ANCIBE

Noticias Information Security Buzz (English)

How To Steal $1 Million By Email: Check Point Researchers Detail Million-dollar Fraud Against Chinese VC Firm
Publicado el: Saturday December 07, 2019

A series of spoofed emails enabled a Hong Kong-based hacker to make off with a million dollars Researchers at leading cyber-security company Check Point have revealed how Chinese hackers were able to steal $1 million from a Chinese venture capital firm through a simple but convincing business email compromise (BEC) scam. The $1M was seed …

The ISBuzz Post: This Post How To Steal $1 Million By Email: Check Point Researchers Detail Million-dollar Fraud Against Chinese VC Firm appeared first on Information Security Buzz.


CEO Comments On 44 Million Microsoft Users Reused Passwords In Q1 2019
Publicado el: Saturday December 07, 2019

Microsoft’s threat research team has scanned all Microsoft user accounts and found that 44 million were using usernames and passwords that have been leaked online following security breaches at other online services. Microsoft: 44 million Microsoft accounts use leaked passwords https://t.co/LvmbOKb3nd pic.twitter.com/cPFdVloAuz — Jorgen Hauge (@Jorgenhauge) December 6, 2019

The ISBuzz Post: This Post CEO Comments On 44 Million Microsoft Users Reused Passwords In Q1 2019 appeared first on Information Security Buzz.


Comments On Deepfakes Security Issues
Publicado el: Saturday December 07, 2019

Cybercriminals are now perfecting deepfakes to impersonate people to steal money and anything that might be valuable. The technology has been improved to reach a higher level where it becomes difficult tell the difference between a fraud or friend. "25 percent of pornographic deepfake subjects are female K-pop stars." https://t.co/ouRSQWdUcB — Gabriel de Lulu (@gabrielwilder) …

The ISBuzz Post: This Post Comments On Deepfakes Security Issues appeared first on Information Security Buzz.


Comment: OpenBSD Patches Authentication Bypass, Privilege Escalation Vulnerabilities
Publicado el: Friday December 06, 2019

It has been reported that OpenBSD has patched four vulnerabilities including privilege escalation flaws and a remotely exploitable authentication bypass.

The ISBuzz Post: This Post Comment: OpenBSD Patches Authentication Bypass, Privilege Escalation Vulnerabilities appeared first on Information Security Buzz.


Experts Comments: CyrusOne Hit By Ransomware Attack
Publicado el: Friday December 06, 2019

CyrusOne, one of the biggest data centre providers in the US, has suffered a ransomware attack, ZDNet has learned. CyrusOne is currently working with law enforcement and forensics firms to investigate the attack and is also helping customers restore lost data from backups. The incident took place yesterday and was caused by a version of the …

The ISBuzz Post: This Post Experts Comments: CyrusOne Hit By Ransomware Attack appeared first on Information Security Buzz.


Security Expert Comments On VPN Bug Lurks In iOS, Android, Linux Distros, MacOS, FreeBSD And OpenBSD
Publicado el: Friday December 06, 2019

As reported by The Register, researchers from the University of New Mexico have found a bug in the way Unix-flavored systems handle TCP connections, which could put VPN users at risk of having their encrypted traffic hijacked. CVE-2019-14899 is a security weakness that they report to be present in “most” Linux distros, along with Android, iOS, …

The ISBuzz Post: This Post Security Expert Comments On VPN Bug Lurks In iOS, Android, Linux Distros, MacOS, FreeBSD And OpenBSD appeared first on Information Security Buzz.


Atlassian Zero-day Vulnerability Exposed
Publicado el: Thursday December 05, 2019

Earlier this week, a cybersecurity Twitter account inadvertently revealed a zero-day vulnerability flaw affecting software company Atlassian. According to @SwiftOnSecurity, Atlassian provided a domain that resolved to a local server with a common SSL certificate for its Confluence cloud service. This vulnerability would allow anyone with sufficient technical knowledge to conduct a man-in-the-middle attack, redirecting …

The ISBuzz Post: This Post Atlassian Zero-day Vulnerability Exposed appeared first on Information Security Buzz.


Sprint Contractor Left AWS Bucket Containing Thousands Of Mobile Phone Bills Exposed
Publicado el: Thursday December 05, 2019

It has been reported that a contractor working for mobile giant Sprint stored hundreds of thousands of cell phone bills of AT&T, Verizon and T-Mobile subscribers on an unprotected cloud server. The AWS storage bucket had more than 261,300 documents, the vast majority of which were phone bills belonging to cell subscribers dating as far …

The ISBuzz Post: This Post Sprint Contractor Left AWS Bucket Containing Thousands Of Mobile Phone Bills Exposed appeared first on Information Security Buzz.


Security Expert On Sweaty Betty’s eCommerce Data Breach
Publicado el: Thursday December 05, 2019

Experts commented below on Sweaty Betty’s data breach caused by cyber-criminals inserting malicious code into its eCommerce website to capture customer card details during the checkout process.

The ISBuzz Post: This Post Security Expert On Sweaty Betty’s eCommerce Data Breach appeared first on Information Security Buzz.


Security Experts On Report Highlights Nation-State Cyberthreats Facing SMBs In 2020
Publicado el: Thursday December 05, 2019

Cybersecurity firm AppRiver released its Q4 Cyberthreat Index for Business Survey, highlighting the threats facing small- and medium-sized businesses (SMBs) as we transition into 2020. The survey features the opinions of more than 1,000 cybersecurity officials working at SMBs throughout the United States. According to the survey, 93% of all executives think nation-states outside of …

The ISBuzz Post: This Post Security Experts On Report Highlights Nation-State Cyberthreats Facing SMBs In 2020 appeared first on Information Security Buzz.