HackDig : Dig high-quality web security articles for hacker

Why Threat Actors Are Increasingly Conducting Cyberattacks on Local Government

Cyberattacks on local government in the U.S. have increased dramatically over the last several years. In 2019 alone, ransomware affected more than 100 state and local governments, according to Recorded Future — and that’s just one threat vector. Municipalities are also at risk from insider threats, coordinated attacks and other perils. What is it about
Publish At:2020-02-17 18:22 | Read:118 | Comments:0 | Tags:Government Credit Card Data Cyberattacks Data Breaches Data

Increase Automation to Overcome Cyber Resilience Challenges

Security operations teams face an exponentially growing volume of security event data while resources mostly remain static. One great way to help solve issues in this space is automation. Despite the recognized benefits of security automation, however, few organizations leverage automation’s capabilities to their full potential, and those who do often
Publish At:2020-02-17 10:47 | Read:128 | Comments:0 | Tags:Incident Response Security Intelligence & Analytics Automati

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

The U.S. Justice Department today unsealed indictments against four Chinese officers of the People’s Liberation Army (PLA) accused of perpetrating the 2017 hack against consumer credit bureau Equifax that led to the theft of personal data on nearly 150 million Americans. DOJ officials said the four men were responsible for carrying out the largest thef
Publish At:2020-02-11 03:22 | Read:117 | Comments:0 | Tags:Data Breaches Coronavirus Equifax breach FBI Deputy Director

Why 2020 Will Be the Year Artificial Intelligence Stops Being Optional for Security

Artificial intelligence (AI) isn’t new. What is new is the growing ubiquity of AI in large organizations. In fact, by the end of this year, I believe nearly every type of large organization will find AI-based cybersecurity tools indispensable. Artificial intelligence is many things to many people. One fairly neutral definition is that it’s a bran
Publish At:2020-02-09 10:30 | Read:168 | Comments:0 | Tags:Artificial Intelligence Data Protection Identity & Access di

Artificial Intelligence (AI) and Security: A Match Made in the SOC

Change is constant in cybersecurity — continual, rapid, dynamic change. It’s impossible to maintain an effective defensive posture without constantly evolving. Security measures that worked in the past will not be effective today, and today’s security controls will not be effective tomorrow. Many factors contribute to this rapid pace of change. A
Publish At:2020-02-09 10:30 | Read:143 | Comments:0 | Tags:Artificial Intelligence Analysts Artificial Intelligence (AI

Sprint Exposed Customer Support Site to Web

Fresh on the heels of a disclosure that Microsoft Corp. leaked internal customer support data to the Internet, mobile provider Sprint has addressed a mix-up in which posts to a private customer support community were exposed to the Web. KrebsOnSecurity recently contacted Sprint to let the company know that an internal customer support forum called “Soc
Publish At:2020-01-29 15:35 | Read:251 | Comments:0 | Tags:Data Breaches Latest Warnings Lisa Belot microsoft Sprint vi

Wawa Breach May Have Compromised More Than 30 Million Payment Cards

In late December 2019, fuel and convenience store chain Wawa Inc. said a nine-month-long breach of its payment card processing systems may have led to the theft of card data from customers who visited any of its 850 locations nationwide. Now, fraud experts say the first batch of card data stolen from Wawa customers is being sold at one of the undergroundR
Publish At:2020-01-28 16:40 | Read:267 | Comments:0 | Tags:Data Breaches The Coming Storm bebe stores breach Buca di Be

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

On Nov. 23, one of the cybercrime underground’s largest bazaars for buying and selling stolen payment card data announced the immediate availability of some four million freshly-hacked debit and credit cards. KrebsOnSecurity has learned this latest batch of cards was siphoned from four different compromised restaurant chains that are most prevalent acr
Publish At:2019-11-26 15:35 | Read:429 | Comments:0 | Tags:Data Breaches The Coming Storm Focus Brands Gemini Advisory

Ransomware Bites 400 Veterinary Hospitals

National Veterinary Associates (NVA), a California company that owns more than 700 animal care facilities around the globe, is still working to recover from a ransomware attack late last month that affected more than half of those properties, separating many veterinary practices from their patient records, payment systems and practice management software. NV
Publish At:2019-11-19 15:35 | Read:509 | Comments:0 | Tags:Data Breaches Ransomware Greg Hartmann Laura Koester Nationa

Takeaways from the $566M BriansClub breach

Reporting on the exposure of some 26 million stolen credit cards leaked from a top underground cybercrime store highlighted some persistent and hard truths. Most notably, that the world’s largest financial institutions tend to have a much better idea of which merchants and bank cards have been breached than do the thousands of smaller banks and credit
Publish At:2019-11-12 03:35 | Read:471 | Comments:0 | Tags:A Little Sunshine Data Breaches Ne'er-Do-Well News Andrei Ba

Breaches at NetworkSolutions, Register.com, and Web.com

Top domain name registrars NetworkSolutions.com, Register.com and Web.com are asking customers to reset their passwords after discovering an intrusion in August 2019 in which customer account information was accessed. A notice to customers at notice.web.com. “On October 16, 2019, Web.com determined that a third-party gained unauthorized access to a lim
Publish At:2019-11-12 03:35 | Read:449 | Comments:0 | Tags:Data Breaches domainstate.com NetworkSolutions breach Regist

Stalkerware developer dealt new blow by FTC

Last week, the US Federal Trade Commission (FTC) interpreted its broad consumer protection mandate to file a first-of-its-kind enforcement action against the developer of three mobile stalkerware applications. The developer was banned from further selling the apps unless significant changes were made in design and functionality. The FTC’s required change
Publish At:2019-11-11 23:20 | Read:679 | Comments:0 | Tags:Stalkerware Capital One consent agreement consent order data

Ransomware Hits B2B Payments Firm Billtrust

Business-to-business payments provider Billtrust is still recovering from a ransomware attack that began last week.  The company said it is in the final stages of bringing all of its systems back online from backups. With more than 550 employees, Lawrence Township, N.J.-based Billtrust is a cloud-based service that lets customers view invoices, pay, or reque
Publish At:2019-10-22 15:35 | Read:604 | Comments:0 | Tags:Data Breaches Billtrust ransomware attack Steven Pinado

Avast, NordVPN Breaches Tied to Phantom User Accounts

Antivirus and security giant Avast and virtual private networking (VPN) software provider NordVPN each today disclosed months-long network intrusions that — while otherwise unrelated — shared a common cause: Forgotten or unknown user accounts that granted remote access to internal systems with little more than a password. Based in the Czech Repub
Publish At:2019-10-21 21:40 | Read:2458 | Comments:0 | Tags:Data Breaches Avast breach FileHippo Jaya Baloo Kenneth Whit

How Cybersecurity Salaries Fit Experience and Specialization

Not too long ago, there was a one-size-fits-all assumption about cybersecurity jobs. The security professional was hired to manage security systems and read logs — maybe handle audits and ensure industry compliance. Now, the job landscape for cybersecurity professionals is becoming more specialized, and even those specialized areas break down into even more
Publish At:2019-10-18 10:20 | Read:436 | Comments:0 | Tags:CISO Artificial Intelligence (AI) Career Chief Information S

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud