Summary This is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC). This alert provides information on exploitation by cybercriminal and advanced persistent threat (APT) groups of the current coronavirus disease 2019 (COVID-19) global pandemic. It includes…
Category: Commentaries and Analyses
Iran’s ban on Telegram that was intended to facilitate domestic spying backfired
More than 40 million Iranians had their personal data leaked and shared with strangers because they tried to use an alternative to Telegram after their government banned its use. It’s time for Iran to lift the ban before there are more massive leaks as people go online to seek information about COVID-19. by Dissent Doe…
FBI Releases Guidance on Defending Against VTC Hijacking and Zoom-bombing
From the U.S. Department of Health & Human Services Office for Civil Rights FBI Releases Guidance on Defending Against VTC Hijacking and Zoom-bombing 04/02/2020 11:39 AM EDT The Federal Bureau of Investigation (FBI) has released an article on defending against video-teleconferencing (VTC) hijacking (referred to as “Zoom-bombing” when attacks are to the Zoom VTC platform). Many organizations…
Zoom banned from New York City schools due to privacy and security flaws
Ainsley Harris reports: A few weeks ago, New York City’s 75,000 teachers scrambled to learn how to use videoconferencing services like Zoom as novel coronavirus cases began to rise and schools prepared to close their doors and institute remote learning. Now, the city’s teachers will have to scramble once more, after Department of Education Chancellor…
MT: DPC launches investigation after over 330,000 voters’ personal data leaked in security breach
Matthew Vella reports: The data protection commissioner will be launching an investigation after a massive security vulnerability – in a database containing information on 337,384 voters from Malta that was being held by a Maltese IT company – led it to be exposed without security. The data includes ID numbers, names, addresses, gender, phone numbers…
UK: Morrisons not liable for 2014 data breach, says Supreme Court
Alex Scroxton reports: Supermarket chain Morrisons has succeeded in its appeal to the Supreme Court against judgments that held it liable for an insider data breach caused by a disgruntled employee. In its unanimous judgment, the Supreme Court said previous judgments had fundamentally misunderstood the principles governing vicarious liability in a number of ways, most notably because…