News

Privacy warriors have filed fresh evidence in their ongoing battle against real-time web ad exchange systems, which campaigners claim trample over Europe's data protection laws. The new filings – submitted today to regulators in the UK, Ireland, and Poland – allege that Google and industry body the Interactive Advertising Bureau (IAB) are well aware that their advertising networks' business models flout the EU's privacy-safeguarding GDPR, and yet are doing nothing about it. The IAB, Google – which is...

The majority of vulnerabilities in 2018 were associated with network vulnerabilities, while less than 20% were associated with web applications and APIs, according to the fourth annual Vulnerability Stats Report from edgescan. When it comes to breaches, though, web application security remains the area of greatest risk. “The percentage of high and critical risks combined, compared to all discovered risks is still high at 19.2% for public internet-facing (external) applications and 24.9% for non-public or internal applications,”...

Microsoft has expanded the reach of its cyber security service for political organisations in Europe, after detecting a fresh wave of attacks from Russian hackers. The firm's vice president for customer security and trust Tom Burt said Microsoft's Threat Intelligence Centre (MSTIC) had discovered attacks on employees of the German Council of Foreign Relations, and European offices of the Aspen Institute and the German Marshall Fund. Source: CityAM 

Thousands of websites are being hit by cyber-thieves who implant code to scoop up payment card numbers, research suggests. Security giant Symantec found more than 4,800 websites were being hit by these "form-jacking" attacks every month. High-profile victims of these attacks include airline BA and Ticketmaster. Online crime groups had turned to the attacks as other more established techniques proved less and less lucrative, Symantec said. Source: BBC

Organisations and governments are progressively putting resources into enhancing their cyber security conventions as the recurrence of attacks rises. Actually, every one of them is attempting to remain on track against the most recent cyber-attacks, yet there are a few nations committing most to cyber security. Source: Analytics Insight

A third of workers used own email for work, and 24% shared files with family and friends. Employees are still the weak link in the security system, with poor habits that potentially put organisations at risk of critical data and intellectual property loss, and severe legal and reputational repercussions, new research from Microsoft has found. Source: Irish Times

LandMark White has claimed that the data inadvertently leaked by the property valuation firm and subsequently posted on a ‘darkweb’ forum is “relatively benign”. Earlier this month the ASX-listed company revealed details of a data breach. It subsequently entered a trading halt to assess the impact on its business, after major banks paused their use of its services. Source: ComputerWorld

Australia’s major political parties have been targeted by a “sophisticated state actor”, according to Scott Morrison, as part of a breach of the Parliament House computer network. The head of the Australian Cyber Security Centre, Alistair MacGibbon, says agencies were unsure what material had been taken in the incident because the rapid remediation efforts had removed some of the forensic evidence. Source: Guardian

Any risk posed by involving the Chinese technology giant Huawei in UK telecoms projects can be managed, cyber-security chiefs have determined. The UK's National Cyber Security Centre's decision undermines US efforts to persuade its allies to ban the firm from 5G communications networks. The Chinese government is accused of using Huawei as a proxy so it can spy on rival nations. Source: BBC

The FBI arrested yesterday a hacker part of a hacking team known as Apophis Squad. This is the second arrest of an Apophis Squad member after UK cops arrested a teenager in August 2018.The two, US and UK citizens, respectively, have been charged in an indictment unsealed by the US Department of Justice yesterday. Source: ZDnet