Search
Close this search box.

Global Cyber News Digest

Events

Cyber Insider Podcast

Press Room

Daily News Digest

Stay current on the global cyber threat landscape and industry developments with CCOE’s daily digest and library of cybersecurity news and articles.

  • Why a more secure organisation is a collective responsibility

    • With vast volumes of data moving to the cloud, many IT professionals are frequently challenged to protect their enterprise environment, and there is a greater focus being placed on advancing cybersecurity strategies.
    • With the new work-from-home paradigm, the proliferation of data-driven applications, and the advancement of technologies such as artificial intelligence (AI) and the Internet of Things (IoT) in the enterprise, cyber-criminals are also using more advanced tools and sophisticated methods to attack organisations and breach privacy. User account takeover in Office 365 is the most effective way for an attacker to move laterally inside an organisation’s network.
    • To better protect an organisation from inside and external threats, here are some best practice tips:
      • Apply a mix of subject matter experts and technology
      • Understand the threat landscape
      • Prioritize and respond at scale
    • Unless security investments are made into response capabilities, the attacker-responder gap will continue to grow. How quickly an entity responds to a breach and identifies the attacks quickly and effectively will determine who succeeds in this fast-changing time.
    | April 11, 2021
    hak-iq.us20.list-manage.comApril 11, 2021

  • Clubhouse calls report on data breach 'misleading and false'

    • Clubhouse has denied any breach or hack after a CyberNews report says that a database containing 1.3 million scraped records of the platform's users were posted on a popular hacker forum.
    • According to a report in CyberNews on Saturday, the "leaked" database contains a variety of user-related information from Clubhouse profiles, including user ID, name, photo URL, username, Twitter and Instagram handles, number of followers, number of people followed by the user, account creation date, and invited by user profile name.
    • "Clubhouse has not been breached or hacked. The data referred to is all public profile information from our app, which anyone can access via the app or our API," Clubhouse said in a statement on Twitter.
    | April 11, 2021
    hak-iq.us20.list-manage.comApril 11, 2021

  • Fraudsters Use HTML Legos to Evade Detection in Phishing Attack

    • Researchers with Trustwave SpiderLabs are warning of a phishing campaign that employs what it calls "HTML Lego" to deliver a fake login page.
    • The phishing campaign is aimed at Microsoft 365 users and designed to mimic a Microsoft login interface. Trustwave says the emails contain nothing in the email body but have an attachment that appears to be an Excel file offering information about an investment. This attachment is actually an HTML document with two sections of URL encoded text.
    • “This phishing campaign design was a little more tricky than usual,” researchers say in a summary of the findings. “By improvising an HTML email attachment that incorporates remote JavaScript code located on a free JavaScript hosting site, and ensuring the code is encoded uniquely, the attackers seek to fly under the radar to avoid detection.”
    • A detailed analysis of the campaign can be found here.
    | April 8, 2021
    hak-iq.us20.list-manage.comApril 8, 2021

  • ASH data breach more extensive than initially reported

    • On March 18, the Department of State Hospitals (DSH) announced that an employee with access to Atascadero State Hospital data servers improperly obtained more than 1,400 patient and former patient names, more than 600 employee names, as well as COVID-19 test results and health information related to COVID-19 tracking.
    • "The newly identified data was discovered during the investigation of the same employee," according to a department statement. "DSH is continuing its investigation of the data breach and has placed the principal subject of the investigation on administrative leave pending completion of the investigation."
    • The breach was first detected on Feb. 25, and the investigation so far indicates that the individual started improperly accessing the data 10 months prior.
    • To prevent a similar breach in the future, the department plans to log, monitor, and review administrator access and activity more regularly.
    New Times SLO - Maria Martin | April 8, 2021
    hak-iq.us20.list-manage.comApril 8, 2021

  • California man indicted for stealing Shopify customer data

    • A California man has been indicted for stealing Shopify customer data with the help of two company employees.
    • The employees sent screenshots or Google Drive links with customers’ names, addresses, purchase histories, and other personal information.
    • Shopify acknowledged last year that two “rogue members” of its support team had breached customers’ security. It said the incident affected fewer than 200 merchants and emphasized that the breach stemmed from employees abusing their access rather than a technical vulnerability.
    - Adi Robertson | April 7, 2021
    hak-iq.us20.list-manage.comApril 7, 2021

  • Mark Zuckerberg's Details Leaked in Facebook Data Breach

    • Facebook CEO Mark Zuckerberg's own personal information was among the details of 533 million Facebook users that leaked in a data breach, it has emerged.
    • Facebook has now confirmed that the leaked data was obtained not by a hack, but by scraping the platform prior to September 2019. The company now says that an exploit was found in its contact importer, but the "specific issue that allowed them to scrape this data in 2019 no longer exists."
    • Facebook has not clarified exactly what personal information leaked about the 533 million users, and has only said that "the information did not include financial information, health information or passwords."
    • Pundits investigating the data breach discovered that Zuckerberg is in fact a user of the encrypted messaging app Signal. Since WhatsApp, which is owned by Facebook, announced a number of changes to its privacy policy that would allow for more data sharing with its parent company, Signal has seen a surge in popularity, so it is interesting to see that the Facebook CEO himself is a user of the privacy-focused rival app.
    - Hartley Charlton | April 7, 2021
    hak-iq.us20.list-manage.comApril 7, 2021

