Cyber Security News

Verschwiegenes Datenleck: Rekordstrafe für Uber

Cyber Security News - Thu, 09/27/2018 - 01:34
Dem US-Fahrdienstvermittler Uber kommt ein verschwiegenes Datenleck teuer zu stehen. Im Rahmen eines Vergleichs mit US-Behörden hat das Unternehmen eine Strafe in Höhe von 148 Millionen Dollar (125,67 Mio. Euro) akzeptiert, wie New Yorks Generalstaatsanwältin Barbara Underwood gestern....
Categories: Cyber Security News

Smartvue S19 cloud surveillance platform

Cyber Security News - Thu, 09/27/2018 - 01:29
MILWAUKEE – (September 25, 2018) – Johnson Controls announces S19, the next generation of its Smartvue intelligent cloud video surveillance platform. Tyco’s Smartvue S19 delivers secure and cost-effective cloud surveillance solutions to retail establishments, convenience stores, franchises,....
Categories: Cyber Security News

exacqVision cloud surveillance services

Cyber Security News - Thu, 09/27/2018 - 01:29
MILWAUKEE Request more information – (September 25, 2018) -- Johnson Controls announces cloud-based storage services, centralized monitoring analytics and end-to-end, cloud-driven system management services integrated to Tyco’s exacqVision video management software and the full line of exacqVision network video recorders (NVRs).
Categories: Cyber Security News

VPNFilter Update – New Attack Modules Documented

Cyber Security News - Thu, 09/27/2018 - 01:26
#1230737: VPNFilter Update – New Attack Modules Documented. Cisco Talos, in coordination with the Cyber Threat Alliance (CTA), has just posted another update on the VPNFilter malware, a multistage attack that was first discovered by Talos researchers on May 23rd, when it was documented attacking....
Categories: Cyber Security News

Voya pays $1 million to settle SEC charges over 2016 cybersecurity breach

Cyber Security News - Thu, 09/27/2018 - 01:26
#1230736: Voya pays $1 million to settle SEC charges over 2016 cybersecurity breach. Ryan W. Neal reports: Voya Financial Advisors will pay $1 million to settle Securities and Exchange Commission charges regarding a data security breach that compromised the personal information of thousands of customers.
Categories: Cyber Security News

Fahrdienst Uber zu Rekordstrafe verdonnert

Cyber Security News - Thu, 09/27/2018 - 01:26
SAN FRANCISCO. Dem US-Fahrdienstvermittler Uber kommt ein verschwiegenes Datenleck mehr als nur teuer zu stehen. Im Rahmen eines Vergleichs mit US-Behörden hat das Unternehmen eine Strafe in Höhe von 148 Millionen Dollar (125,67 Mio. Euro) akzeptiert. Es handle sich um das bisher höchste Bußgeld, das in einem solchen Fall verhängt wurde.
Categories: Cyber Security News

Royalty stacking builds a big wall for small business IoT innovators

Cyber Security News - Thu, 09/27/2018 - 01:20
Last week it was Apple, next month it’s Google and last month it was Samsung. Each unveiling their latest smartphones to an expectant public. The latest features will be scrutinised. And, naturally, the prices to the consumer will be debated, writes Brian Scarpelli.
Categories: Cyber Security News

Bitglass Security Spotlight: Malware Evolving & Reddit Breached

Cyber Security News - Thu, 09/27/2018 - 01:19
Here are the top cybersecurity stories of recent weeks: Future malware to recognize victims’ faces; Reddit suffers breach; 6 million records of Georgian voters exposed; RASPITE Group attacks US infrastructure. Cybersecurity Insiders is your comprehensive source for everything related to cybersecurity - connecting people, opportunities, and ideas.
Categories: Cyber Security News

New Linux Kernel Bug Affects Red Hat, CentOS, and Debian Distributions

Cyber Security News - Thu, 09/27/2018 - 01:18
Security researchers have published the details and proof-of-concept (PoC) exploits of an integer overflow vulnerability in the Linux kernel that could allow an unprivileged user to gain superuser access to the targeted system. The vulnerability, discovered by cloud-based security and compliance....
Categories: Cyber Security News

Securing Critical Infrastructure in the Digital Age

Cyber Security News - Thu, 09/27/2018 - 01:15
We know adversaries have the expertise and tools necessary to take down critical infrastructure and systems that cripple entire regions. These critical systems are essential to our global economy, physical security, and health. We rely on them to provide electricity in our homes; transportation to....
Categories: Cyber Security News

Downloads of known vulnerable open source components increase 120%

Cyber Security News - Thu, 09/27/2018 - 01:11
Sonatype today released its fourth annual State of the Software Supply Chain Report, which reveals the widespread use of by businesses around the world. vulnerable software components While open source continues to be a key driver of innovation – with software developers downloading more than 300....
Categories: Cyber Security News

19-year-old youngster hacks local police systems

Cyber Security News - Thu, 09/27/2018 - 01:09
Officers say the young man wanted to belong to the police department. Jared Joslin really wanted to belong to a law enforcement agency; “I wish I could pull people over and intervene in bank robberies”, the 19-year-old said to the police. However, the young man made the wrong decisions, as he was arrested by the cops he wanted to be like.
Categories: Cyber Security News

Two years in prison for attacking US Army servers

Cyber Security News - Thu, 09/27/2018 - 01:09
The attack on the server provoked 17 days of delay in payment to US Army Reserves. A judge in the United States sentenced a man from Atlanta to two years in prison followed by three years’ probation under supervision for sabotaging one of the US Army’s payroll databases with a “logical bomb”.
Categories: Cyber Security News

