Do not have time to read full article and want this article in PDF format in your email.Enter your Email Address
Curious to know what happened this week in cyber security? Here are most important stories of the past days in our weekly security round-up, so keep calm and read the news:
According to the EY survey of nearly 1,200 C-level leaders of the world’s largest and most recognized organizations, 12% of respondents are likely to detect a sophisticated cyber attack. Findings also show that 56% of those surveyed are making or planning to make changes to their strategies and allocate budget for cybersecurity to build stronger resilience to such attacks.
2018 is just around the corner and security researchers at Malwarebytes Labs have compiled a list of predictions likely to impact businesses and consumers in the new year. Among them: crypto jacking activity is expected to see far more activity in 2018, being a top priority for cybercriminals, we’ll see an increase PowerShell-based attacks and online criminals targeting and exploiting more security software.
Uber transportation company recently admitted they suffered a data breach in 2016 that affected some 57 million customers, including both riders and drivers, revealing their names, email address and phone numbers. The company did not report the incident to regulators, but instead prefered to pay “$100,000 to “hackers” to get rid of the data in order to keep the breach under wraps”.
Ransomware attacks are on the rise and will continue to grow in the following years. Some industries will be more targeted than others. Cybersecurity experts predict that ransomware damages will cost the world $5 billion in 2017 and climb to $11.5 billion in 2019.
A recent study from Princeton University has suggested that hundreds of sites record your every move online, including your searches, scrolling behavior, keystrokes and every mouse movement. Researchers analyzed the Alexa top 50,000 websites in the world and found that 482 sites, many of which are high profile, are using a new web-tracking technique to track every move of their users.
Organizations encounter an average of eight DDoS attack attempts per day, up from four attempts a day at the start of the year, said a new Corero Network Security report that tracks DDoS trends from Q2-Q3 2017.
Intel company talked in a recent security alert about two classes of vulnerabilities in remote management software and firmware that could put organizations’ most trusted data at risk. Systems using ME Firmware versions 11.0/11.5/11.6/11.7/11.10/11.20, SPS Firmware version 4.0, and TXE version 3.0 are impacted. The vulnerabilities – affecting enterprise and consumer computers – exist in a variety of chips that Intel has released over the past several years, including the 6th, 7th and 8th generation Core processors, Xeon processors, Apollo Lake and Celeron processors, said Intel.
Recent reports said that the personal information of almost 1,700 customers has potentially been exposed after builders merchant Jewson suffered a data breach. The exposed data include “names, location, billing address, password, email, phone number, payments details, card expiry dates and CVV numbers” and “may have fallen into the hands of an unauthorised person”.
Mozilla developer Subramanya has revealed the organization’s Firefox browser will soon warn users if they visit sites that have experienced data breaches that led to user credential leaks. Subramanya explained that Mozilla has teamed with haveibeenpwned.com to source data that will inform users.
Imgur, one of the world’s most visited websites, officially confirmed a hack happening back to 2014. The company said the breach didn’t include personal information because the site has “never asked” for real names, addresses, or phone numbers. The stolen accounts represent a fraction of Imgur’s 150 million monthly users.