Security News

Verizon has released its annual Data Breach Investigations Report, which offers an overview of the cyber security incidents and data breaches that happened in/were discovered in the past year. The majority of data breaches are caused by credential theft, social attacks and errors.

The majority of data breaches are for financial gain-up from 71% in 2019, the annual report found. "We're seeing an awful lot of misconfiguration of cloud applications that actually makes the data that's housed in these cloud applications more susceptible to theft," Loveland said.

Demonstrating the fear and trust issues experienced by IT professionals, the study found that IT professionals are more concerned about the security of their company's data than the security of their own home. 78 percent of organizations use more than 50 discrete cybersecurity products to address security issues; 37 percent use more than 100 cybersecurity products.

The number of workforce identities in the enterprise is growing dramatically, largely driven by DevOps, automation, and an increase in enterprise connected devices, which will only continue to accelerate identity growth, an IDSA survey of 502 IT security and identity decision makers reveals. According to the study, the vast majority of IT security and identity professionals have experienced an identity-related breach at their company within the past two years, with nearly all of them reporting that they believe these breaches were preventable.

A recent report from information security firm Netwrix, shows how educational facilities are vulnerable to data breaches and what they can do to better defend themselves. A special section and press release focused on the educational sector, specifically on how data sharing poses a risk.

The total number of publicly reported breaches in Q1 2020 has decreased by 58% compared to the same period last year, Risk Based Security reveals. Publicly reported breaches in Q1 2020 drop dramatically compared to 2019.

A group of hackers has started to advertise on the dark web data allegedly stolen as a result of multiple recent breaches, including ones that affected Tokopedia, Styleshare, Minted, ChatBooks, and others. Known as "Shiny Hunters," the group recently claimed responsibility for hacking Tokopedia, Indonesia's largest online store, and claimed last week to have breached Microsoft's GitHub account.

Ermetic, the cloud access risk security company, emerged from stealth mode and announced an analytics-based solution that prevents cloud data breaches by automating the detection and remediation of identity and access risks in Infrastructure as a Service and Platform as a Service offerings from Amazon, Google and Microsoft. Analyze all access activity to detect and alert on privilege escalation, suspicious access and data deletion indicative of credential theft or abuse.

Ermetic, the cloud access risk security company, emerged from stealth mode and announced an analytics-based solution that prevents cloud data breaches by automating the detection and remediation...

UPDATE. GoDaddy, the world's largest domain name registrar, is warning customers that attackers may have obtained their web hosting account credentials. The company said that the breach only affected hosting accounts, not general GoDaddy.com customer accounts, and that no customer data in the main accounts was accessed.