The 2017 W-2 Phishing Victims List continues to grow, and I’m not posting most of them as individual reports, but one news story involving Monarch Beverage Company in Indianapolis deserves special mention because as CBS reports: While investigating this incident, the company discovered the same thing happened in April 2016. A scammer posing as the…
Category: Commentaries and Analyses
India: Over 700 govt websites hacked in 4 yrs
For those who like stats, some data from India, reported by Press Trust of India: More than 700 websites of various central and state government departments were hacked in the past four years, Lok Sabha (India’s Parliament): Of the total of 707, 199 of them were hacked last year, 164 in 2015, 155 in 2014 and 189 in…
United Arab Emirates: Cyber Security And Data Protection Breaches: A Brief Comparative Review
Simon Isgar and Bernadette Pinto of Kennedys write, in part: The Saudi Aramco attack of 2012 has been described3 as the first ‘hackavist-style’ assault to use malware. The attack managed to destroy 30,000 computers within the Aramco network, which were believed by security researchers to have been infected with the Shamoon malware. The consequences faced by…
UK parliamentary watchdog bemoans inconsistent personal data breach reporting within government
The Public Accounts Committee (PAC) said (69-page / 542KB PDF) there are “major and unexplained variations in the extent to which individual departments report security breaches” at the moment, and urged the government to work with the UK’s data protection authority to develop new guidelines on the issue. “The Cabinet Office should consult with the Information…
Ca: Victim of arson spree questions ICBC’s handling of privacy breach
There’s a follow-up to a breach that I had described as one of the worst insider breaches at its time – because it put lives at serious risk and some victims were firebombed or shot at. Mi-Jung Lee and Kendra Mangione recently interviewed one of the victims, who continues to have concerns about the handling…
Password-stealing security hole discovered in many Netgear routers
Graham Cluley writes: A security researcher has described how he uncovered a severe security hole in dozens of different Netgear routers, meaning that “hundreds of thousands, if not over a million” devices could be at risk of having their admin passwords stolen by hackers. Simon Kenin, a researcher at Trustwave, has explained how sheer laziness on a…