Uber begins security breach investigation in 2016

Cyber Security News - Thu, 09/27/2018 - 01:09
. For experts on the subject, Uber’s silence was a “clear betrayal to consumer confidence” will pay about $148M USD to conduct a nationwide investigation into a data theft raised in 2016, an event in which a hacker managed to gain access to information belonging to 57 million of drivers and passengers.
Categories: Cyber Security News

How to disable a home security system using Universal Radio Hacker

Cyber Security News - Thu, 09/27/2018 - 01:09
. Check your domestic security system quickly and easily. Universal Radio Hacker (URH) is a software to investigate unknown wireless protocols. Includes features such as: Easy Signal demodulation; Assign tags to reveal protocol logic; Modulation support to inject data back into the system; Simulation environment to perform attacks.
Categories: Cyber Security News

Uber agrees to pay $148 million in massive 2016 data breach settlement

Security Affairs - Thu, 09/27/2018 - 01:00
Uber agrees to $148 million settlement with US States and the District of Columbia over the massive 2016 data breach that exposed personal data of 57 million of its users.

In November 2017, the Uber CEO Dara Khosrowshahi announced that hackers broke into the company database and accessed the personal data (names, email addresses and cellphone numbers) of 57 million of its users, the disconcerting revelation was that the company covered up the hack for more than a year.

The attackers accessed also the names and driver’s license numbers of roughly 600,000 of its drivers in the United States.

The hack happened in 2016, it was easy for hackers that according to a report published by Bloomberg, obtained credentials from a private GitHub site used by the company development team. The hackers tried to blackmail Uber and demanded $100,000 from the company in exchange for avoiding publish the stolen data.

Rather than to notify the data breach to customers and law enforcement as is required by California’s data security breach notification law, the chief of information security Joe Sullivan ordered to pay the ransom and to cover the story destroying any evidence. The payout was disguised as a bug bounty prize complete with non-disclosure agreements signed

In 2017 the FTC charged the company for deceiving customers with its privacy and data security practices.

The first settlement dated back August 2017, according to the FTC, the company failed to apply security measures to protect customers and drivers data, later while investigating the settlement, the Commission discovered that the company did not disclose the 2016 data breach before 2017.

“This is one of the most egregious cases we’ve ever seen in terms of notification; a yearlong delay is just inexcusable,” Illinois Attorney General Lisa Madigan told The Associated Press.

“And we’re not going to put up with companies, Uber or any other company, completely ignoring our laws that require notification of data breaches.”

According to the settlement, Uber is obliged to disclose any future breach affecting consumer data and to comply with state consumer protection laws for the protection of personal information. Uber will also hire a cyber security firm to assess the security posture of the firm and

The company also will hire an outside firm to conduct an assessment of Uber’s data security and improve it.

“Uber hired a longtime in-house counsel for intel as chief its privacy officer and selected a former general counsel to the National Security Agency and director of the National Counterterrorism Center as the company’s chief trust and security officer.” continues the AP.

The overall payout will be divided among the states based on the number of drivers in each state that have been impacted by the security breach. For example, the share for the Illinois state is $8.5 million, each affected driver will receive $100.

window._mNHandle = window._mNHandle || {}; window._mNHandle.queue = window._mNHandle.queue || []; medianet_versionId = "3121199"; try { window._mNHandle.queue.push(function () { window._mNDetails.loadTag("762221962", "300x250", "762221962"); }); } catch (error) {}

Pierluigi Paganini

(Security Affairs – Uber, Data breach)

The post Uber agrees to pay $148 million in massive 2016 data breach settlement appeared first on Security Affairs.

Categories: Cyber Security News

Financial institutions failing to detect cyber breaches for over a week

Cyber Security News - Thu, 09/27/2018 - 01:00
. The world of business has been working diligently to respond to a glut of cyber threats that have hit home in recent years. While financial firms have built good cyber security in the past year, however, over 40% of breach attempts still slip under the radar.
Categories: Cyber Security News

Australian Teenager Sentenced to 8 Months Probation for Hacking into Apple’s Servers

Cyber Security News - Thu, 09/27/2018 - 00:59
Remember the Australian High school teenager who had managed to hack into Apple’s servers multiple times over the course of a year and stole around 90GB of customer data? Well, he has now been handed his punishment. He has been sentenced to eight months of probation and no jail time.
Categories: Cyber Security News

Google’s privacy chief confirms existence of Project Dragonfly but says he does not know details

Cyber Security News - Thu, 09/27/2018 - 00:54
Google has confirmed for the first time the existence of Project Dragonfly, reportedly a censored search engine for China, but a company executive told the US Senate he did not know details of the project. “There is a Project Dragonfly,” Google’s chief privacy officer Keith Enright told a Senate....
Categories: Cyber Security News

Überblick für das Jahr 2017: Bundeskriminalamt informiert über Cybercrime

Cyber Security News - Thu, 09/27/2018 - 00:51
Wiesbaden - Kriminelle tummeln sich längst auch im Internet. Wie sich Straftaten von sogenannten Cyberkriminellen entwickeln, beschreibt das Bundeskriminalamt (BKA) Jahr für Jahr in einem eigenen Lagebild. Kriminelle tummeln sich längst auch im Internet.
Categories: Cyber Security News

Pages