16 Jul 2019

Hackers Can Manipulate Media Files Transferred via WhatsApp, Telegram

Symantec researchers have discovered that the highly popular messaging apps WhatsApp and Telegram are both vulnerable to what the researchers can “Media File Jacking,” which involves the manipulation of media files sent to users via these apps. The attack is possible due to the way WhatsApp and Telegram store media

Read More
15 Jul 2019

Healthcare Organizations, Like Many Other Organizations, Are Too Confident in Cybersecurity

Healthcare organizations (HCOs) tend to be overconfident when it comes to their cybersecurity posture, a new LexisNexis report found. Even though the majority of HCOs are very confident in their cybersecurity programs, many organizations have not implemented certain best practices in order to protect their data and systems. The vast majority

Read More
15 Jul 2019

New LastPass study finds 92% of businesses experience identity challenges

A new LastPass study[pdf] carried out by Vanson Bourne reveals that 92% of IT/security professionals are struggling with one or more identity management challenges, with 47% pointing to ease of use with security as the top challenge. The vast majority of respondents said that shortcomings in identity management have put

Read More
12 Jul 2019

One issue is probably to blame for your IT outages and data losses – and it’s not hackers

A new survey by Databarracks identifies hardware failure as the most common cause of data loss, ahead of human error and cyberattacks. However, cyberattacks are increasingly associated with data loss compared to previous reports, while the opposite trend is true for hardware failure and human error. In fact, the report

Read More
10 Jul 2019

Marriott Faces $123 Million GDPR Fine for 2018 Data Breach

In addition to considering an unprecedented $228 million fine for British Airways over the data breach the company experienced in the summer of 2018, the UK Information Commissioner’s Office (ICO) plans to fine Marriott International Inc £99,200,396 ($123,705,869) over its failure to protect customer data under the EU’s General Data

Read More
10 Jul 2019

1,300 Popular Android Apps Access Data Without Proper Permissions

Merely avoiding apps that ask for permissions to gather geolocation data and other personal data is not an effective strategy for privacy-conscious Android users because apps often collect data without consent, new research by the International Computer Science Institute shows. The researchers found over 1,300 privacy-violating Android apps available on

Read More
09 Jul 2019

NSA Isn’t Always Following Its Own Cybersecurity Policies, Watchdog Says

A new report by the Inspector General of the US National Security Agency (NSA) shows that the agency doesn’t always follow internal policies that are meant to protect the highly sensitive information it collects and processes. The various internal audits and investigations making up the report show that between October 2018 and

Read More
09 Jul 2019

GDPR: Record British Airways fine shows how data protection legislation is beginning to bite

British Airways will soon have the dubious honor of becoming the first organization to receive a major fine under the European Union’s General Data Protection Regulation (GDPR) that came into effect in May of 2018. The UK’s Information Commissioner’s Office plans to slap the airline with a £183.4m fine (around

Read More
08 Jul 2019

One in 10 IT Pros Would Steal Data if Leaving a Job

One in ten IT experts would attempt to take whatever information they could get their hands on before leaving their job, a new Gurucul survey shows. Furthermore, 15% respondents said that would make sure to delete certain files and change certain passwords. The report highlights the difficulty of detecting insider

Read More
08 Jul 2019

Maryland Govt Agency Breach Exposes Names, SSNs of 78K People

The Maryland Department of Labor has experienced a data breach in which an unidentified actor obtained unauthorized access to the full names, social security numbers and other personal data belonging to around 78,000 customers. Maryland has launched an investigation into the incident. So far the probe found no evidence that

Read More