Sat.Jul 20, 2019 - Fri.Jul 26, 2019

What You Should Know About the Equifax Data Breach Settlement

Krebs on Security

Big-three credit bureau Equifax has reportedly agreed to pay at least $650 million to settle lawsuits stemming from a 2017 breach that let intruders steal personal and financial data on roughly 148 million Americans.

Equifax Negotiates Potential $700 Million Breach Settlement

Data Breach Today

Deal Prepped With Feds and State Attorneys General Includes Victim Compensation Credit reporting giant Equifax has negotiated a proposed settlement that could reach $700 million to resolve federal and state probes into its massive 2017 data breach, as well as a nationwide class action lawsuit.

0v1ru$ hackers breach FSB contractor SyTech and expose Russian intel projects

Security Affairs

SyTech , a contractor for the Federal Security Service of the Russian Federation (FSB) has been hacked, attackers stole data about interna l projects.

Hackers Expose Russian FSB Cyberattack Projects

Schneier on Security

More nation-state activity in cyberspace, this time from Russia : Per the different reports in Russian media, the files indicate that SyTech had worked since 2009 on a multitude of projects since 2009 for FSB unit 71330 and for fellow contractor Quantum.

Top 10 industries for monetizing data: Is yours one of them?

Find out which industries, use cases, and business applications are the best opportunities for data monetization. Understand what data is being monetized, who wants it, and why. Use data you already own to create new revenue sources. Download the eBook today!

NEW TECH: Early adopters find smart ‘Zero Trust’ access improves security without stifling innovation

The Last Watchdog

As we approach the close of the second decade of the 21 st century, it’s stunning, though perhaps not terribly surprising, that abused logon credentials continue to fuel the never-ending escalation of cyber attacks. Related: Third-party risks exacerbated by the ‘gig economy’ Dare we anticipate a slowing — and ultimately the reversal – of this trend? Yes, I believe that’s now in order.

Access 117

More Trending

New APT34 campaign uses LinkedIn to deliver fresh malware

Security Affairs

The APT24 group continues its cyber espionage activity, its members were posing as a researcher from Cambridge to infect victims with three new malware. Experts at FireEye have uncovered a new espionage campaign carried out by APT34 APT group ( OilRig , and HelixKitten. Greenbug ) through LinkedIn.

Browser Extensions Scraped Data From Millions of People

WIRED Threat Level

Slack passwords, NSO spyware, and more of the week's top security news. Security Security / Security News

Bring your own identity (BYOI): New models of digital identity

Information Management Resources

As digital business grows across all industries, and data privacy continues to pose a significant risk to enterprises, the growing need for security includes a reliance on trust in digital identities. Digital ID Personally identifiable information Data types

Risk 106

Ex-NSA Contractor Harold Martin Hit With 9-Year Sentence

Data Breach Today

Pleaded Guilty to Stealing Files From NSA, CIA, US Cyber Command Former government contractor Harold Thomas Martin III has been sentenced to serve nine years in federal prison after he pleaded guilty to stealing and retaining classified and secret files and data from U.S.

The Key to Strategic HR: Process Automation

Do you want to automate your HR processes, but don’t know where to start? In this eBook, PeopleDoc explores which processes benefit the most from automation, and how an HR Service Delivery platform can help get things off the ground.

Emsisoft releases a second decryptor in a few days, this time for ZeroFucks ransomware

Security Affairs

Security experts at Emsisoft released a second decryptor in a few days, this time announced a free decryptor for the ZeroFucks ransomware.

Adware Is the Malware You Should Actually Be Worried About

WIRED Threat Level

For all the attention on sophisticated nation-state attacks, the malware that’s most likely to hit your phone is much more mundane. Security Security / Security News

Halfway Through: How Are My Predictions 2019 Shaping Up?

John Battelle's Searchblog

I like to keep myself honest when it comes to predictions. Now that six months of 2019 are in the books (well, nearly seven given how intermittent my postings have been this year), it’s time to see how things are tracking.

Recent DNS Hijacking Campaigns Trigger Government Action

Data Breach Today

US and UK Agencies Respond to Increasing Attacks A recent spate of attacks targeting domain name system protocols and registrars, including several incidents that researchers believe have ties to nation-state espionage, is prompting the U.S. and U.K.

Embedded BI and Analytics: Best Practices to Monetize Your Data

Speaker: Azmat Tanauli, Senior Director of Product Strategy at Birst

By creating innovative analytics products and expanding into new markets, more and more companies are discovering new potential revenue streams. Join Azmat Tanauli, Senior Director of Product Strategy at Birst, as he walks you through how data that you're likely already collecting can be transformed into revenue!

Hackers breach 62 US colleges by allegedly exploiting Ellucian Banner Web flaw

Security Affairs

Hackers breached at least 62 college and university networks exploiting a flaw in Ellucian Banner Web Tailor, a module of the Ellucian Banner ERP.

