IT Security Guru

JUNE 30, 2021

Using the same password for all software applications increase the chances of cybercriminals learning an individual’s log-in credentials and gaining unauthorized access – resulting in data theft, identity theft and other harm. Single Sign-On (SSO) is a solution that combats password fatigue. fewer requests to reset passwords).

Password Management 114

Password Management Passwords VPN B2C 114

Security Affairs

MARCH 3, 2021

There was no need for a password or login credentials to access the information, and the data was not encrypted. The voice recording information could be accessed by anyone with a link and an Internet connection, leaving millions vulnerable. The leak has since been secured. What’s Happening? Redacted example of client details.

Data breaches 99

Data breaches Identity Theft B2B Phishing 99

SecureList

MAY 25, 2022

A key is needed to gain access to a car, but in this case instead of a key there is a login or email and a password. The research scope included 155 of the most popular solutions that require the vehicle owner’s credentials (login and password pair or API key) to interact with the vehicle. So, what can go wrong?

Mobile 102

Mobile B2B Manufacturing Passwords 102

Security Affairs

OCTOBER 5, 2023

Researcher discovered that global B2B CRM provider Really Simple Systems exposed online a non-password-protected database with million records. Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained over 3 million records.

Data breaches 109

Data breaches B2B Education Identity Theft 109

eSecurity Planet

OCTOBER 5, 2021

Passwords are the most common authentication tool used by enterprises, yet they are notoriously insecure and easily hackable. But even when passwords are secure, it’s not enough. Recently, hackers leaked 87,000 Fortinet VPN passwords , mostly from companies who hadn’t yet patched a two-year-old vulnerability. MFA can be hacked.

Authentication 104

Authentication Passwords Mobile Accountability 104

SecureList

DECEMBER 7, 2021

With double extortion, not only do the attackers encrypt data, but they also steal highly sensitive information (personal data of clients and employees, internal documents, intellectual property, etc.) The former target both B2B and B2C, while the latter target primarily the B2C sector. billion in transfers over the last three years.

Ransomware 129

Ransomware B2B B2C Government 129

eSecurity Planet

JULY 6, 2021

Like SolarWinds, both companies serve large B2B audiences, where Kaseya’s products produce hundreds of end products and services. The Ransomware-as-a-Service (RaaS) gang infiltrated Kaseya’s server, moved to client networks, and executed ransomware encryption to lock end-client networks. Backup data regularly.

Ransomware 122

Ransomware B2B Software System Administration 122