Innovation on the Dark Web: How Bad Actors Are Keeping Pace
How criminals have adapted to develop the next generation of dark markets and operations. Continue reading Innovation on the Dark Web: How Bad Actors Are Keeping Pace
Category Archives: Credential stuffing
Forced Password Reset? Check Your Assumptions
Almost weekly now I hear from an indignant reader who suspects a data breach at a Web site they frequent that has just asked the reader to reset their password. Further investigation almost invariably reveals that the password reset demand was not the … Continue reading Forced Password Reset? Check Your Assumptions
State Farm Falls Victim to Credential-Stuffing Attack
The insurance giant serves at least 83 million U.S. households. Continue reading State Farm Falls Victim to Credential-Stuffing Attack
State Farm Says Security Incident Might Have Exposed Customers’ Data
Insurance company State Farm revealed that a digital security incident might have exposed their customers’ personal information. In August 2019, ZDNet obtained a copy of a letter in which State Farm disclosed a data breach. The insurance company … Continue reading State Farm Says Security Incident Might Have Exposed Customers’ Data
How to Prevent Insider Data Breaches at your Business
Guest article by Dan Baker of SecureTeam
Majority of security systems are installed to try and forestall any external threats to a business’ network, but what about the security threats that are inside your organisation and your network… Continue reading How to Prevent Insider Data Breaches at your Business
Tackling the Issue of Online Gaming Credential Stuffing
When it comes to cyberattacks, what causes them and the risks they pose, our attention focuses primarily on the most vital industry verticals: financial, health care, commerce and government. So when I sat in on a session about Akamai’s recently relea… Continue reading Tackling the Issue of Online Gaming Credential Stuffing
Troy Hunt Looks to Sell Have I Been Pwned
“Project Svalbard” has commenced, as Hunt looks for the right company to take over the password-focused service. Continue reading Troy Hunt Looks to Sell Have I Been Pwned
Credential Stuffing Attacks vs. Brute Force Attacks
The Open Web Application Security Project (OWASP), a non-profit that is dedicated to web application security, classifies credential stuffing as a subset of brute force attacks. However, in practice, the two types of cyber-attacks use very different me… Continue reading Credential Stuffing Attacks vs. Brute Force Attacks
Fraud via rogue apps exploded by 300 percent in just a few months
Digital scammers are stealing victims’ personal information in new ways, preferring rogue mobile applications and account takeover attacks after a generation of using phishing as their primary hacking technique. Fraud attacks from rogue mobile applications increased by more than 300 percent, up to 41,313 incidents in the first quarter of this year from 10,390 events in the fourth quarter of last year. The figure represents 50 percent of the attacks detected in a fraud report released Wednesday by RSA, with phishing attacks making up 29 percent, trojan horses at 12 percent and brand abuse at 9 percent. Phishing attacks increased by less than 1 percent from one quarter to the next. That jump in rogue apps coincides with an uptick in research from other security companies reporting malware that steal victims’ information by appearing as legitimate programs. VidMate, an Android app that allowed users to download videos from services like […]
The post Fraud via rogue apps exploded by 300 percent in just a few months appeared first on CyberScoop.
Continue reading Fraud via rogue apps exploded by 300 percent in just a few months
Cyber Security Roundup for April 2019
The UK government controversially gave a green light to Huawei get involved with the building of the UK’s 5G networks, although the Chinese tech giant role will be limited to non-sensitive areas of the network, such as providing ant… Continue reading Cyber Security Roundup for April 2019