Data breaches, InfoSec and Scams - Cyber Security Informer

Weekly Update 109

Troy Hunt

OCTOBER 19, 2018

Given the interest after my pointing out a couple of little differences in the US compared to the rest of the world last week, after the usual tech and infosec intro this week I decided to focus a big whack of this week's video on what some of differences look like. So yeah, business as usual on the internet!

InfoSec

InfoSec Scams Data breaches Internet

Your Work Email Address is Your Work's Email Address

Troy Hunt

JULY 21, 2021

When the Ashley Madison data breach occurred in 2015, it made headline news around the world. Not just infosec headlines or tech headlines, but the headlines of major consumer media the likes my mum and dad would read.

Accountability

Accountability Data breaches Government InfoSec

Ticketmaster Data Breach and Rising Work from Home Scams

Security Boulevard

JUNE 9, 2024

In episode 333 of the Shared Security Podcast, Tom and Scott discuss a recent massive data breach at Ticketmaster involving the data of 560 million customers, the blame game between Ticketmaster and third-party provider Snowflake, and the implications for both companies.

Data breaches

Data breaches Scams Authentication Data privacy

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

I seem to be doing most of that activity now on Mastodon , which appears to have absorbed most of the infosec refugees from Twitter, and in any case is proving to be a far more useful, civil and constructive place to post such things. com, which was fed by pig butchering scams. Uber blames LAPSUS$ for the intrusion.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

Top 8 Cybersecurity Podcasts of 2021

eSecurity Planet

APRIL 23, 2021

Since 2017, host Jack Rhysider has investigated some of the most noteworthy stories related to the darkside of the internet, specifically hacking, data breaches, and cybercrime. It requires some baseline industry knowledge, but it’s a great way to stay on top of InfoSec current events. Malicious Life. 5 stars, 670 ratings.

Cybersecurity

Cybersecurity InfoSec Cybercrime Hacking

Fallout from the Change Healthcare Breach, Mortgage Wire Fraud What You Need To Know

Security Boulevard

NOVEMBER 4, 2024

In episode 353, we discuss the February 2024 ransomware attack on Change Healthcare, resulting in the largest data breach of protected health information in history. We explore the implications of this significant breach and whether paying ransoms is a viable solution.

Healthcare

Healthcare Data breaches Ransomware Data privacy

Phishing Awareness Training: Best Providers 2020

Spinone

SEPTEMBER 8, 2020

About 25% of all data breaches are caused by human error. Here’s an example of how a phishing email can spread ransomware through your network: The cost of a data breach can be very high, and preventing phishing attacks helps your business to avoid financial and reputational damages.

Phishing

Phishing InfoSec Social Engineering Backups

The weirdest security stories of 2022

Malwarebytes

DECEMBER 11, 2022

There’s been a lot of weird and frankly bizarre attacks over the course of 2022, nestled in amongst the usual ransomware outbreaks and data breaches. It’s time to forget about nation state attacks and the nagging sensation that every single piece of data ever created has ended up on a TOR site somewhere.

Scams

Scams Social Engineering Engineering Accountability

Top 5 Security Trends this Summer: RSA Conference & Black Hat 2022

Webroot

JULY 25, 2022

This is what prompted the FBI to issue a warning about the $43B impact of Business Email Compromise (BEC) scams. The growth in digital attack surfaces has added a new dimension to traditional data protection approaches in terms of compliance with emerging regulations. Cyber Resilience planning puts focus on recovery readiness.

Cyber Insurance

Cyber Insurance Insurance Marketing Ransomware

Complete Guide to Phishing Attacks: What Are the Different Types and Defenses?

eSecurity Planet

MARCH 31, 2022

Many wireless phone providers have introduced spam protections to keep their customers from falling victim to vishing scams. You can also register your number on the federal Do Not Call list, but it doesn’t seem to have any actual effect on the number of scam calls received. Vishing Defenses. But it can’t just be a one-time thing.

Phishing

Phishing Banking Social Engineering Scams

Massive AT&T Data Leak, The Danger of Thread Hijacking

Security Boulevard

APRIL 7, 2024

Episode 324 features discussions on a significant AT&T data breach affecting 73 million customers and a sophisticated thread jacking attack targeting a journalist.

