Thursday , 21 June 2018
Home » NEWS » EDITOR’S NEWS (page 217)

EDITOR’S NEWS

eBay confirms 145 million records were affected in attack

Around 145 million user records were affected in the eBay breach in what could be the second biggest breach in history at a US company.   According to Reuters, the attackers copied ‘a large part’ of that database and this is the second biggest breach for a US company since the Adobe breach of around 152 million user accounts last ... Read More »

ProofPoint to move into incident response area with acquisition

ProofPoint is to acquire NetCitadel to add incident response capabilities to its product and service offering.   With a figure of $24 million (£14 million) reported by ProofPoint, the deal will extend the reach and capabilities of Proofpoint’s existing advanced threat solutions, adding additional threat verification and containment capabilities via an open platform that unifies products from Proofpoint and other ... Read More »

Microsoft recommends other companies open vulnerability research centres

Businesses should open their own vulnerability research centres, according to Microsoft.   According to The Register, Microsoft’s Jeremy Brown said that the opening of the Microsoft Vulnerability Research (MSVR) team and centre in 2008 allowed Microsoft security researchers to safely report bugs and vulnerabilities they found in third-party software in a bid to shore up the security ecosystem of the ... Read More »

eBay admits cyber attack was enabled via stolen employee logins

Internet auction website eBay has instructed users to change their passwords after it admitted to suffering an attack in February.   According to a statement published on its corporate website, company said it has no evidence of the compromise “after conducting extensive tests on its networks”, but there was no evidence that financial or credit card information had been accessed ... Read More »

Flaws in code come from use of large libraries

As most code is derived from code bases, if you only test your own code, you are missing a large part of the attack surface.   Speaking to IT Security Guru, Chris Eng, vice president of security research at Veracode, suggested that most software is not written entirely from scratch; only ten per cent of code is, and 90 per ... Read More »

IT professionals believe passwords make them vulnerable

There is a global distrust of passwords, as 97 per cent of IT professionals think they make their systems vulnerable to attack.   The research of 300 attendees at Infosecurity Europe found that 97 per cent said that they know that passwords make their systems vulnerable and pose a serious risk when accessing web applications, and yet we still use weak, ... Read More »

Privileged user abuse predicted to increase in next 2 years

Almost 90 per cent of businesses believe that the threat of privileged users will increase in the next two years.   According to a Ponemon Institute report, 88 per cent of 693 respondents believed that the risk of privileged user abuse will increase or stay the same in the next 12-24 months, while 69 per cent of respondents do not believe ... Read More »

US charges Chinese nationals with hacking

The FBI has issued wanted posters for five Chinese army agents it is charging with cyber crimes. Named by the US Department of Justice as Wang Dong, Sun Kailiang, Wen Xinyu, Huang Zhenyu, and Gu Chunhui, the men were officers in Unit 61398 of the Third Department of the Chinese People’s Liberation Army (PLA), which Mandiant called the APT1 group ... Read More »

LifeLock pulls Wallet app over data security fears

Deemed to not be meeting data security compliance standards, the CEO of Wallet app LifeLock has deleted all data stored by current users. In a blog post, LifeLock chairman and CEO Todd Davis, said that it has determined that certain aspects of its mobile app may not be fully compliant with payment card industry (PCI) security standards, and it was ... Read More »

Google adds security functionality to Gmail and apps

Google has announced that it is to allow users to switch off adverts in apps and permanently removed all ads scanning in Gmail.   In ablog, Amit Singh, president of Google Enterprise, he said that it takes the responsibility to keep data safe “very seriously” and as well as implementing HTTPS connections for Gmail, it has also added mail routing, ... Read More »