffer fallout from their poorly configured cloud assets in the form of data breaches.

Data breaches 67

Data breaches Internet Internet Media 67

Security Affairs

SEPTEMBER 28, 2022

A report from the Cloud Security Alliance (Technology and Cloud Security Maturity, 2022) states that 84% of organizations report having no automation ; since Identity and Access Management is a key factor in securing companies, automating the detection of possible attack paths may reduce the attack surface and avoid potential data breaches.

Engineering 111

Engineering Technology Architecture Accountability 111