Security News > 2020 > May

Australian transportation and logistics giant Toll Group has been hit by a ransomware attack - for the second time in three months. It's the second ransomware attack for Toll Group this year: The company said on Feb. 3 that it was hit by ransomware, leaving customers reporting an impact on operations across Australia, India and the Philippines.

A misconfigured database containing 7 terabytes of sensitive user and company information related to adult live streaming site CAM4 has been found leaking data. The database apparently contains 10.88 billion records, which contain different combinations of sensitive information such as: names, email addresses, usernames, gender preference and sexual orientation, payment information, IP addresses, as well as user and inter-user conversations, chat transcripts between users and CAM4, fraud and spam detection logs, and hashed passwords.

What is happening during this crisis will not just change the landscape in healthcare today-it will change the way that we deliver and experience healthcare forever. So it's imperative that the technology industry come together to help healthcare meet this challenge, both to support the healthcare system when it's needed most, as well as to ensure that new digital infrastructure is implemented the best possible way.

Lancaster found that millions of people are still using their favorite song, sports team, or superhero as their password, all of which are easily discoverable by cybercriminals doing routine searches of a person's social media profiles. Lancaster said the explosion of digital platforms that billions of people have to use for work, education and pleasure have forced people into an untenable situation where they feel they have no choice but to reuse passwords for dozens of accounts.

More than half of the professionals surveyed for Barracuda Networks said their workforce isn't properly trained to handle the risks associated with remote working. A blog post published Wednesday by security provider Barracuda Networks illustrates how and why cybersecurity concerns have increased along with the move to a remote workforce.

The rapid move to remote working has left many businesses more vulnerable to cybersecurity threats, with nearly half saying they've encountered at least one scare as a direct result of the shift. Nearly half of businesses have encountered a cybersecurity scare as a result of the rapid shift to remote working, new research suggests.

Mozilla this week released Firefox 76 to the stable channel with an updated password manager, alerts for breached passwords, and patches for 11 vulnerabilities. Starting with the new release, the browser aims to help users better keep their accounts secure and easily generate strong passwords, courtesy of the new Firefox Lockwise password manager.

The implication is that if the vulnerabilities are known but not fixed, there is a lack of adequate collaboration between the security and IT teams. A full 70% say their company sacrifices data security for faster innovation.

Fresenius, Europe's largest private hospital operator and a major provider of dialysis products and services that are in such high demand thanks to the COVID-19 pandemic, has been hit in a ransomware cyber attack on its technology systems. Based in Germany, the Fresenius Group includes four independent businesses: Fresenius Medical Care, a leading provider of care to those suffering from kidney failure; Fresenius Helios, Europe's largest private hospital operator; Fresenius Kabi, which supplies pharmaceutical drugs and medical devices; and Fresenius Vamed, which manages healthcare facilities.

A new phishing campaign is targeting investment brokers with fraudulent emails aimed at stealing their Microsoft SharePoint and Office credentials, by invoking the identity of a credible financial regulatory organization. The "Widespread, ongoing phishing campaign" is using emails that claim to be from specific officers at the Financial Industry Regulatory Authority, in an attempt to direct investment brokers to give up their Microsoft Office or SharePoint passwords, according to a post on the organization's website.