Cyber Security Roundup for January 2019

The first month of 2019 was a relatively slow month for cyber security in comparison with the steady stream of cyber attacks and breaches throughout 2018.  On Saturday 26th January, car services and repair outfit Kwik Fit told customers its IT sys… Continue reading Cyber Security Roundup for January 2019

Judge Denies Approval of $50M Settlement to Yahoo Data Breach Lawsuit

A federal judge has denied the approval of a proposed $50 million settlement to a class action lawsuit over a data breach at Yahoo. On 28 January, Judge Lucy Koh rejected the settlement in a order submitted to the San Jose division of the U.S. District… Continue reading Judge Denies Approval of $50M Settlement to Yahoo Data Breach Lawsuit

Hackers target ‘hundreds’ of Middle East activists with fake login pages, 2FA bypass schemes

Hackers have been going after email accounts of hundreds of Middle East-based human rights activists, journalists and others using methods that bypass security features of services like Google, Yahoo, ProtonMail and Tutanota, according to a report published Wednesday by Amnesty International. The human rights watchdog says its likely that a single group of hackers has been using clever pages that mimic secure login pages, as well as tricks that bypass two-factor authentication (2FA) to target accounts at least throughout 2017 and 2018. The targets are mostly in the United Arab Emirates, Egypt, Yemen and Palestine, the group said. “What makes these campaigns especially troubling is the lengths to which they go to subvert the digital security strategies of their targets,” the group says in the report. Amnesty International analyzes the activity as two separate campaigns. One uses fake pages that look like they belong to ProtonMail and Tutanota in order to get […]

The post Hackers target ‘hundreds’ of Middle East activists with fake login pages, 2FA bypass schemes appeared first on CyberScoop.

Continue reading Hackers target ‘hundreds’ of Middle East activists with fake login pages, 2FA bypass schemes

Sneaky phishing campaign beats two-factor authentication

Protecting an account with multi-factor authentication (MFA) is a no-brainer, but that doesn’t mean every method for doing this is equally secure. Continue reading Sneaky phishing campaign beats two-factor authentication

Hackers bypassed Gmail & Yahoo’s 2FA to target US officials

By Waqas
The attack was carried out by Iran-backed charming kitten hackers and victims include dozens of US government officials. Private emails of US sanctions officials and nuclear scientists have been breached by Iranian state-sponsored hackers. As … Continue reading Hackers bypassed Gmail & Yahoo’s 2FA to target US officials