$700 Million Equifax Fine Is Still Too Little, Too Late

WIRED Threat Level

For failing to safeguard Social Security numbers, credit card numbers, and more, Equifax will pay up—but not enough, experts say. Security Security / Security News

Lack of digital standards making data management increasingly complicated

Information Management Resources

With no international alignment on how to regulate the digital environment, organizations are managing an increasingly complicated set of conflicting rules in key markets. Digital transformation Data strategy Data management

Ireland Assessing Minors' Profiles on Instagram

Data Breach Today

Data Scientist Files Reports With European Regulators Ireland's Data Protection Commission says it is "assessing" a report concerning minors who have business profiles on Instagram that may expose email addresses and phone numbers.

Data 147

Kazakhstan wants to intercept all HTTPS Internet traffic of its citizens

Security Affairs

Bad news for citizens of Kazakhstan, the government is beginning to intercept all the encrypted traffic, and to do it, it is forcing them to install a certificate.

Robert Mueller's Testimony: What Congress Needs to Know

WIRED Threat Level

Here’s what members of Congress should know before they question the former special counsel. Security Security / National Security

OpenText automates invoicing for Rosneft Deutschland

OpenText Information Management

OpenText™ recently announced that Rosneft Deutschland GmbH, Germany’s third largest crude oil refiner and a major wholesaler of petroleum products, has deployed OpenText Business Network solutions to help accelerate invoicing automation.

B2B 61

2.3 Billion Files Exposed Online: The Root Causes

Data Breach Today

Misconfigured file storage technologies and a lack of basic security controls are the root causes for the inadvertent online exposure of 2.3 billion files worldwide that contain personal information, including sensitive medical data, says Harrison Van Riper, a security researcher at Digital Shadows

Twitter account of Scotland Yard hacked and posted bizarre messages

Security Affairs

The principal Twitter account of Scotland Yard, which has more than 1.2 million followers, was hacked and tweeted a series of bizarre messages on Friday night.

Happy Apollo Day!

Adam Shostack

Today is the 50th Anniversary of “One small step for a man, one giant leap for mankind.” ” It’s an event worth celebrating, in the same way we celebrate Yuri’s Night. The holy days — the holidays — that we celebrate say a great deal about us.

Loading Data into Oracle Autonomous Data Warehouse using OAC

Perficient Data & Analytics

In this blog post I will show you some exciting functionality that is available in Oracle Analytics Cloud (OAC). It is the kind of functionality that you rarely see in front end reporting and visualizations platforms – either before the Cloud or even after the advent of the Cloud.

Sales 59

Critical RCE Flaw in Palo Alto Gateways Hits Uber

Threatpost

The bug is previously unknown but yet still fixed in later releases. However, many organizations are likely still vulnerable. Cloud Security Vulnerabilities critical vulnerability CVE-2019-1579 gateway global protect Palo Alto remote code execution ssl vpn uber

Cloud 84

WizzAir informed customers it forced a password reset on their accounts

Security Affairs

The airline company WizzAir informed its customers that it had reset the account passwords due to a technical issue in the system. The airline company WizzAir had reset the account passwords of its users due to a technical issue in its system.

The Marines’ New LMADIS Drone-Killer Aced Its First Test

WIRED Threat Level

Last week’s US strike of an Iranian drone is the first reported successful use of LMADIS, the Marines’ new energy weapon. Security Security / National Security

IT 56

6 Actions that Made GDPR Real in 2019

Dark Reading

In the wake of recent fines levied against British Airways, Marriott, and Facebook, companies are starting to take data privacy and security more seriously

Large-Scale Government Hacks Hit Russia, Bulgaria

Threatpost

The Bulgarian attack impacted almost all tax information for the entire country. Breach Government Hacks Privacy Bulgaria Cyberattacks FSB russian security agency secret projects tax information

WSJ says Equifax to Pay $700 million settlement for 2017 breach

Security Affairs

The Wall Street Journal revealed that Equifax will pay around $700 million to settle with the Federal Trade Commission over the 2017 data breach. According to The Wall Street Journal, Equifax will pay around $700 million to settle with the Federal Trade Commission over the 2017 data breach.

IT 71

Clouds and containers are not all about what’s new and hot

DXC Technology

This past Spring at London’s OpenInfra Days UK 2019, Mark Shuttleworth, executive chairman at Canonical and creator of Ubuntu Linux, said in a keynote, “I believe OpenStack is important. It’s become trendy to say: ‘I’m skipping OpenStack and going straight to Kubernetes.’ ’ It’s like skipping salad and going straight to steam – they both solve […]. Applications Cloud DevOps cloud cloud computing containers IaaS Kubernetes OpenStack

Cloud 55