A hacker appears to be selling personally identifiable information (PII) relating to millions of US-based T-Mobile customers on an underground forum. While the forum post doesn’t say the data belongs to T-Mobile explicitly, the seller told Motherboard they obtained the information by breaching the telecom company’s servers. The pool of data reportedly includes the social security numbers (SSN), phone numbers, […]
Cybersecurity researchers have found a misconfigured Amazon S3 bucket that exposed personally identifiable information (PII) of over three million US senior citizens. Discovered by researchers at WizCase, the cloud storage bucket belonged to SeniorAdvisor, which describes itself as the largest ratings and reviews website for senior care and services across the US and Canada. The misconfigured bucket contained over 180GB of […]
Almost as quickly as we experienced the pivot to work-from-home and to move-to-the-cloud to minimize the economic impact of the pandemic, we also saw what felt like a pick up in significant cyberattacks, from the Solarwinds supply chain attack to a raft of ransomware incidents. How can your organization avoid such attacks? Did moving workers […]
In the first few months of the pandemic, cloud-based cybersecurity attacks increased by 630% with attackers making the most of the vulnerabilities of a rushed effort for staff to work from home. However, shock-worthy statistics like this don’t paint a clear picture of the cybersecurity realities of remote working. The truth is that 44% of […]
Data breach incidents hit unprecedented levels over the last year as businesses were forced to rapidly transition to a remote-first work environment, according to a new report. The latest edition of IBM’s annual Cost of Data Breach report estimates that data breaches now cost companies an average of $4.24 million per incident, which is the highest […]
Aqua Security on Thursday released a report which found that only 3% of respondents surveyed recognize that a container – in and of itself – does not function as a security boundary, indicating that 97% are unaware of basic container security principles, often overestimating the default security properties of containers. Amir Jerbi, co-founder and CTO at […]
Is China primed to become a global hot spot for ransomware and other cybercrimes? That question was sparked by a White House statement this week accusing Beijing’s Ministry of State Security of contracting with criminal gangs for some of its hacking work and turning a blind eye to their cybercrimes for profit. Among the cybercrimes […]
Microsoft has confirmed it’s buying RiskIQ, a San Francisco-based cybersecurity company that provides threat intelligence and cloud-based software as a service for organizations. Terms of the deal, which will see RiskIQ’s threat intelligence services integrated into Microsoft’s flagship security offerings, were not disclosed, although Bloomberg previously reported that Microsoft will pay more than $500 million in cash for […]
The US Army has awarded cybersecurity firm Axellio a follow-on contract worth $25.7 million to improve the service’s capabilities in detecting and responding to various cybersecurity threats. Under the contract, the American company will provide packet capture node systems to additional sites for three more years. This contract is an extension of the 2020 agreement […]
Charles Carmakal has a problem: Ransomware has become so prolific that he has too much business. “We’re getting calls from organizations almost every single day,” Carmakal, the chief technology officer at the cybersecurity giant Mandiant, said in a phone call. “We’re barely able to keep up.” And that was before cybersecurity professionals had to deal […]