were

now browsing by tag

 
 

We’re all a #bit of #Trump when it #comes to #cybersecurity

President Trump reportedly sees security procedures as too inconvenient. Unfortunately, he’s not alone.

Let’s face it folks: Security can be “too inconvenient” and when your boss doesn’t want to adhere to your security policy it’s going to be difficult to enforce. Just ask President Trump.

Politico reported that Trump could be the biggest cybersecurity risk to the U.S. government. Why? We all know he likes to Tweet. And he’s not too enthusiastic about staffers who want to put better security around his phone use.

Trump reportedly noted that security procedures are “too inconvenient.”

We’ll stop there with the Trump talk because there are bigger lessons to be learned here: Humans are the weakest security link and there’s a trade-off between usability and thwarting threats. In an ideal world, even bosses would listen to the security pros, but the reality is a bit different.

Do you honestly think Trump is the only CEO who rebuffs his cybersecurity team?

The average enterprise has multiple employees going rogue when it comes to security. Toss in mobile devices and social media accounts and you have the fodder for cybersecurity headaches. Trump just illustrates the point. And when the boss isn’t following procedure the whole food chain ignores security.

To anyone following enterprise security this realization isn’t a newsflash. Social engineering aimed at humans–always good for a cybersecurity incident–have led to a rise in ransomware, according to Verizon.

Meanwhile, securing mobile devices is an increasingly huge headache. Insider errors were at the heart of 17 percent of data breaches, according to Verizon.

Now you can argue that Trump should be following protocol given all the state actors that would find him a compelling target. But the reality is that all of us have a bit of Trump in us when it comes to cybersecurity. In the Trump example the stakes are simply higher.

advertisement:

The post We’re all a #bit of #Trump when it #comes to #cybersecurity appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Under Armour #admits 150 #million #MyFitnessPal #accounts were #hacked

Under Armour said on Thursday that data from some 150 million MyFitnessPal diet and fitness app accounts was compromised in February, in one of the biggest hacks in history, sending shares of the athletic apparel maker down 3 percent in after-hours trade.

The stolen data includes account user names, email addresses and scrambled passwords for the popular MyFitnessPal mobile app and website, Under Armour said in a statement. Social Security numbers, driver license numbers and payment card data were not compromised, it said.

It is the largest data breach this year and one of the top five to date, based on the number of records compromised, according to SecurityScorecard.

Larger hacks include 3 billion Yahoo accounts compromised in a 2013 incident and credentials for more than 412 million users of adult websites run by California-based FriendFinder Networks Inc in 2016, according to breach notification website LeakedSource.com.

Under Armour said it is working with data security firms and law enforcement, but did not provide details on how the hackers got into its network or pulled out the data without getting caught in the act.

While the breach did not include financial data, large troves of stolen email addresses can be valuable to cyber criminals.

Email addresses retrieved in a 2014 attack that compromised data on some 83 million JPMorgan Chase customers was later used in pump-and-dump schemes to boost stock prices, according to U.S. federal indictments in the case in 2015.

Under Armor said in an alert on its website that it will require MyFitnessPal users to change their passwords, and it urged users to do so immediately.

“We continue to monitor for suspicious activity and to coordinate with law enforcement authorities,” the company said, adding that it was bolstering systems that detect and prevent unauthorized access to user information.

Under Armour said it started notifying users of the breach on Thursday, four days after it first learned of the incident.

Under Armour bought MyFitnessPal in 2015 for $475 million. It is part of the company’s connected fitness division, whose revenue last year accounted for 1.8 percent of Under Armour’s $5 billion in total sales.

advertisement:

The post Under Armour #admits 150 #million #MyFitnessPal #accounts were #hacked appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

2,000 #computers were #shut down due to #SamSam virus #attack to #Colorado Department of #Transportation

Source: National Cyber Security News

On Wednesday morning the workday in Colorado Department of Transportation (CDOT) was disturbed. The institution went back to good old days when computers were not existing due to SamSam ransomware virus attack.

On February 22, the file-encrypting virus hit CDOT’s computers, encrypted files and demanded to pay the ransom in Bitcoins. More than 2,000 computers were shut down to stop and investigate the attack.

According to the CDOT spokeswoman, the version of SamSam ransomware hit only Windows OS computers even though they were secured by McAfee antivirus. However, CDOT and security software providers are working on virus elimination.

