New Known Breaches in the Past Week
Delaware Division of Public Health Announces Data Breach Incident
The Delaware Division of Public Health (DPH) is announcing today that it is mailing letters to individuals who were impacted by a recent data breach incident and is providing information to the public regarding the incident. By Delaware.gov I November 15, 2020
Exposed Database Reveals 100K+ Compromised Facebook Accounts
Cybercriminals left an ElasticSearch database exposed, revealing a global attack that compromised Facebook accounts and used them to scam others. Lindsey O'Donnell I November 16, 2020
Cold storage giant Americold hit by cyberattack, services impacted
Cold storage giant Americold is currently dealing with a cyberattack impacting their operations, including phone systems, email, inventory management, and order fulfillment. By Lawrence Abrams I November 16, 2020
Keene alerts those potentially affected by data-security breach
Keene officials are asking people to take protective measures after a security breach may have compromised the banking information of about 5,525 individuals and organizations that have sent checks to the city's P.O. Box. By Mia Summerson Sentinel I Nov 16, 2020
American Bank Systems hit by ransomware attack, full 53 GB data dump leaked
American Bank Systems (ABS), a company that provides services to U.S. financial institutions and banks helping them “operate efficiently and confidently in a rapidly evolving – highly regulated – environment” has been hit by a ransomware attack this month. By Ax Sharma I November 18, 2020
Coil payments platform leaks user emails in 'Privacy Policy' update
Coil has accidentally exposed some of its users' email addresses in a mass email announcement sent out today. By Ax Sharma I November 17, 2020
Origin Dollar cryptocurrency hacked to the tune of $7m less than two months after launch
Origin Protocol is scrambling to recover $7 million worth of stolen Origin Dollar (OUSD) after the recently launched ‘stablecoin’ project was hacked. Adam Bannister I November 17, 2020
Data belonging to 27.7M Texas drivers stolen in latest case of unsecured storage
Data relating to some 27.7 million Texas drivers has been exposed online and stolen from an unsecured database belonging to insurance company Vertafore Inc. By Duncan Riley I November 15, 2020
X-Cart suffers from ransomware attack
Ecommerce software vendor X-Cart has suffered a ransomware attack which brought down customer stores hosted on the company's hosting platform. A cybersecurity expert takes stock of the situation. By Tim SAndle I November 15, 2020
Hacker shares 3.2 million Pluto TV accounts for free on forum
A hacker is sharing what they state are 3.2 million Pluto TV user records that were stolen during a data breach. By Lawrence Abrams I November 14, 2020
General Cybersecurity News
Op-ed | Space system cybersecurity: Challenges ahead translating policy to practice
On Sept. 4, the White House released their Cybersecurity Principles for Space Systems as part of Space Policy Directive 5. Each of the suggested principles seems to draw from my previous work and that of a collection of colleagues. The principles of SPD-5 are grounded in science and evidence, which is reassuring especially given the rapid pace of expansion of the U.S. space program. By Gregory Falco I November 16, 2020
REDEFINING THE CYBERSECURITY STRATEGY ASSOCIATED WITH DATA BREACH?
