Top 10 Stories

Security experts say cyber criminals are increasingly targeting the $3 trillion U.S. healthcare industry, which has many companies still reliant on aging computer systems that do not use the latest security features.   Research has found data for sale includes names, birth dates, policy numbers, diagnosis codes and billing information. Fraudsters use this data to create fake IDs to buy medical equipment or drugs that can be resold, or they combine a patient number with a false...

Food retailer Jimmy John’s is investigating a potential data breach at 216 of its sandwich shops. The breach may involve credit and debit cards used at its franchises between June and September. Jimmy John’s said it learned of the breach on the 30th July, and it appeared that card information was compromised after a hacker gained access to the restaurant’s point of sales system. The investigation has found that credit and debit card numbers, and...

The Cologne public prosecutor has launched an investigation into GCHQ after allegations of an attack on the company Stellar.   According to Spiegel, Stellar supplied remote regions in the world with internet access via satellite and the issue regards spying on data.   Daniel Vollmert of the Chamber of Commerce at the Cologne public prosecutor confirmed that it has begun an investigation only in the case of Stellar. Nothing was found around Deutsche Telekom and...

The TouchID authentication system can be hacked in the same method as the iPhone 5 a year ago.   According to research by Lookout's Marc Rogers, he had little expectation that the TouchID sensor would be completely secure, but he hoped at least that there would have been some improvements.   However he claimed that there has been little in the way of measurable improvement in the sensor between these two devices, as fake fingerprints...

Alibaba has joined the FIDO Alliance as a board member.   According to the alliance, Alibaba’s payments business, Alipay is among the first to deploy FIDO technology for secure payments authentication with FIDO Alliance founding member Nok Nok Labs.   FIDO Alliance members commit to share technology and collaborate to deliver open specifications for universal strong authentication that enables FIDO-compliant authentication methods to be interoperable, more secure and private, and easier-to-use.    

Blackphone and Silent Circle have jointly announced the launch of their respective bug bounty program.   Both programs will pay $128 minimum. The Silent Circle program will pay encompass its client apps, network services, cloud infrastructure, websites and web services. The Blackphone program encompasses PrivatOS, update server, and associated web portals. Both companies said that their mission is to enable secure and private communications for individuals and enterprises.   "Ensuring the privacy of its users...

SafeNet has teamed up with new major partners, including ACI Worldwide, Blue Coat Systems, F5 Networks, and Google. Extending its data security ecosystem to more than 200 technology partners, the company said that the addition of these new partners pushes the number of SafeNet product and service integrations to more than 500 companies worldwide, creating one of the largest data security ecosystems in the industry. By integrating its data encryption, key management and authentication solutions...

The majority of energy IT professionals are confident they could detect a data breach on critical systems within a week,   According to a survey by Tripwire conducted among 104 attendees at the EnergySec 10th Anniversary Security Summit in Austin, Texas in August, 19 per cent claimed they could detect a threat in less than a week, 24 per cent believed it would take them less than 72 hours, and 23 per cent were sure they could spot a...

DDoS attackers have switched their attention from banks to gaming hosts, ISPs and even enterprises.   According to figures from NSFOCUS and reported by Techworld, by the second half of last year, online gaming and ISPs are suddenly popular, rising in the first half of 2014 to 10 per cent and nearly 15 per cent of attacks respectively.   The wave of bank DDoS attacks in early 2013 were part of a wider assault on...

Further coding flaws in the eBay website have been reported as allowing users to be exploited to trick customers into handing over personal data.   According to BBC News, leading security researchers have called on eBay to take immediate action over dangerous listings, as the problem continues to put users at risk. It said it has identified more than 100 listings that had been exploited to trick customers into handing over personal data.   The...