Category

Risk and Compliance

Risk and Compliance page 1

razer customer info leak misconfigured server data leak compromised data fraud prevention

Thousands of Razer customer information leaked on a misconfigured server

On the 18th of August, an Independent Cyber Security Consultant, Volodymyr “Bob” Diachenko has discovered a leaked customer data on a gaming-gear merchant, Razer, that is believed to be a result of server misconfiguration. Diachenko stumbled upon a misconfigured Elasticsearch cluster that exposed Razer’s customer private information for everyone else to see.     There are...
Continue Reading
rogue employee fraud prevention conspiracy russia

1 Million USD to go Rouge; How Rogue employees are made

Local Authority and the Federal Bureau of Investigation (FBI) recently apprehended in Los Angeles airport a 27-year-old Russian National for a violation of conspiracy to cause damage to a protected computer. The conspirator was named Egor Igorevich Kriuchkov, who visited the United States with a tourist visa to personally meet his contact or a rogue...
Continue Reading
microsoft windows OS vulnerability exploit software vulnerabilities

Microsoft open flaws of Windows OS

The August 2020 batch of security updates, patches, and vulnerability fix was released by Microsoft several days ago. Last week’s Patch Tuesday addresses the latest discovered total of 120 software vulnerabilities of Windows OS, which contained 17 critical severity and the remaining under important severity. Basically – you can get hacked using the Windows OS...
Continue Reading
capital one fined 8 million dollars 2019 data breach compromised data third party risk assessment

Capital One fined $80 Million for 2019 Data Breach affecting 106 Million Users

The Capital One Financial Corporation was fined by the U.S. Treasury Department for $80 million for last year’s hack that exposed the personal information of the 106 million credit card information of the bank. According to the Office of the Comptroller of the Currency, they were able to identify “numerous weaknesses” on the management of the bank’s...
Continue Reading
india banned xiaomi apps mi browser qq im china

India banned additional Xiaomi Apps

Following the directives of the Indian Government, particularly the Government of India’s Ministry of Electronics and IT, they continuously banned apps that are about China. With India giving a more lethal fang to the Information Technology Act of 2000, instigating section 69A – for blocking public access of any information through any computer resource. That...
Continue Reading
cyber attack exchange server vulnerability security policy enforcement email social engineering

Cyber attack on vulnerable Exchange Server

CVE-2020-0688 | Microsoft Exchange Memory Corruption Vulnerability A remote code execution vulnerability exists in Microsoft Exchange Server when the server fails to properly create unique keys at install time. Knowledge of the validation key allows an authenticated user with a mailbox to pass arbitrary objects to be deserialized by the web application, which runs as...
Continue Reading
treck inc ripple20 vulnerability software vulnerabilities assessment iot internet of things

Treck Inc put Internet of Things in peril

You probably never heard of IoT or perhaps came across the term, and you might have never really known what it was. The  Internet of Things, aka IoT, is connecting any machine capable of connecting to the internet. Research from different experts shows that by 2021 there will be over 26 billion connected devices globally....
Continue Reading
coinsquare data theft

Inside Job – Coinsquare Data Theft Facilitated by Former Employee

Canada’s leading cryptocurrency platform hacked? Coinsquare is widely considered as Canada’s foremost platform for cryptocurrency exchange. The organization is one of the world’s leading cryptocurrency company for most known digital currencies. As a regulated exchange body of Canada’s FINTRAC (Financial Transactions and Reports Analysis Centre), Coinsquare was able to obtain a reliable and exclusive business...
Continue Reading
Fitness Depot data breach brand protection website protection vulnerability compromised data website intrusion

Fitness Depot hit by data breach after ISP fails to ‘activate the antivirus’

The coronavirus has forced the people of this planet to adjust forcibly and make way to a new normal—closing businesses and facilitating the downfall of employment rates all over the globe. People have adapted to specific quarantine protocols and indoor routines to prevent any further spread of the virus, or in a more straightforward perspective,...
Continue Reading
cybersecurity government health education tech industries

How Cybersecurity enables Government, Health, EduTech cope with COVID-19

There is no doubt that this COVID-19 pandemic changed the way we all live for these past few months. Cybersecurity has to be part of our daily lives. Be it in traveling, working, interacting with people, even the way we buy our everyday necessities. The spike in the use of video conferencing software has skyrocketed...
Continue Reading
1 2 3