Is your e-commerce site being used to test stolen card data?

Posted on March 30th, 2019 by Responsible Cyber

by John E Dunn An unspecified weakness in some versions of the Magento e-commerce platform is reportedly being misused by carding criminals to surreptitiously test the validity of stolen, leaked or skimmed credit and debit cards. That’s according to news site ZDNet, which said it had seen an advisory from Magento which, frustratingly, doesn’t appear […]

Read More

What are DMARC, SPF and DKIM? How to master email security with these protocols

Posted on March 29th, 2019 by Responsible Cyber

Despite making some progress, a trio of email security protocols has seen a rocky road of deployment in the past year. Going by their acronyms SPF, DKIM and DMARC, the three are difficult to configure and require careful study to understand how they inter-relate and complement each other with their protective features. The effort, however, […]

Read More

Facebook Employees for Years Could See Millions of User Passwords in Plain Text

Posted on March 24th, 2019 by Responsible Cyber

2,000 Facebook engineers or developers reportedly made some nine million internal queries for data elements with plain text passwords. An internal Facebook investigation has found between 200 million and 600 million of its users may have had their account passwords stored in plain text for years, meaning they could have been searched and accessed by […]

Read More

Google Will Prompt European Android Users to Select Preferred Default Browser

Posted on March 24th, 2019 by Responsible Cyber

Google announced some major changes for its Android mobile operating system in October after the European Commission hit the company with a record $5 billion antitrust fine for pre-installing its own apps and services on third-party Android phones.The European Commission accused Google of forcing Android phone manufacturers to “illegally” tie its proprietary apps and services—specifically, […]

Read More

New WordPress Flaw Lets Unauthenticated Remote Attackers Hack Sites

Posted on March 14th, 2019 by Responsible Cyber

If for some reason your WordPress-based website has not yet been automatically updated to the latest version 5.1.1, it’s highly recommended to immediately upgrade it before hackers could take advantage of a newly disclosed vulnerability to hack your website.Simon Scannell, a researcher at RIPS Technologies GmbH, who previously reported multiple critical vulnerabilities in WordPress, has […]

Read More

How to protect against poor Windows password practices

Posted on March 14th, 2019 by Responsible Cyber

Hardly a day that goes by before some website reports a credential-stuffing attack where harvested usernames and passwords are used to gain access to sensitive information. Lately it was tax software site TurboTax where attackers accessed users’ tax information. This underscores the risk of password reuse. Organizations need a strong password policy to encourage good […]

Read More

IoT, APIs, and Criminal Bots Pose Evolving Dangers

Posted on March 1st, 2019 by Responsible Cyber

A pair of reports reach similar conclusions about some of the threats growing in cyberspace and the industries likely to be most affected. A pair of research reports released today paint a picture of a cyberthreat landscape that is continuing to evolve in ways both expected and not. The reports, released by Netscout and Akamai, […]

Read More

Turkish Group Using Phishing Emails to Hijack Popular Instagram Profiles

Posted on March 1st, 2019 by Responsible Cyber

In some cases, attackers have demanded ransom, nude photos/videos of victims in exchange for stolen account, Trend Micro says. A group of Turkish-speaking hackers is hijacking popular Instagram profiles, including those belonging to actors and singers, and, in some cases, promising to turn back control to the victims in exchange for a ransom or nude photos […]

Read More

6 Tax Season Tips for Security Pros

Posted on February 20th, 2019 by Responsible Cyber

Here are some practical ways to keep your company safe as Uncle Sam comes calling. 1 of 7 (Image: Artur � Adobe Stock) The tax season has arrived, which means security pros should be on the lookout for tax-related phishing and vishing scams. According to the IRS, last year saw a 60% increase in bogus […]

Read More

Prep for The Next Cybersecurity Arms Race at Black Hat Asia

Posted on February 20th, 2019 by Responsible Cyber

Don’t miss out on some of the world-class Briefings and Trainings on offer for cybersecurity professionals concerned about the most pressing threats of 2019. As you get ready for Black Hat Asia in Singapore next month, organizers want to ensure you don’t miss out on some of the Briefings and Trainings for cybersecurity professionals concerned […]

Read More