Fortunately, Colorado Department of Transportation has all data backed up. Therefore, they are not going to pay the ransom and crooks attempts to blackmail the institution did not succeed.

Meanwhile, employees are forbidden from accessing the Internet until the problem is solved. Ransomware did not affect any critical services, such as cameras, alerts on traffics or variable message boards.

Authors of SamSam ransomware already received money from victims in 2018
SamSam ransomware is known for a while. Numerous versions of malware hit hospitals and other institutions last year. Colorado Department of Transportation is not the first organization that was in the target eye of the ransomware creators this year too.

Read More….

advertisement:

View full post on National Cyber Security Ventures

Cybersecurity’s Solar Eclipse: How We’re Being Blinded By Marketing Buzzwords

Source: National Cyber Security – Produced By Gregory Evans

This summer’s historic solar eclipse was an amazing sight that reminded us of the beauty of our solar system, as well as the fact that you should never look directly at the sun. The eclipse also reminded us that without being able to see something, understanding it can be very…

The post Cybersecurity’s Solar Eclipse: How We’re Being Blinded By Marketing Buzzwords appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Russian hackers were planning to hit Europe with fake Android banking apps

Source: National Cyber Security – Produced By Gregory Evans

Russian hackers were planning to hit Europe with fake Android banking apps

Hackers in Russia, after infecting over a million Android devices with malware to siphon money using fake banking apps, were planning a major attack on European bank customers. The group, known as ‘Cron’ after their malware, is in custody now. The hacking group tricked Android users into downloading malware via fake mobile banking applications, as well as pornography and e-commerce …

The post Russian hackers were planning to hit Europe with fake Android banking apps appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Auditors were able to hack Arizona DES during routine cybersecurity review

Source: National Cyber Security – Produced By Gregory Evans

Auditors were able to hack Arizona DES during routine cybersecurity review

State auditors were able to access confidential information when testing cybersecurity at the Arizona Department of Economic Security, revealing vulnerabilities that could have put residents’ personal information at risk. More …

The post Auditors were able to hack Arizona DES during routine cybersecurity review appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Kym Marsh: I was victim of ‘catfishing’ scam after man believed we were dating

The star – who plays Michelle Connor in the soap – has spoken about her identity being used online. Coronation Street star Kym Marsh has revealed a man thought he was in a relationship with her for 10 years after he was duped online in a ‘catfishing’ scam. The actress said her identity was used to lure a man into believing they were dating via the internet, and she also revealed her eldest daughter has also been used as bait. Read More….

The post Kym Marsh: I was victim of ‘catfishing’ scam after man believed we were dating appeared first on Dating Scams 101.

View full post on Dating Scams 101

Your Flu Risk May Depend On When You Were Born

The year in which you were born may predict your risk of getting some types of the flu, a new study of people in Asia and the Middle East suggests.

Researchers found that the people in this study who were born before 1968 were less susceptible to a certain strain of the flu than those born in 1968 or later, because this older group had been more exposed to a similar strain as children.

In the study, the researchers looked at data from more than 1,400 people, predominantly in Asia and the Middle East, who had been infected at any point in their lives with two strains of the bird flu called Read More

The post Your Flu Risk May Depend On When You Were Born appeared first on Parent Security Online.

View full post on Parent Security Online

If You Were Blindsided By Your Breakup Here’s What To Do…

In my opinion, there are are three types of breakups, Breakup Type #1: The Bad Breakup Breakup Type #2: The Mutual Breakup Breakup Type #3: The Blindside Breakup Care to take a wild guess at what type of breakup this article is going to talk about? Yup, the blindside breakup. Read More….

The post If You Were Blindsided By Your Breakup Here’s What To Do… appeared first on Dating Scams 101.

View full post on Dating Scams 101

Consultant Confidential: We’re Not Always Happy After Professional Development Either – Finding Common Ground – Education Week

Professional development gets a bad rap from time to time. Teachers and leaders aren’t always happy after they leave, and truth be told, consultants aren’t always happy when they leave either.

View full post on Education Week: Bullying







#pso #htcs #b4inc

Read More

The post Consultant Confidential: We’re Not Always Happy After Professional Development Either – Finding Common Ground – Education Week appeared first on Parent Security Online.

View full post on Parent Security Online