RSS_Virtulization

Victims of the two British Airways (BA) data breaches in 2018 have been granted an additional two months to file a compensation claim after the Group Litigation Order (GLO) window was extended. The claims relate to two breaches recorded back in 2018: between August and September 2018, it was revealed that 380,000 transactions were compromised and later, 185,000 customers were notified that their personal and financial details were exposed between April and July 2018. Data compromised included…

A widely reported data breach from last year at Foxtons Group was due to a ransomware attack by the Egregor group, according to threat intelligence experts. The incident made the news this week after reports revealed a customer of the high street estate agent discovered a large number of customers’ personal and financial info on the dark web. This reportedly included over 16,000 card details, addresses and private messages, discovered by the individual on October…

Strategies for enabling the effective use of AI technologies in cyber-defense were highlighted by a panel of experts during the RSAC 365 webinar ‘AI Meets Cybersecurity: Crossing the Streams and How to Manage the Dynamic Results.’ The panellists firstly outlined the fact that the growth in AI tools has negative as well as positive connotations. While organizations are increasingly using AI to detect and predict threats across their networks, such tools are also readily available to cyber-criminals to…

The UK’s financial regulator was bombarded with nearly a quarter of a million malicious emails in the final quarter of 2020, FOI data has revealed, highlighting the continuous pressure high-profile organizations are under to protect their assets. Litigation firm Griffin Law filed the FOI request with powerful London-based body the Financial Conduct Authority (FCA). It revealed that the FCA was hit with 238,711 malicious and unsolicited emails over the final three months of 2020, averaging…

A French cybersecurity company with government clients revealed this week that an unauthorized third party has stolen customer data and some of its source code. Airbus subsidiary Stormshield counts the French government among its public sector client list. It claimed that attackers targeted a customer portal used by customers and partners to manage support tickets. “Personal data and technical exchanges associated with certain accounts may have been consulted. We immediately alerted the account owners on…

Affected by a Data Breach? Here Are Security Steps You Should Take We share personal information with companies for multiple reasons: to pay for takeout at our favorite restaurant, to check into a hotel, or to collect rewards at the local coffee shop.  While using a credit card is convenient, it actually gives away more personal data than we may realize. ShinyHunters Breach Last week, the hacker, ShinyHunters, leaked information from companies including Pixlr.com, Bonobos.com,…

Jack Wallen walks you through the manual process of installing ModSecurity for NGINX on Ubuntu Server 20.04. Image: iStock/sdecoret ModSecurity is the most widely-used and respected web application firewall for open source web servers. It can be used with both Apache and NGINX to provide protection from a number of HTTP attacks (such as SQL injections and cross-site scripting) against web-based applications like WordPress and Nextcloud. In other words, this module should be considered a…