Cyberthreat News – A Look at the Latest Cyberthreat News
A look at the latest Cyberthreat News, including a new phishing attack vector, data breaches in retail and more.
Ninety-five percent of breached records came from three industries in 2016 – government, retail and technology. It’s not because these sectors are less diligent with protecting customer information – they just attract the most sophisticated hackers. The UK pension schemes of Marks and Spencer, Diageo and Unilever were among the latest businesses to fall victim to attacks targeting a data storage system run by outsourcing supplier Capita. The firm says it has lost tens of millions of pounds to specialist professional fees, recovery costs and investment in its cybersecurity systems to restore services after the hack.
A flaw in the Cisco SD-WAN vManage management software could allow attackers to retrieve configuration information from vulnerable instances. The BlackLotus UEFI bootkit source code has been published on GitHub, with security experts warning of risks to industrial organizations. New research enables users to search for information without revealing their queries, based on a method 30 times faster than previous techniques.
MIT Sloan’s Keri Pearlson explains why boards need to deepen their cybersecurity competencies as the fight against escalating cybercrime becomes increasingly complex. Plus, Apple security expert Patrick Wardle discusses how the company’s latest mobile operating system protects against a growing list of exploits and attacks. And Bugcrowd Founder Casey Ellis talks about COVID-19 and how bug bounty programs are evolving as the pandemic impacts consumers.