U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Credit to Author: BrianKrebs| Date: Tue, 11 Feb 2020 03:25:52 +0000

The U.S. Justice Department today unsealed indictments against four Chinese officers of the People’s Liberation Army (PLA) accused of perpetrating the 2017 hack against consumer credit bureau Equifax that led to the theft of personal data on nearly 150 million Americans. DOJ officials said the four men were responsible for carrying out the largest theft of sensitive personal information by state-sponsored hackers ever recorded. 

Read more

A week in security (July 29 – August 4)

Credit to Author: Malwarebytes Labs| Date: Mon, 05 Aug 2019 15:44:37 +0000

A roundup of security news from July 29 – August 4 including Capital One breach, Lord Exploit Kit, more Magecart skimming, ATM attacks, QR code scams, and Equifax payout.

Categories:

Tags:

(Read more…)

The post A week in security (July 29 – August 4) appeared first on Malwarebytes Labs.

Read more

Capital One breach exposes over 100 million credit card applications

Credit to Author: Pieter Arntz| Date: Fri, 02 Aug 2019 16:00:00 +0000

The Capital One data breach is an exceptional example, if only because of how much we already know. Not only that, but the breach happened to one of the technical front-runners in banking.

Categories:

Tags:

(Read more…)

The post Capital One breach exposes over 100 million credit card applications appeared first on Malwarebytes Labs.

Read more

A Chief Security Concern for Executive Teams

Credit to Author: BrianKrebs| Date: Tue, 18 Dec 2018 21:23:10 +0000

Virtually all companies like to say they take their customers’ privacy and security seriously, make it a top priority, blah blah. But you’d be forgiven if you couldn’t tell this by studying the executive leadership page of each company’s Web site. That’s because very few of the world’s biggest companies list any security executives in their highest ranks. Even among top tech firms, less than half list a chief technology officer (CTO). This post explores some reasons why this is the case, and why it can’t change fast enough. KrebsOnSecurity reviewed the Web sites for the global top 100 companies by market value, and found just five percent of top 100 firms listed a chief information security officer (CISO) or chief security officer (CSO). Only a little more than a third even listed a CTO in their executive leadership pages.

Read more

Scanning for Flaws, Scoring for Security

Credit to Author: BrianKrebs| Date: Wed, 12 Dec 2018 19:25:14 +0000

Is it fair to judge an organization’s information security posture simply by looking at its Internet-facing assets for weaknesses commonly sought after and exploited by attackers, such as outdated software or accidentally exposed data and devices? Fair or not, a number of nascent efforts are using just such an approach to derive security scores for companies and entire industries. What’s remarkable is how many organizations don’t make an effort to view their public online assets as the rest of the world sees them — until it’s too late.

Read more

Equifax Has Chosen Experian. Wait, What?

Credit to Author: BrianKrebs| Date: Thu, 01 Nov 2018 16:47:13 +0000

A year after offering free credit monitoring to all Americans on account of its massive data breach that exposed the personal information of nearly 148 million people, Equifax now says it has chosen to extend the offer by turning to a credit monitoring service offered by a top competitor — Experian. And to do that, it will soon be sharing with Experian contact information that affected consumers gave to Equifax in order to sign up for the service. 

Read more

A week in security (September 17 – 23)

Credit to Author: Malwarebytes Labs| Date: Mon, 24 Sep 2018 17:03:26 +0000

A roundup of the security news from September 17–23, including Android scams, massive WordPress compromises, and high fines for Equifax.

Categories:

Tags:

(Read more…)

The post A week in security (September 17 – 23) appeared first on Malwarebytes Labs.

Read more

Sound, Fury, And Nothing One Year After Equifax

Credit to Author: Mark Nunnikhoven (Vice President, Cloud Research)| Date: Fri, 07 Sep 2018 12:00:34 +0000

One year ago today, Equifax suffered what remains one of the largest and most impactful data breaches in U.S. history. Last September, it was revealed that the personal information of 145 million Americans, almost 700,000 UK citizens, and 19,000 Canadians was stolen by cybercriminals. This information included names, addresses, birthdays, Social Security numbers, and—in some…

The post Sound, Fury, And Nothing One Year After Equifax appeared first on .

Read more