Category

Risk and Compliance

Risk and Compliance page 1

cyber technology attack lives at risk

Lives are at risk on cyber and technology attacks

Technology advancement is considered the most significant breakthrough in every institution, business, and alike. Having such elevation gives an edge to every sector that promised faster and reliable services that ease people’s lives of the burden of manual work. We are in a period heavily dependent on the comfort of these technologies but always have...
Continue Reading
vendor supply chain knowledge gap third-party risk assessment

Third-party cyber risk, The vendor supply chain knowledge gap

The recent SolarWinds cyberattack exposed a third-party supply chain weakness using exploitable vulnerabilities on other widely distributed and implemented software and system offerings available in the market. Still, many enterprises have little insight into the set of suppliers currently being used in their infrastructure systems. Based on a survey conducted by BlueVoyant, out of 1,500...
Continue Reading
financial services finance industry sector covid19 cyberattacks fraud prevention

Financial Services suffer cyber-attacks related to Covid19

Cybercrime has significantly increased every year, which is directly proportional to the growth of technology. Factors attributed to this increase could be summed up due to the perpetrators’ persistent behaviour through new tactics like using Covid19 as theme and sophisticated applications. Cybercriminals are being backed up by governments and the victim’s open vulnerability. Different sectors...
Continue Reading
whatsapp terms of service third party risk assessment privacy policy update

Whatsapp sharing to Third Party: Terms of Service and privacy policy update

Whatsapp the messenger and call app that was merged with Facebook through the acquisition of Facebook wants to mandate its users to accept the updated terms of service and privacy policies until February 8, 2021. In case you don’t want to accept the new terms, a user may opt to delete their accounts. The important...
Continue Reading
7 Million Indian Credit Debit Card Data Leak Dark Web

Credit and debit card data leak of 7 million Indian in the Dark Web

The current trend in the dark web highlighted data leak of almost 7 million Indian cardholders’ sensitive information that has been discovered for public view. Based on different cybersecurity organizations’ testimony on the leaked database, they confirmed that the data is as large as 2 GB and includes PAN numbers sold off in the dark...
Continue Reading
Baidu Android mobile apps compromised data

Baidu Android mobile apps caught collecting sensitive user data

The recent scanning of an app of a cybersecurity group had confirmed that the Chinese-based Baidu Android apps were accessible right at your fingertips through Google Playstore can collect sensitive information from its users. According to the report, the application Baidu Maps and Baidu Search box collect information such as Phone Model, its specification, user’s...
Continue Reading
Prestige Software data leak misconfigured storage

Prestige Software hotel reservation system Data Leak

Approximately a whopping 25 GB of sensitive personal information was leaked on the net from a misconfigured AWS S3 bucket of Prestige Software. The company is based in Barcelona, Spain that caters to software-based solutions mostly for Cloud Hospitality. The company’s few well-known clients are Expedia, Amadeus, Booking.com, Hotels.com, Agoda, Omnibees, and other similar businesses...
Continue Reading
animal jam data breach compromised data dark web

Animal Jam Data Breach

Gaining popularity since 2010, Animal Jam has recently reported a compromised exposure about its 45 million accounts that have been auctioned on the dark web. Its creator, WildWorks, confirmed the breach and already investigating the extent of the data loss.  Animal Jam has been developed targeting kids aged from 4 – 11 years old, offering...
Continue Reading
iranian hackers US voter's data hacking FBI

State-sponsored Iranian Hackers infiltrated and stole US Voter’s Data

A recent advisory from the United States Cybersecurity Agency reveals another alarming incident related to US election activities. It was known that a group of Iranian hackers infiltrated and accessed a large number of US voters’ registration information and attempted to access similar contents from other states. According to undisclosed sources, the attacks were coordinated,...
Continue Reading
Pfizer customer prescription call transcript data leak compromised data

Pharma Giant Pfizer leaks customer prescription info, call transcripts

Cybersecurity Researchers have uncovered a misconfigured Google Cloud Storage bucket that belongs to a Pharma giant, Pfizer. The newly discovered leak holds private medical data of hundreds of patients that take various Pfizer drugs such as Lyrica, Chantix, Viagra, and other cancer treatment drugs. Moreover, the exposed data also includes conversations from Pfizer’s Interactive Voice...
Continue Reading
1 2 3 4