  • Utah is the 2nd State to Create a Safe Harbor for Companies Facing Data Breach Litigation

    • In mid-March, Utah Governor Spencer Cox signed into law the Cybersecurity Affirmative Defense Act (HB80) (“the Act”), an amendment to Utah’s data breach notification law, creating several affirmative defenses for persons (defined below) facing a cause of action arising out of a breach of system security, and establishing the requirements for asserting such a defense.
    • In short, the Act seeks to incentivize individuals, associations, corporations, and other entities (“persons”) to maintain reasonable safeguards to protect personal information by providing an affirmative defense in litigation flowing from a data breach.
    • A person that creates, maintains, and reasonably complies with a written cybersecurity program that is in place at the time of the breach will be able to take advantage of an affirmative defense to certain claims under the Act:
      • A claim alleging that the person failed to implement reasonable information security controls that resulted in the breach of system security.
      • A claim that the person failed to appropriately respond to a breach of system security.
      • A claim that the person failed to appropriately notify an individual whose personal information was compromised in a breach of security.
    • A person may not claim an affirmative defense, however, if:
      • The person had actual notice of a threat or hazard to the security, confidentiality, or integrity of personal information;
      • The person did not act in a reasonable amount of time to take known remedial efforts to protect the personal information against the threat or hazard; and
      • The threat or hazard resulted in the breach of system security.
    - Joseph J. Lazzarotti and Jason C. Gavejian | April 7, 2021
    hak-iq.us20.list-manage.comApril 7, 2021

  • Class action lawsuit filed against Roper St. Francis Healthcare over data breach

    • A lawsuit has been filed against Roper St. Francis alleging a breach of private patient data, including financial and medical information, was compromised.
    • “At all relevant times, Roper knew the data it stored was vulnerable to cyberattack based upon these repeated and ongoing data breaches,” the lawsuit claims.  “Specifically, Roper St. Francis had three previous hacking incidents before the one complained of herein: (a) The first reported on January 29, 2019 that effected 35,253 people; (b) The second reported on September 3, 2020 that affected 6,000 people; and (c) The third reported on September 8, 2020 that effected 92,963 people.”
    • The lawsuit seeks:
      1. Plaintiff and Class members be awarded economic and non-economic damages
      2. Plaintiff and the Class members compensatory, consequential and actual damages in an amount to be proven at trial;
      3. Plaintiff and the Class members statutory and injunctive relief;
      4. Plaintiff and the Class members seek punitive damages in an amount to be proven at trial;
      5. Plaintiff and the Class members prejudgment interest, costs, and reasonable attorneys’ fees.
    Count on NEWS 2 - Tim Renaud | April 5, 2021
    hak-iq.us20.list-manage.comApril 5, 2021

  • Stanford, UC warn of major data breach

    • Stanford University and the University of California are warning users of their computer systems to take extra caution following a nationwide cyberattack that affects its computer systems.
    • The two universities acknowledged their systems were part of the widespread security breach involving the Accellion file sharing system, in which an unknown number of university users' files were compromised, subjecting them to possible demands for money to prevent the files' contents from being revealed or destroyed.
    • UC said the cyber attackers have "published online screenshots of personal information" in an attempt to "scare people into giving them money."
    • Some computer users were sent a message that says: "Your personal data has been stolen and will be published."
    SECURITY INFOWATCH.com - Steve Rubenstein | April 5, 2021
    hak-iq.us20.list-manage.comApril 5, 2021

  • 3 security practices educators should consider adopting

    • Before the COVID-19 pandemic, much of the conversation around security in postsecondary institutions was focused on physical safety.
    • With the transition to remote learning, all of that has shifted. The campus is also no longer the central hub and devices are spread across the homes of students, teachers and administrators – meaning universities have less control over these personal networks, and less in-person oversight into websites and applications being accessed.
    • Three security practices educators should consider adopting (or revisiting) in the semester ahead:
      1. Contain your app sprawl
      2. Know what security threats exist
      3. Go back to security basics
    - Fred King | April 5, 2021
    hak-iq.us20.list-manage.comApril 5, 2021

451 A Street, Suite 500
San Diego, CA 92101

[email protected]

CONNECT WITH US

Linkedin Twitter

Cyber Center of Excellence is a San Diego-based nonprofit dedicated to growing the regional cyber economy and creating a more secure digital community for all.

JOIN US
Linkedin Twitter
Cyber Center of Excellence | Privacy Policy  |  Terms & Conditions
Linkedin Twitter
Privacy Policy  |  Terms & Conditions
© 2024 Cyber Center of Excellence