Data Breach Today

OCTOBER 2, 2021

Sarwent Malware Can Execute Remote Tasks Fraudsters are impersonating Amnesty International by building a fake site to distribute malware purporting to be an anti-virus tool to protect against the NSO Group's Pegasus tool, according to researchers at Cisco Talos.

358

358

Security Affairs

OCTOBER 2, 2021

The Flubot Android malware is now leveraging fake security updates warning to trick users into installing the malicious code. Threat actors behind the Flubot Android malware are now leveraging fake security updates to trick victims into installing the malicious code. The attackers use fake security warnings of Flubot infections and urging them to install the security updates.

Security 109

Security Passwords Access IT 109

WIRED Threat Level

OCTOBER 2, 2021

Plus: A cybersecurity CEO arrest, an Apple Pay hack, and more of the week's top security news.

Cybersecurity 95

Cybersecurity Security 95

Security Affairs

OCTOBER 2, 2021

Threat actors stole funds from the accounts of more than 6,000 users of the crypto exchange Coinbase exploiting a flaw to bypass 2FA authentication. Threat actors have exploited a vulnerability in the SMS-based two-factor authentication (2FA) system implemented by the crypto exchange Coinbase to steal funds from more than 6,000 users. According to a data breach notification letter filed with US state attorney general offices, the attackers with the knowledge of their username and password and ph

Authentication 106

Authentication Data breaches Passwords Phishing 106

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

IT

Data Protection Report

OCTOBER 2, 2021

On October 19, 2021, a federal trial court in South Carolina ruled that a group of consumers could proceed with common law negligence and gross negligence claims directly against their organizations’ vendor that had been the victim of a security breach—instead of suing the organizations of which they were customers. In re Blackbaud, Inc. Customer Data Breach Litigation , Case No.: 3:20-mn-02972-JMC, MDL No. 2972 (D.S.C.

Data breaches 52

Data breaches Personal data Risk Ransomware 52

Troy Hunt

OCTOBER 2, 2021

Lots of little bits and pieces this week in a later and shorter than usual update. See the references for all the details, but plenty of cyber, some IoT weather station discussion and a bit of chatter around career and me deciding I want to do a "Hack Your Career More" talk once we all get back to doing events in person. Stay tuned for that last one in particular!

IoT 21

IoT Encryption Passwords Security 21