Collaborate Disseminate
Google has decided to expand the scope of one of its bug bounty programs as well as launch another security rewards initiative. On 29 August, Android Security & Privacy team members Adam Bacchus, Sebastian Porst, and Patrick Mutchler announced that… Continue reading Google Expands Scope of One Bug Bounty Program, Launches Another
Lumber Liquidators revealed that a malware infection on its systems compromised neither its employees’ nor its consumers’ sensitive data. On 27 August, the American hardwood flooring retailer said all but a very small number of stores had r… Continue reading Lumber Liquidators Says Malware Attack Didn’t Affect Sensitive Data
A joint investigatory effort neutralized more than 850,000 unique infections of Retadup, a worm known for targeting Windows machines in Latin America. In March 2019, Avast came across an interesting cryptomining payload that arrived with a advanced ste… Continue reading Joint Effort Neutralized Over 850K Infections of Retadup Worm
Security researchers have released a decryption tool which victims of Syrk ransomware can use to recover their files for free. Emsisoft found that Syrk arrived with its own decryptor, but the security firm decided to release its own utility for three r… Continue reading Free Decryption Tool Released for Syrk Ransomware
Web hosting provider and Internet domain registrar Hostinger reset all Hostinger Client passwords following a security incident. On 23 August, Hostinger learned from an informational alert that an unauthorized party had gained access to one of its serv… Continue reading Hostinger Resets Client Passwords Following Security Incident
On 29 July 2019, Capital One disclosed a digital security incident in which an outside individual gained unauthorized access to its systems. That party then leveraged their access to obtain the personal and financial information of Capital One car… Continue reading Canada’s Recommendations for Upholding Digital Security in the Financial Sector
Massachusetts General Hospital (MGH) announced that it learned of a privacy incident involving its Department of Neurology. MGH said that it learned on 24 June 2019 of an instance where someone gained unauthorized access to databases related to two com… Continue reading Massachusetts General Hospital Warns of Privacy Incident
A supermarket chain based in the Midwestern United States notified customers of a data incident that potentially involved their payment cards. On 14 August, Hy-Vee revealed it was investigating a security incident that affected its payment systems resp… Continue reading Supermarket Chain Notifies Customers of Payment Card Data Incident
Police recovered over $300,000 stolen by phishers from Spotslyvania County Public Schools in Spotslyvania County, Virginia. On 15 August, Virginia State Police announced that it had reclaimed over half the amount of money stolen in a phishing attack ag… Continue reading Police Recovered $300K Stolen in Spotslyvania Schools Phishing Attack
Fraudsters launched an attack campaign that distributed phishing emails designed to target the hotel industry in North America. In summer 2019, researchers at 360 Security Center discovered that bad actors had sent attack emails to financial personnel … Continue reading Fraudsters Used Phishing Emails to Target Hotels in North America