Top 10 Stories

Even with all Apple's expertise and investment in cybersecurity, there are some security problems that are so intractable the tech titan will require a whole lot more time and money to come up with a fix. Such an issue has been uncovered by Don A. Bailey, founder of Lab Mouse Security, who described to Forbes a hack that, whilst not catastrophic, exploits iOS devices' trust in Internet of Things devices like connected toasters and TVs. And, as he describes the attack, it can...

A leaky database discovered online contains a wealth of sensitive data belonging to thousands of investors in Bezop cryptocurrency, including photocopies their driver’s licenses and passports, according to a report from Kromtech Security. Kromtech announced on Wednesday that Bezop, which offers its own cryptocurrency “tokens” in addition to... some sort of blockchain-based e-commerce app, left a MongoDB database wholly unsecured, exposing “full names, addresses, email addresses, encrypted passwords, wallet information, along with links to scanned passports, driver’s licenses,...

While data breaches put millions at risk each year, it's easy to forget about some of the most vulnerable victims - children - who often don't have the resources to protect their identities when their sensitive information is stolen. A recent Javelin Strategies study found that more than a million children were affected by identity fraud which resulted in $2.6 billion in fraud with families paying over $540 million out of pocket. View full story ORIGINAL SOURCE:...

Equifax's first quarter earnings report highlighted expenses due to its September 2017 data breach and how the spending is shifting more toward IT and security. In its first quarter earnings report, Equifax outlined that it spent $45.7 million for the three months ended March 31 on IT and data security. The company has been staffing up to bring on expertise to shore up its security. View full story ORIGINAL SOURCE: ZDNet

At least 432 businesses in the UK are likely to be affect by the Network and Information Systems (NIS)  Regulations 2018, according to an impact assessment carried out by the UK government. The act is to come into force next month in line with the EU Network and Information Services Directive. The regulations are aimed at improving infrastructure resilience for UK critical infrastructure providers. View full story ORIGINAL SOURCE: SC Magazine

A website blamed for launching more than four million cyber-attacks around the world, including attempts to crash banks in the UK, has been taken down in a major international investigation. The operation, which involved the UK's National Crime Agency, blocked Webstresser.org - which allows criminals to buy attacks on businesses. The site was used by a British suspect to attack high street banks last year, causing hundreds of thousands of pounds of damage. View full...

Nearly half the businesses in the UK have fallen victim to cyberattacks or security breaches in the last year, costing them each thousands of pounds, new data shows. The government report also found a fifth of charities had been affected, in a detailed look at how organisations of all sizes are at risk of being targeted. The 2018 Cyber Security Breaches Survey found 19 per cent of charities and 43 per cent of businesses had reported cyber security breaches or attacks...

Finnish cybersecurity firm F-Secure has revealed it found a flaw in the digital lock system that may be used in millions of hotel rooms worldwide. It managed to spoof hotel master keys that would be able to unlock any door. After “several thousand hours of work”, F-Secure researchers created a master key that could be used to gain entry to any room in hotels using VingCard digital lock technology. The firm says the master key – which...

The man accused of killing four people at a Nashville-area Waffle House thought his laptop had been hacked about a month before the shooting, said the owner of the repair shop where Travis Reinking took his computer. Reinking told technicians that his computer had been acting up and the USB port wasn't working, so the technician reformatted his hard drive -- a common troubleshooting measure -- which wiped the data from Reinking's hard drive, Dang It Repairs...

When it comes to malware and cybercriminals, sometimes "cheap" and "fast" clearly trumps "tested" and "sophisticated." That's the case with Rubella Macro Builder, a recently discovered crimeware kit that, despite being new and relatively unsophisticated, has been gaining popularity among cybercriminals - including members of the suspected Russian gang behind the Panda banking malware. Security vendor Flashpoint, which issued an advisory on the threat this week, described Rubella as enabling criminals to generate Microsoft Word...