Jason Murdock reports: Online banking customers in the UK are being warned of a major phishing campaign using a notorious piece of malware designed to steal financial data. Customers of Barclays, Santander and Lloyds TSB are being targeted by the trojan malware known as Dyre. Nearly 20,000 malicious emails have been sent in the last…
UK: Address mistake causes data breach
James Illingworth reports: An investigation has been launched after a Wigan resident was sent confidential tax documents due to a civil service mix-up. Barron Roberts raised the alarm after receiving the bundle containing a dozen forms with personal information relating to borough households through the post this week. Read more on Wigan Today. The Department for…
UK: Home Office didn’t notify ICO about dozens of breaches last year
Alexander J. Martin reports that the Home Office had 33 data breaches during the last financial year, but did not report any of them to the Information Commissioner’s Office (ICO). The incidents were disclosed in the department’s annual report and accounts 2014-15 (PDF). There’s nothing illegal about the failure to notify the ICO, however. Martin reports: The number…
Adobe expected to issue Flash Player patch for Hacking Team 0-day
Adobe is expected to issue a patch for a vulnerability its Flash Player today to address a zero-day that was included in the Hacking Team data dump. In the meantime, @SwiftOnSecurity sounded the alarm last night with instructions how to protect yourself: TRANSLATION: Worst-case scenario is now in play – HT Flash 0day with NO patch is now…
National Association of Attorneys General: Federal Data Breach Legislation Should Not Preempt States
The National Association of Attorneys General (NAAG) sent a letter today to congressional leaders urging them to ensure that federal data breach legislation preserves states’ ability to enforce state laws in order to protect consumers from data breaches and identity theft. Most of the federal bills related to data security and data breach notification pending…
Lizard Squad hacker convicted on 50,000 hacking charges
William Turton reports: A key Lizard Squad member had been convicted of 50,700 charges related to computer crimes, according to Finnish newspaper Kaleva. Julius “zeekill” Kivimaki, 17, was sentenced to a two-year suspended prison sentence and was “ordered to fight against cybercrime” according to Finnish media. The charges against Kivimaki include data breaches, felony payment fraud, telecommunication harassments, and…