Posts

Unprotected MongoDB database found containing over 188m personal data records

July 09, 2019 — A large number of personal data records found in the unprotected MongoDB database contained detailed information ranging from people’s names, email addresses, dates of birth, phone numbers, religion, and political affiliations sourced from Pipl.com and LexisNexis. Exposed personal data records could help hackers in carrying out identity fraud says Lisa Baergen, Director at NuData Security. “Data in the wrong hands can have a huge impact on consumers. The type of data exposed in this breach can

Read More >

Lack of cyber training leaving employees vulnerable to phishing attacks

June 27, 2019 — Dedicated cyber security training imparted to employees by organisations for periods ranging from ninety days to up to twelve months show marked improvements in their ability to detect and to respond to phishing attacks, a new study has found.Here’s what Robert Capps had to say on this: “No matter how much cybersecurity solutions advance, the human element remains the main vulnerability and often it’s simply because people are trying to be thorough and perform their work

Read More >

Bot fraudsters give human ones a run for their money

June 17, 2019 — With artificial intelligence added into the mix, bots are now able to mimic humans with greater accuracy, and make it look like someone is actually interacting with a form on a web page, creating a greater fraud risk. The cybercrime economy is estimated to reap $1.5 trillion in profits a year, according to a Bromium/Ponemon study. Those profits are in part achieved by bots and botnets, the automated workers of the internet.Here’s what Robert Capps had

Read More >

UK Companies Lose 2.5 Months Per Year Dealing With Poor Password Management

June 14, 2019 — It has been reported that businesses in the UK lose an average of two-and-a-half months per year in time spent dealing with poor password management, according to new research. As detailed in its report Password Practices 2019, OneLogin surveyed 600 global IT professionals to gauge how companies are protecting passwords in terms of tools, guidelines and practices.Here’s Justin Fox’s take on the issue: “While password-based authentication is irrevocably broken for authentication of users – whether employees

Read More >

Why rewards programs are a new cyber threat

May 21, 2019 — According to Don Duncan, if your client offers loyalty and rewards programs, they may want to keep a closer eye on securing these “non-traditional risk points” from cyber criminals. Earlier this year, several McDonald’s customers in Canada complained that criminals had breached their accounts on the restaurant chain’s loyalty app and placed unauthorized orders, some totaling more than $1,000, according to media reports. “If online companies are only monitoring the outcome of purchases and transactions, they

Read More >