NakedSecurity – Scammer pleads guilty to fleecing Facebook and Google of $121m
“… Use strong passwords and consider 2FA to make it harder for crooks to gather intelligence … Consider a “back to base” VPN for remote users so their online security is kept up, even on the road. Think twice about publicly posting personnel information that could be abused in phishing attacks. …”
NackedSecurity – Sacked IT guy annihilates 23 of his ex-employer’s AWS servers
“2FA would have made it much harder for Needham to traipse through Voova’s AWS account posing as “Speedy.” Of course, you also have to lock the door after employees leave by shutting down their accounts.”
De Tijd – Absoluut recordjaar voor fraude met internetbankieren.
Oplichters konden vorig jaar in ons land 8 miljoen euro stelen door via phishingmails bankgegevens van hun slachtoffers te ontfutselen. … Fraudeurs doen zich voor als een geïnteresseerde koper en vragen de verkoper hen 1 eurocent over te schrijven, zodat ze over zijn naam en zijn rekeningnummer beschikken. Via de betaallink die ze daarvoor doorsturen, […]
De Tijd – Derde meer cyberaanvallen op bedrijven
Het aantal cyberaanvallen op Belgische en Nederlandse bedrijven is het voorbije jaar met liefst 32 procent gestegen tegenover een jaar eerder.
Mondaq – “Knuddels.de” EUR 20.000 fine
” … The company was the victim of a hacker attack in summer 2018 during which hackers captured personal data. One reason they were able to do this was that customers’ passwords were saved in plain text on the company server. In addition to this, Knuddels had neglected to install the new version of the […]
KnowBe4 – Cyberheist On Bank Causes Shutdown Of All Operations
… Generally, this type of hack starts with a successful spear phishing attack that opens up the victim’s network to the bad guys who then move laterally and compromise critical systems.
BleepingComputer – Info on over 500.000 students and staff exposed in San Diego School District hack.
Personal information belonging to over half a million students … may have been compromised in a data breach incident. An unauthorized person baited the staff with phishing emails to collect credentials to log into the district’s network services.
NackedSecurity – Worst passwords list is out, but this time we’re not scolding users
… they’re still using “123456” as a password. This year, according to SplashData’s annual worst password list, that stale cracker came in at No. 1. Again. “password” was the No. 2 dust bunny to roll out from under the bed…
NewsChannel11 – Unauthorized users could have accessed private information of 7,700 people following ETSU breach
University officials tell News Channel 11 that two unidentified employees clicked on a link in the phishing scam that was sent to their e-mail accounts.
InfoRisk Today – Travel-related breaches: Mitigating the risks
… It is very common for data and devices to be hacked while traveling and for those who were hacked to not even realize it …