Call us on 03450 21 21 51

SRM Solutions
The SRM Blog

Information Security Breach Report – 07 May 2015

Written by SRM

7th May 2015

Share this article

A round up of the most recent reports of information security breaches, infosec and privacy stories from around the world.

 

Breaches, Incidents and Alerts:

FireKeepers Casino investigates possible data breach – http://woodtv.com/2015/05/06/firekeepers-casino-investigates-possible-data-breach/

West coast gang robs banks with texts, phone calls – http://www.csoonline.com/article/2912473/cyber-attacks-espionage/west-coast-gang-robs-banks-with-texts-phone-calls.html#tk.rss_all

Tesla attack started with a single phone call – http://www.csoonline.com/article/2915963/disaster-recovery/tesla-attack-started-with-a-single-phone-call.html#tk.rss_all

Mobile ransomware targets Canadian porn viewers – http://www.csoonline.com/article/2918476/mobile-security/mobile-ransomware-targets-canadian-porn-viewers.html#tk.rss_all

More than 22 Thousand Finns Clicked WhatsApp Spam Today – https://www.f-secure.com/weblog/archives/00002809.html

Unknown hackers have stolen €4.6m from Ryanair bank accounts – http://securityaffairs.co/wordpress/36440/cyber-crime/ryanair-bank-accounts-hacked.html

Flawed password reset procedure exposes Betfair accounts – http://securityaffairs.co/wordpress/36449/hacking/password-reset-procedure-betfair.html

Why hackers target background investigation databases – http://securityaffairs.co/wordpress/36455/cyber-crime/hack-background-investigation-databases.html

SendGrid admits hack, says all customers must reset their passwords – http://venturebeat.com/2015/04/28/sendgrid-admits-hack-says-all-customers-must-reset-their-passwords/

Linux and BSD Web Servers Infected with ‘Mumblehard’ Malware – http://spamnews.com/The-News/Latest/Linux-and-BSD-Web-Servers-Infected-with-%E2%80%98Mumblehard%E2%80%99-Malware-2015050617778/

 

Miscellaneous Infosec stories:

Hacking Still Leading Cause of 2015 Health Data Breaches – http://healthitsecurity.com/news/hacking-still-leading-cause-of-2015-health-data-breaches

Report: IT managers not best leaders in breach crisis – http://www.csoonline.com/article/2912434/data-breach/report-it-managers-not-best-leaders-in-breach-crisis.html#tk.rss_all

Reporting cybercrime feels like ‘Groundhog Day’ – http://www.csoonline.com/article/2913836/data-breach/reporting-cybercrime-feels-like-groundhog-day.html#tk.rss_all

Zombie apps haunt BYOD workplaces – http://www.csoonline.com/article/2915533/mobile-security/zombie-apps-haunt-byod-workplaces.html#tk.rss_all

Cybercriminals borrow from APT playbook in attack against PoS vendors – http://www.csoonline.com/article/2918616/data-protection/cybercriminals-borrow-from-apt-playbook-in-attack-against-pos-vendors.html#tk.rss_all

PayIvy Sells Your Online Accounts Via PayPal – http://krebsonsecurity.com/2015/05/payivy-sells-your-online-accounts-via-paypal/

 

Tools, Tips and How it’s done:

Study: Firms not ready to respond to complex threats – http://www.csoonline.com/article/2913833/cyber-attacks-espionage/study-majority-of-firms-not-ready-to-respond-to-complex-threats.html#tk.rss_all

Having ‘the ear of the CEO’ is key to battling cyberthreats – http://www.csoonline.com/article/2913953/malware-cybercrime/having-the-ear-of-the-ceo-is-key-to-battling-cyberthreats.html#tk.rss_all

Key management is the biggest pain of encryption – http://www.csoonline.com/article/2914084/data-protection/key-management-biggest-pain-of-encryption.html#tk.rss_all

6 hard truths security pros must learn to live with – http://www.csoonline.com/article/2914738/data-protection/6-hard-truths-it-security-pros-must-learn-to-live-with.html#tk.rss_all

The hardware roots of trust – http://www.csoonline.com/article/2912486/vulnerabilities/the-hardware-roots-of-trust.html#tk.rss_all

Identity as an attack surface – http://www.csoonline.com/article/2911537/identity-access/identity-as-an-attack-surface.html#tk.rss_all

Malware remodeled: New tricks, new suits slamming enterprise resources [free registration required]- http://www.csoonline.com/article/2915397/malware-cybercrime/malware-remodeled-new-tricks-new-suits-slamming-enterprise-resources.html?nsdr=true

Professional hackers talk social engineering threats and security awareness – http://www.csoonline.com/article/2915925/data-protection/professional-hackers-talk-social-engineering-threats-and-security-awareness.html#tk.rss_all

CeWL v5.1 – Password Cracking Custom Word List Generator – http://www.darknet.org.uk/2015/04/cewl-v5-1-password-cracking-custom-word-list-generator/

Tinba – Yet another anti-sandbox tricks – https://www.f-secure.com/weblog/archives/00002810.html

An Insider’s Look at the History of Cybersecurity – http://now.avg.com/an-insiders-look-at-the-history-of-cybersecurity/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+avg-blogs+%28AVG+Blogs%29

 

Miscellaneous Privacy stories:

How the top social networks compare on privacy — in one handy chart – http://www.csoonline.com/article/2915643/privacy/how-the-top-social-networks-compare-on-privacy-in-one-handy-chart.html#tk.rss_all

The Truth About Smartphone Apps That Secretly Connect to User Tracking and Ad Sites – http://www.technologyreview.com/view/537186/the-truth-about-smartphone-apps-that-secretly-connect-to-user-tracking-and-ad-sites/

 

Safeguarding Children and School E-Safety stories:

The dirty secrets of webcam-hacking peeping toms and sextortionists – http://www.welivesecurity.com/2015/04/21/webcam-hacking/

Canadian woman accused of remotely taking over victims’ PCs and spying on them using webcams – http://securityaffairs.co/wordpress/36422/cyber-crime/woman-spying-through-webcams.html

Online Safety – Protecting our children from Radicalisation and

Extremism – http://www.saferinternet.org.uk/Content/Childnet/SafterInternetCentre/downloads/Online_Safety_-_LSCB_bulletin_-_Radicalisation.pdf

60% of Parents Fear their Child is Visiting Pornography Sites Online – http://www.informationsecuritybuzz.com/60-of-parents-fear-their-child-is-visiting-pornography-sites-online/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+InformationSecurityBuzz+%28Information+Security+Buzz%29

 

If you would like this report sent to your inbox each morning, email me at jon.fisher@srm-solutions.com

You can see all previous issues of this blog at http://blog.srm-solutions.com/

or www.jonfisherthoughts.co.uk

My Linkedin Profile is uk.linkedin.com/in/jonfisher99/