-
Online Investment Fraud Network Taken Down by Law Enforcement
Online Investment Fraud Network Taken Down by Law Enforcement Bulgarian law enforcement has successfully taken down a network of online investment fraudsters responsible for losses of more than €10m. The operation, supported by Europol and Eurojust, took place on January 26. This resulted in the arrest of one individual by the Bulgarian National Police on…
-
Top 10 Malware December 2021
Post Content Read More
-
“A Journey to Zero Trust With Zero Passwords” – download the free guide now
Graham Cluley Security News is sponsored this week by the folks at HYPR. Thanks to the great team there for their support! The analysts at The Cyber Hut have produced a new guide that explains how Zero Trust can increase business agility, and provides practical guidance for eliminating passwords to accelerate your Zero Trust strategy.…
-
Florida Considers Deepfake Ban
Florida Considers Deepfake Ban Florida is seeking to outlaw the malicious distribution of sexually explicit images without the subject’s consent. New legislation advanced in the Florida Senate Criminal Justice Committee on Tuesday aims to curb the unauthorized digital trafficking of real and deepfake lewd content and establish new regulations around revenge porn. Senate Bill 1798, introduced by senator Lauren Book, would prohibit…
-
Dark Overlord collaborator imprisoned for trading stolen identities
A Canadian man has been handed a three year prison sentence after being found guilty of buying and selling over 1700 stolen identies on a dark web marketplace, and collaborating with the notorious Dark Overlord extortion gang. Read more in my article on the Tripwire State of Security blog. Read More
-
Data Breach at Drug Screening Lab
Data Breach at Drug Screening Lab A configuration error has caused a prolonged data breach at a Florida County’s drug screening laboratory. The security incident occurred at St. Lucie County’s Drug Screening Lab (SLC Lab), which supplies drug testing services for employment, court cases and other purposes. In a statement released January 20 2022, County leaders said…
-
Hacker Flags Flaw in Swiss Railway System
Hacker Flags Flaw in Swiss Railway System An anonymous hacker has raised the alarm after discovering a vulnerability impacting Switzerland’s national railway system. The flaw allowed the hacker to gain access to personal data belonging to around 500,000 individuals who had purchased tickets to ride on Swiss Federal Railways (SFR). After detecting a weak spot…
-
European nations issue record €1.1 billion in GDPR fines
European data protection authorities have issued fines of €1.1 billion ($1.2 billion) under the General Data Protection Regulation (GDPR) since 28 January 2021, according to the annual GDPR Fines and Data Breach Survey by international law firm DLA Piper. The survey—which spanned 27 European Union members, the European Economic Association members Norway, Iceland, and Liechtenstein,…
-
Protecting Privacy Using the CIS Controls Privacy Guide
The CIS Controls Privacy Guide provides best practices and guidance for implementing the CIS Critical Security Controls (CIS Controls) while considering the privacy impacts on the workforce, customers, and third-party organizations such as contractors. Read More
-
Access broker found exploiting Log4j vulnerability in VMware
A gang of cybercriminals known for breaking into computer systems and selling access to them has been discovered exploiting an Apache Log4j vulnerability, Log4Shell, in unpatched VMware Horizon to plant cryptominers and backdoors on targeted systems. In a blog published Wednesday, Blackberry’ researchers Ryan Gibson, Codi Starks and Will Ikard revealed that Prophet Spider was…