HackDig : Dig high-quality web security articles for hackers

Class Action Lawsuit Filed Against Marriott Over New Data Breach

Law firm Morgan & Morgan announced on Thursday that it has filed a class action lawsuit against Marriott over the recently disclosed data breach that has impacted as many as 5.2 million individuals.The complaint filed by Morgan & Morgan in the District of Maryland accuses Marriott of negligence, breach of contract, breach of confidence, and deceptive
Publish At:2020-04-02 16:10 | Read:435 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Incident Response Compliance Cyb

Browser Makers Delay Removal of TLS 1.0 and 1.1 Support

Google, Microsoft and Mozilla are delaying plans to disable support for the Transport Layer Security (TLS) 1.0 and 1.1 protocols in Chrome, Edge, Internet Explorer, and Firefox.TLS 1.0 is over two decades old, and TLS 1.1 was only meant to address some limitations in the former and prevent specific attacks. Both are known to include weaknesses, some addresse
Publish At:2020-04-02 12:27 | Read:495 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Data Protection Manage

Retooling Cyber Ranges

Cloud-based Cyber Ranges Will Change the Future of Training and Certifying Security and DevOps ProfessionalsA half-decade ago, with much fanfare, cyber ranges were touted as a revolutionary pivot for cybersecurity professionals’ training. Many promises and investments were made, yet the revolution has been slow coming. What may have been a slow start appears
Publish At:2020-03-31 07:20 | Read:268 | Comments:0 | Tags:INDUSTRY INSIGHTS Incident Response Training & Certifica

AMD Confirms Hacker Stole Information on Graphics Products

AMD has confirmed that a hacker has stolen files related to some of its graphics products, but the company says it’s not too concerned about the impact of the leak.A hacker who uses the online moniker “Palesa” claims to have obtained source code files related to several AMD graphics processing units (GPUs), including the Navi 10 architecture, which is used i
Publish At:2020-03-26 13:31 | Read:416 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Cybercrime

GE Says Some Employees Hit by Data Breach at Canon

General Electric (GE) revealed last week that the personal information of some employees may have been compromised as a result of a data breach suffered by Canon Business Process Services.In a data breach notification sent to affected individuals and submitted to the California Attorney General, GE said an unauthorized party gained access to a Canon email ac
Publish At:2020-03-25 07:11 | Read:380 | Comments:0 | Tags:NEWS & INDUSTRY Email Security Incident Response Cybercr

New Mexico Agencies on Edge Amid Rising Ransomware Attacks

New Mexico school districts, universities, and government agencies have collectively spent millions of dollars to regain control of their computer systems after employees unknowingly opened emails containing an encrypted code that effectively shut them out of their systems.The ransomware attacks occurred between January 2018 and February 2020, and have put s
Publish At:2020-03-23 09:39 | Read:454 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Incident Response Vi

Hackers Target UK Fintech Company Finastra

UK-based financial technology company Finastra is investigating a cybersecurity incident that may involve a piece of ransomware infecting some of its systems.Finastra has over 10,000 employees and it delivers financial software to more than 9,000 customers across 130 countries, including 90 of the top 100 banks.Cybersecurity blogger Brian Krebs reported that
Publish At:2020-03-20 17:10 | Read:387 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Incident Response Ma

HHS Says DDoS Attack Failed to Cause Disruption

The U.S. Department of Health and Human Services (HHS) was targeted with a distributed denial-of-service (DDoS) attack on Sunday, but the agency said it did not experience any significant disruption as a result of the incident.“HHS has an IT infrastructure with risk-based security controls continuously monitored in order to detect and address cybersecurity t
Publish At:2020-03-16 17:25 | Read:309 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Virus & Threats Inciden

European Electrical Energy Organization Discloses Breach

The European Network of Transmission System Operators for Electricity (ENTSO-E) revealed this week that malicious actors breached its corporate network.ENTSO-E represents 42 electricity transmission system operators (TSOs) from 35 countries in Europe. TSOs are responsible for the transmission of electric power across the main high-voltage networks, and ENTSO
Publish At:2020-03-11 07:41 | Read:427 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Virus & Threats Incident

Threat Hunting – Outbound RDP Surprises

Opener Through threat hunting, an organization can break away from a reactive approach to identifying incidents and evolve into a proactive operation that actively looks for incidents. The high-level threat hunting pipeline consists of taking a hypothesis built around threats specific to the organization, lab testing and validating the hypothesis, impleme
Publish At:2020-03-10 11:43 | Read:401 | Comments:0 | Tags:Incident Response Incident Response & Forensics

Durham City, County Recovering After Ransomware Attack

The City of Durham and the Durham County government in North Carolina are in the process of recovery after experiencing what appears to be a ransomware attack on March 6.In a notice published on its website on Sunday, the City of Durham revealed that it was alerted of the incident late on Friday, and that it immediately responded and shut down some systems i
Publish At:2020-03-10 08:55 | Read:479 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Incident Response Vi

Human-Operated Ransomware Is a Growing Threat to Businesses: Microsoft

Employing techniques usually associated with nation-state threat actors, human-operated ransomware attacks represent a growing threat to businesses, Microsoft warned last week.Different from auto-spreading ransomware, these are hands-on-keyboard attacks, where attackers use stolen credentials, perform reconnaissance, adapt to the compromised network’s config
Publish At:2020-03-09 13:57 | Read:461 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Incident Response Vi

Virgin Media Accused of Downplaying Security Incident

Virgin Media has been accused of downplaying the recently disclosed cybersecurity incident that involved the personal information of roughly 900,000 people.UK-based phone, TV and broadband services provider Virgin Media started informing customers and potential customers last week that some of their personal information was exposed as a result of a misconfig
Publish At:2020-03-09 10:09 | Read:395 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Data Protection Manage

Aussie Watchdog Sues Facebook Over Cambridge Analytica Breach

Australia's privacy watchdog announced legal action against Facebook Monday for alleged "systematic failures" exposing more than 300,000 Australians to a data breach by Cambridge Analytica.The Office of the Australian Information Commissioner said it had initiated proceedings against the tech giant and that Facebook committed "serious and/or repeated interfe
Publish At:2020-03-09 10:09 | Read:497 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Audits Incident Response Complia

How a More Connected Approach Can Help With Threat Management

Threat management is a framework that is often used to evaluate and manage everything you can do to detect and respond to cyberthreats. It encompasses people, process and technology, and for effective threat management, all three should work together seamlessly. Of course, that’s easier said than done. When you look at just the technology piece of thre
Publish At:2020-03-06 11:10 | Read:492 | Comments:0 | Tags:Incident Response Risk Management Threat Hunting Threat Inte

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud