Commentaries and Analyses – Page 596

Verizon’s 2016 Data Breach Investigations Report finds criminals continue to exploit human nature

Posted on April 27, 2016 by Dissent

Cybercriminals are continuing to exploit human nature as they rely on familiar attack patterns such as phishing, and increase their reliance on ransomware, where data is encrypted and a ransom is demanded, finds the Verizon 2016 Data Breach Investigations Report. This year’s report highlights repeating themes from prior year’s findings and storylines that continue to…

VEHICLE CYBERSECURITY: DOT and Industry Have Efforts Under Way, but DOT Needs to Define Its Role in Responding to a Real-world Attack

Posted on April 26, 2016 by Dissent

From a newly released GAO report: Modern vehicles contain multiple interfaces—connections between the vehicle and external networks—that leave vehicle systems, including safety-critical systems, such as braking and steering, vulnerable to cyberattacks. Researchers have shown that these interfaces—if not properly secured—can be exploited through direct, physical access to a vehicle, as well as remotely through short-range…

Edwin Shaw employee loses unencrypted flash drive with 975 patients’ info

Posted on April 26, 2016 by Dissent

An anonymous site visitor kindly pointed me to this item that was in the Akron Beacon Journal last week: If you went to Akron General Edwin Shaw Rehabilitation hospital in 2010 or 2011, expect to receive a letter from hospital officials saying that some of your information may have been compromised. Officials said the data…

SWIFT warns customers of multiple cyber fraud cases, issues software security update

Posted on April 26, 2016 by Dissent

Jim Finkle reports: SWIFT, the global financial network that banks use to transfer billions of dollars every day, warned its customers on Monday that it was aware of “a number of recent cyber incidents” where attackers had sent fraudulent messages over its system. The disclosure came as law enforcement authorities in Bangladesh and elsewhere investigated the…

Presidential campaign apps expose personal data, report says

Posted on April 26, 2016 by Dissent

First it was their web sites failing to protect privacy, and now it’s their apps. Cory Bennett reports: Over half of presidential campaign-related smartphone apps on Android devices are exposing users’ sensitive data, according to new research. Presidential campaigns — and the groups that support them — are increasingly using smartphone apps to try to…

SWIFT Software Bug Exploited by Bangladesh Bank Hackers

Posted on April 25, 2016 by Dissent

Phil Muncaster reports: A bug in SWIFT banking software may have been exploited to allow hackers to make off with $81 million from Bangladesh’s central bank in February, according to reports. Investigators at British defense contractor BAE Systems told Reuters that the malware in question, evtdiag.exe, had been designed to change code in SWIFT’s Access…