Nearly half (48%) of global consumers expect to be hit by a data breach at some point in the future, while 30% have already fallen victim to one – an increase of 7% compared to 2019, according to new research from OpSec Security. Source: http://www.globenewswire.com/news-release/2020/10/28/2115616/0/en/Nearly-half-of-global-consumers-expect-to-be-affected-by-a-data-breach.html
According to the monthly “Threat Spotlight: New InterPlanetary Storm variant targeting IoT devices,” a report by Barracuda, the malware now infects 13,500 Mac, Android, Windows, and Linux machines in 84 countries. Source: https://www.cdotrends.com/story/15143/iot-devices-are-facing-global-infection-storm
A survey has found that while Australian households are generally well aware of the nature of cybersecurity threats, they are less well prepared to protect themselves from evolving threats targeting smartphones, tablets and the growing number of devices that make up the digital environment within the home. The survey also found that a significant number of users take their internet security for granted, having never installed a home antivirus or internet security product on any of their devices. Source: https://us.acrofan.com/detail.php?number=362578
Fiserv’s 2020 Fraud and Security Survey revealed that 79% of consumers feel cybersecurity as equally or more concerning than it was for them a year ago. Source: https://ibsintelligence.com/ibsi-news/fiservs-report-reveals-cybersecurity-concerns-remain-a-constant-for-consumers/
Cybersecurity researchers over the weekend disclosed new security risks associated with link previews in popular messaging apps that cause the services to leak IP addresses, expose links sent via end-to-end encrypted chats, and even unnecessarily download gigabytes of data stealthily in the background.
“Links shared in chats may contain private information intended only for the recipients,” researchers Talal Haj Bakry and Tommy Mysk said. Source: https://thehackernews.com/2020/10/mobile-messaging-apps.html
A hacker has stolen roughly $24 million worth of cryptocurrency assets from decentralized finance (DeFi) service Harvest Finance, a web portal that lets users invest cryptocurrencies and then farm the price variations for small profit yields. Source: https://www.zdnet.com/article/hacker-steals-24-million-from-cryptocurrency-service-harvest-finance/
A massive data breach suffered by the Nitro PDF service impacts many well-known organizations, including Google, Apple, Microsoft, Chase, and Citibank.
Claimed to be used by over 10 thousand business customers and 1.8 million licensed users, Nitro is an application used to create, edit, and sign PDFs and digital documents. Source: https://www.bleepingcomputer.com/news/security/massive-nitro-data-breach-impacts-microsoft-google-apple-more/
China’s top cybersecurity agency on Monday announced plans for a “rectification” of Chinese mobile internet browsers, which the group argues “have become a gathering place” of “chaos.” Source: https://thehill.com/policy/cybersecurity/522927-china-clamping-down-on-mobile-web-browsers-over-dissemination-of-chaos ; https://twitter.com/thehill/status/1321110693614157824
Amazon notified customers and law enforcement of the insider-threat incident this week. Amazon has fired an employee who shared customers’ names and email addresses with a third party. Source: https://threatpost.com/amazon-fires-employee-customer-data/160610/
Up to 78 percent of Microsoft 365 administrators do not have multi-factor authentication (MFA) security measures enabled. Source: https://threatpost.com/microsoft-365-admins-mfa/160592/
The Visual Objects survey polled 500 full-time U.S. employees. It did so to gain insights into how companies are managing cybersecurity risks during remote work and the pandemic. Source: https://www.channelfutures.com/mssp-insider/visual-objects-survey-many-employees-still-lax-on-cybersecurity
The US Federal Bureau of Investigation (FBI), Departments of Homeland Security, and Health and Human Services (HHS) issued a joint alert Wednesday warning of an “imminent” increase in ransomware and other cyberattacks against hospitals and healthcare providers. Source: https://thehackernews.com/2020/10/ransomware-attack-hospital.html
Fraudulent Facebook messages allege copyright infringement and threaten to take down pages, unless users enter logins, passwords and 2FA codes. Source: https://threatpost.com/copyright-violation-facebook-2fa-bypass/160690/
Home Depot has exposed the private order confirmations of hundreds of Canadian consumers, containing names, physical addresses, email addresses, order details and partial credit-card information. Source: https://threatpost.com/home-depot-data-breach-order-confirmation/160728/