Data breaches

Data breaches Accountability Social Engineering Data privacy

Cyber CEO: Data Privacy Day – How to Enhance Your Data Privacy

Herjavec Group

JANUARY 27, 2022

For the past two years, it’s been easy to brush off data privacy risks for the benefit of being able to access and/or purchase anything we needed without having to leave the comfort or safety of our homes. But in the rush to transition online, we were all made more vulnerable to cyber infiltrations and scams than ever before.

Data privacy

Data privacy Digital transformation Education Cybersecurity

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Security Boulevard

NOVEMBER 5, 2023

In this episode, we explore the recent Okta breach where hackers obtained sensitive customer data via unauthorized access to the Okta support system. Next, we discuss the emerging threat of “quishing,” a combination of voice calls and phishing that preys on unsuspecting victims.

Phishing

Phishing Hacking Data privacy Data breaches

Scattered Spider x RansomHub: A New Partnership

Digital Shadows

OCTOBER 23, 2024

In February 2024, ALPHV conducted an exit scam against its affiliates and disbanded, leaving them searching for new partners. Infosec teams may have a false sense of security when critical servers are equipped with EDR technology and redundant logging. However, be aware that callbacks are not resistant to SIM-swapping attacks.

Social Engineering

Social Engineering Engineering Accountability Backups

Cyber CEO: A Look Back at Cybersecurity in 2021

Herjavec Group

DECEMBER 15, 2021

Data breaches and cybersecurity threats were at an all-time high this past year. Cybersecurity programs that educate your entire team on general information security tactics – including recognizing and addressing phishing scams – are essential.

Cybersecurity

Cybersecurity Digital transformation Ransomware Cyber Risk

Beg Bounties

Troy Hunt

NOVEMBER 8, 2021

Their CEO later explained it very succinctly: "We did have a reporter, try to contact us multiple times last week, you don't respond to some random person about a data breach. — Michael Kan (@Michael_Kan) February 28, 2017 Problem is, random people are precisely the sorts of people that find data breaches.

Scams

Scams Data breaches InfoSec Social Engineering

Scattered Spider x RansomHub: A New Partnership

Digital Shadows

OCTOBER 23, 2024

In February 2024, ALPHV conducted an exit scam against its affiliates and disbanded, leaving them searching for new partners. Infosec teams may have a false sense of security when critical servers are equipped with EDR technology and redundant logging. However, be aware that callbacks are not resistant to SIM-swapping attacks.

Social Engineering

Social Engineering Engineering Accountability Backups

Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program

Security Boulevard

JULY 23, 2023

But wait, there’s more to this […] The post Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program appeared first on Shared Security Podcast. The post Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program appeared first on Security Boulevard.

Scams

Scams Cybersecurity Authentication Government

Cyber CEO: Cybersecurity in 2021 – What We’ve Learned So Far

Herjavec Group

JULY 29, 2021

Cybersecurity programs that educate your entire team on general information security tactics – including recognizing and addressing phishing scams – are essential. Some of the largest data breaches in the past year have been carried out by RaaS providers REvil and Darkside. Ransomeware-as-a-Service. In the U.S.,

Cybersecurity

Cybersecurity Digital transformation Cyber Attacks Ransomware

Cyber Security Informer

Weekly Update 109

Your Work Email Address is Your Work's Email Address

Webinars

Trending Sources

Ticketmaster Data Breach and Rising Work from Home Scams

Webinars

Happy 13th Birthday, KrebsOnSecurity!

Top 8 Cybersecurity Podcasts of 2021

Fallout from the Change Healthcare Breach, Mortgage Wire Fraud What You Need To Know

Phishing Awareness Training: Best Providers 2020

The weirdest security stories of 2022

Top 5 Security Trends this Summer: RSA Conference & Black Hat 2022

Complete Guide to Phishing Attacks: What Are the Different Types and Defenses?

Massive AT&T Data Leak, The Danger of Thread Hijacking

Cyber CEO: Data Privacy Day – How to Enhance Your Data Privacy

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Scattered Spider x RansomHub: A New Partnership

Cyber CEO: A Look Back at Cybersecurity in 2021

Beg Bounties

Scattered Spider x RansomHub: A New Partnership

Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program

Cyber CEO: Cybersecurity in 2021 – What We’ve Learned So Far

Stay Connected