Latest Security News

Hackers ramp up enterprise cloud attacks as workforces go remote

Enterprise cloud accounts have faced an onslaught of cyber attacks in recent months as organistions increase their use of cloud services and collaboration tools.

That’s according to the latest cloud security research from McAfee, who analysed data from its 30 million global McAfee MVISION Cloud users between January and April.

Thailand’s largest mobile network was leaking customer internet records in real-time

Thailand’s biggest mobile operator has pulled an unprotected cloud server that exposed the internet activity of its customers in real-time.

The server, which belonged to AWN, a subsidiary of AIS, a mobile phone operator with 39.87 million customers in Thailand, was live-leaking customer DNS query and NetFlow logs.

The ElasticSearch database was discovered by security researcher Justin Paine on 7 May, by which point it had been publicly accessible for almost a week.

9 million easyJet passenger travel details exposed in cyber attack

Nine million easyJet passengers have had their travel details accessed by hackers, the airline has announced.

The Luton-based carrier said the figure includes 2,208 customers who had their credit card details exposed.

It insisted there is “no evidence that any personal information of any nature has been misused” due to the cyber attack

IT pros slam effectiveness of UK Covid-19 contact tracing app

Less than a quarter of IT experts believe the UK’s coronavirus contact tracing app will be effective, according to a survey.

Just under half (45 percent) said they were undecided about it, while almost a third (32 percent) believe the tool will not be useful in helping to contain Covid-19.

Successive cyber attacks shut down European supercomputers working on Covid-19 research

European high-performance supercomputers were subject to a string of related cyber attacks last week that forced academic insitutions to temporarily take systems offline.

A large number of the academic institutions impacted were using their supercomputers to run Covid-19 research workloads.

Microsoft fixes ‘Evil Gif’ vulnerability in Teams

Cyber security researchers have claimed hackers could have compromised an organisation’s entire roster of Microsoft Teams accounts by sending a malicious gif.

According to CyberArk, which published the research Monday, a subdomain takeover vulnerability in the popular communication and collaboration tool could have been exploited by hackers to scrape a user’s data and steadily infiltrate an organisation’s Teams portfolio

Covid-19 SMS spoofing thwarted by UK banking and mobile industries

Efforts to identify and block scam text messages pretending to be from trusted organisations during the coronavirus crisis are being stepped up.

The mobile phone and finance industries have joined forces to help tackle the problem of “spoofing”.

Spoofing techniques by criminals mean they can make text messages appear to be from a legitimate organisation, by changing the sender ID at the top of the text.

Zoom plugs security holes with new release

The video conferencing app has been criticised for security and privacy issues in its software as user numbers rapidly increase during lockdown Zoom says it has reached a “key milestone” in its promise to make the video conferencing app more secure, announcing the upcoming launch of a new version of the software. The company confirmed… Read More

UK cyber security agency launches Covid-19 phishing reporting service

The UK’s cyber security agency has launched a service which allows people to report suspicious emails to them.

The National Cyber Security Centre (NCSC) has warned of criminals increasingly looking to use the coronavirus pandemic as a way to scam people.

Researchers develop new tool to expose untrustworthy sites

The type of video streaming or advertising platform used by a website could be used as a marker to expose those producing fake news, researchers claim.

While website owners host the pages, the videos and advertising end is usually served by a third party.

Zoom users can now opt out of data routing through China

The video conferencing service admitted last week that some meetings may have had data routed through China when using the service. Zoom is to let users opt in and out of specific data centre regions as part of the video conferencing app’s latest security update. The new option comes in response to concerns that data from meetings were sometimes being routed through data centres in China, which critics argued was a security risk.

UCL team designs Covid-19 tracking system that stores data away from the cloud

Scientists say they have developed a Bluetooth tracing system which is ready to be deployed into an app in the fight against coronavirus.

A team at UCL (University College London) have been working on the technology with data privacy experts to ease concerns of misuse.

Contact tracing has been widely discussed as a potential solution to help end the Covid-19 lockdown, following in the footsteps of Singapore, where a similar offering has been adopted.

The idea is to use Bluetooth technology to keep a log of those who have been in close proximity to you, and send out an alert if any anonymously declare themselves as tested positive, with advice on further steps to take.

Do NOT follow this link or you will be banned from the site!