The average total cost of a data breach is US$3.86 million, the USA being the most expensive country to such data breaches. By Astha Oriel I November 17, 2020
IoT Cybersecurity Improvement Act Passes Senate
The IoT Cybersecurity Improvement Act, a bill that aims to improve the security of Internet of Things (IoT) devices, passed the Senate on Tuesday and is heading to the White House for the president’s signature. By Eduard Kovacs I November 18, 2020
| Need help evaluating your supplier's risk? |
Small Business Cybersecurity Concerns
Why Cybersecurity for Small Businesses is More Necessary Now Than Ever Before
Nearly one-fifth of small businesses experienced either a hack, virus or data breach in 2019, according to data from B2B site The Manifest. While this proves that small businesses are indeed vulnerable to cyber attacks, it also serves as a warning to others that makes proper security precautions a necessity in 2020 and beyond. By J W Jackie I November 15, 2020
Parks Associates: 68% of SMBs are Concerned About Cybersecurity Vulnerabilities at Their Business Locations
Parks Associates research finds that 68% of US SMBs are concerned about cybersecurity vulnerabilities at their business locations and 37% are likely to purchase data security services in the next six months. By Parks Associates I November 16, 2020
Defense Cybersecurity Measures Race to Stop Adversaries
Adversaries are stepping up their efforts to exfiltrate information and weaken the U.S. supply chain through cyberspace. These efforts aim to both wreck the country from within and strengthen the hand of the adversary wielding the digital sword, according to a U.S. government official. By Robert K. Ackerman I November 17, 2020
MSP News
NRTC Managed Services group delivers solutions for rural America amid pandemic
NTRC, a member-driven and technology-focused cooperative based in Virginia, today announced new solutions their Managed Services group has developed and introduced over the past several months to assist communications service providers (CSPs) and their customers with broadband technical support, cybersecurity solutions, enhanced customer service, and deeper insights about traffic on their networks. NTRC I November 16, 2020
MSPs Report Ransomware is Still the #1 Malware Threat Affecting Businesses; Cost of Downtime Nearly Doubles Since 2019
Datto, the leading global provider of cloud-based software and technology solutions purpose-built for delivery by managed service providers (MSPs), today unveiled its fifth annual Global State of the Channel Ransomware Report. By Business Wire I November 17, 2020
| Get Protected Today! |
Cyber Insurance News
Coalition Partners with Malwarebytes to Protect Customers from Cyberthreats
Coalition, the leading cyber insurance and security company, and Malwarebytes, a leading provider of advanced endpoint protection and remediation solutions, today announced a partnership to offer a combined solution of best-in-class endpoint security and cyber insurance to protect organizations from cyberthreats. By Insurance News I November 16, 2020
NetDiligence Publishes Tenth Annual Cyber Claim Study
NetDiligence®, a leading provider of cyber risk readiness and response services, announced today it has published its tenth annual Cyber Claims Study, a study of actual losses for data breaches and other cyber-related events covered by leading cyber insurance carriers. Sponsoring the study are RSM and Experian® Data Breach Resolution. NetDiligence I November 17, 2020
| Learn how we can help you build the right cybersecurity solution! |
CVE Announcements This Week
More than 245,000 Windows systems still remain vulnerable to BlueKeep RDP bug
A year and a half after Microsoft disclosed the BlueKeep vulnerability impacting the Windows RDP service, more than 245,000 Windows systems still remain unpatched and vulnerable to attacks. By Catalin Cimpanu | November 17, 2020
macOS Big Sur 11.0.1 Patches 60 Vulnerabilities
The first update released by Apple for macOS Big Sur 11.0 addresses 60 vulnerabilities affecting various components of the operating system. By Eduard Kovacs I November 16, 2020
Citrix patches RCE flaw in SD-WAN Center that could lead to network takeover
Enterprises that use the Citrix SD-WAN Center (SDWC) have been urged to update their systems to protect their networks from malicious takeover. By Adam Bannister I November 16, 2020
SAD DNS: Researchers pull source code as DNS cache poisoning technique deemed ‘too dangerous’
Twelve years after DNS server cache poisoning was discovered and mostly fixed, security researchers at the University of California, Riverside, and Tsinghua University in Beijing have shown that many DNS resolvers can still be poisoned. By Ben Dickson I November 16, 2020
Vulnerability in Firefox for Android allowed attackers to steal cookies, local files
A vulnerability in the mobile version of the Firefox browser exposed victims’ local files to attackers if they visited a specially crafted web page. By Jessica Haworth I November 16, 2020
Regulations, Frameworks, and Controls
The Role of Cybersecurity and Cyber Intelligence in this Tech-Savvy world
Today, we are living in a digital world where everything happens online. From buying clothes, ordering food, and making payments – emerging technology is reshaping lifestyles. People are always giving out information – billing details, credit card information, etc. Although it generates data for brands but is the online world safe? The hackers of the 21st century have become smarter than ever. Every day people come across emails asking to reset their password or enter credit card details, falling victim to phishing attacks. by Sofia Peterson I November 15, 2020
The worst passwords of 2020 show we are just as lazy about security as ever
Can’t we do any better than “123456”?
| LEARN MORE! |
|
Sincerely, Omnistruct, 2740 Fulton Avenue #101-02, Sacramento, CA 95821, USA, (866) 683-8827 |
.png)
Get Social