18 Mar 2019

Database leaks 250K legal documents, some marked ‘not designated for publication’

A security researcher with Security Discovery recently stumbled upon an unprotected server that left 257,287 legal documents exposed to the internet. The records are all related to US legal cases from between 2002-2010 and 30% to 40% of the documents were marked as ‘unpublished opinion’ or ‘not designated for publication.’

Read More
18 Mar 2019

Hacker returns and puts 26Mil user records for sale on the Dark Web

A threat actor using the moniker ‘Gnosticplayers’ has once again uploaded a database containing millions of records to a popular dark web marketplace. Last month, Gnosticplayers put three massive data collections affecting hundreds of millions of users up for sale and promised that more stolen records would be coming soon.

Read More
15 Mar 2019

Data breach reports delayed as organizations struggle to achieve GDPR compliance

A new Freedom of Information (FOI) request by Redscan for data from the UK Information Commissioner’s Office (ICO) reveals that UK businesses were seriously falling short in terms of data breach disclosure in the year before the EU’s General Data Protection Regulation (GDPR) went into effect, which happened in May

Read More
12 Mar 2019

IT managers can’t ignore endpoints because most cyberattacks start there

New research by Sophos shows that cyberattacks are rarely discovered on endpoints, even though that is where many cyberattacks start. The survey found that while 37% of cyberattacks on mid-sized organizations are discovered on servers and another 37% on networks, a mere 17% are detected on endpoints and only 10%

Read More
11 Mar 2019

Iranian Group Stole 6TBs of data from Citrix

Cybersecurity company Resecurity claims that hackers belonging to the IRIDIUM group that has been linked to Iran have stolen 6 terabytes of valuable corporate data from software vendor Citrix. According to Resecurity, the attack took place over Christmas last year as “part of a sophisticated cyber-espionage campaign supported by nation

Read More
08 Mar 2019

An Email Marketing Company Left 809 Million Records Exposed Online

Once again, an unsecured database has exposed sensitive data on millions of people and companies This time, “email validation” firm Verifications.io failed to properly secure a MongoDB database containing 809 million marketing-related records. The data included 763 unique email addresses, as well as names, gender, birth dates, phone numbers, physical

Read More
07 Mar 2019

Hundreds of immigrant recruits risk ‘death sentence’ after Army bungles data, lawmaker says

Between July 2017 and Jan. 2018, US Army officials accidentally sent immigrant recruits a confidential list containing sensitive information on over 4,200 immigrant recruits on at least three separate occasions. According to US Congressman Tom Malinowski, who served in the State Department under President Barack Obama, the breach endangers hundreds

Read More
07 Mar 2019

12,449 Data Breaches Confirmed in 2018, a 424% Increase Over the Previous Year

A new 4IQ report found that 12,449 data breaches occurred in 2018, which is a staggering increase of 424% compared to the year before. However, the number of records exposed per breach was 4.7 times lower than in 2017, namely a drop from over 1 million records per breach to

Read More
05 Mar 2019

Experian: More Than a Third of Companies are Unprepared to Respond to a Data Breach

New research by Experian shows that companies are still falling short when it comes to cyber security disaster preparedness. The study found that just over one-third of business executives (36%) believes their organization is ready to respond to a data breach involving business confidential information and intellectual property, even though

Read More
28 Feb 2019

Why businesses fear cyberattacks from ex-employees more than nation states

According to a new AppRiver survey, 58% of cybersecurity decision makers at small- and medium-sized businesses (SMBs) are more concerned about their organization experiencing a data breach than about facing a flood, fire, transit strike, or a physical break-in. For larger SMBs (with between 150 and 250 employees) the number

Read More