Security News

Independent record label Burning Shed has informed musos of a digital burglary involving the partial theft of its customer database, though no payment records were accessed. The advice to customers with poor security hygiene is that if they used their Burning Shed password on multiple accounts with different vendors, do the right thing immediately and update them.

The fact ís that yoü were ínfected wíth malware throügh an adült síte that yoü vísíted. Íf yoü are not famílíar wíth thís, wíll explaín.

The Terbium team reckons that these guides, which help newbie crooks through the process of things like setting up bank fronts, crafting phishing emails and stealing money out of victim accounts, make up just under half of all data transactions on the store. "What they have in common is detailed information on how to export an organization's current policies," Terbium Labs said of the guides.

The San Francisco International Airport disclosed this week two of its websites had been hacked and lead to the disclosure of some users' login credentials at both sites. "The attackers inserted malicious computer code on these websites to steal some users' login credentials," according to a message posted to both site's homepages by the SFO's Airport Information Technology and Telecommunications director.

Sophos experts discuss the biggest cybersecurity stories of the last week.

Dan Patterson speaks to cybersecurity expert Robert Lee about the capabilities of Russian hackers as well as the risks IoT and industrial IoT pose to smart cities. CNET and CBS News Senior Producer Dan Patterson spoke with cybersecurity company Dragos, Inc., Founder and CEO Robert Lee about the risks emerging technologies like IoT pose to smart cities and their infrastructures as well as Russia's involvement with hacking US elections.

Dragos, Inc., Founder & CEO Robert Lee talks to Dan Patterson about the risks of IoT as well as the capabilities of Russian hackers.

A rival hacking forum has yet again hacked OGUsers - the second time in a year - and yet again doxxed its database for one and all to grab, fast on the heels of the attack. OGUsers is a forum devoted to trading stolen Instagram, Twitter and other accounts, with a special place in its dark heart for hackers who like to trade SIM swappers' stolen phone numbers and Bitcoin accounts.

Turns out merely visiting a website - not just malicious but also legitimate sites unknowingly loading malicious ads as well - using Safari browser could have let remote attackers secretly access your device's camera, microphone, or location, and in some cases, saved passwords as well. "If the malicious website wanted camera access, all it had to do was masquerade as a trusted video-conferencing website such as Skype or Zoom," Pickren said.

We may have to get the government involved to require certain standards to be met via some sort of security framework. The first thing you have to realise is a "Top down" approach to security does not work for a whole heap of reasons.