#privacy: Bold.com exposes thousands of records

Bold.com, a company that provides solutions that help jobseekers find jobs, and employers find people, exposed part of its internal infrastructure. In a blog post, security researcher Bob Diachenko discovered the unprotected Elasticsearch cluster on August 10.  The cluster contained thousands of records which belonged to the company’s infrastructure team and was not intended to […]

#privacy: Instagram vulnerability exposing user data is now fixed

Facebook confirmed that a security vulnerability on Instagram put users data at risk leaving them open to attacks.  Israeli hacker, @ZHacker13  discovered the flaw, and found that it would allow threat actors access to user’s account details, names and phone numbers. Essentially the security on Instagram was being bypassed.  In a report by Forbes, the […]

#privacy: A third of security pros have admitted to bypassing security checks

Research by Outpost24 found that companies are facing increasing pressure to release applications faster to meet demands.  The survey of 300 security leaders found that 34% of organisations admit to bypassing security checks to get products out to market faster, therefore putting customers at risk of attack.  Alarmingly, 64% of organisations believe that their customers […]

#privacy: BEC scams cost organisations $26 billion

In a Public Service Announcement, the FBI found that Business Email Compromise (BEC) scams continue to grow and evolve.  In the announcement it was revealed that between June 2016 and July 2019, BEC scams have cost organisations worldwide £26,201,775,589. The total is based on complaints reported to the FBI’s Internet Crime Complaint Center (IC3).  The […]

#privacy: Research reveals the unlikely targets of business network hacks

Research by Probrand found that 43% of UK businesses have suffered a data breach in the past year. The survey of 1,075 UK workers in full or part-time employment, found that 72% of companies who suffered a data breach in the past year found that network infiltration had came from an unsecured wireless device, such […]

#privacy: U.S Secret Service investigates breach at federal IT contractor

The Secret Service is conducting an investigation into a breach at a Virginia-based government technology contractor. In a report by KrebsOnSecurity the breach resulted in several of the contractor’s systems seen put up for sale in the cybercrime underground.  In the middle of August, within a Russian-language cybercrime forum a member had offered to sell […]

#privacy: Database exposed over 190 million records online

A non-password protected database containing a total of 198 million records and 413GB of data was discovered on August 19.  Security researcher, Jeremiah Fowler, had come across the dataset several times but was unable to identify the owner. The dataset was “a compilation of potential car buyers wanting more information, loan and finance inquiries, vehicles […]

#privacy: Research reveals rapid increase in monetisation of IoT attacks

In a report released by Trend Micro, it was found that cybercriminals are focusing their attention to hacking Internet of Things (IoT) devices. The “Internet of Things in the Cybercrime Underground” report explained how IoT devices are increasingly being utilised within homes and businesses to improve user experience and services, therefore it becomes an “irresistible […]

#privacy: UK government’s request for user data sparks serious concerns

It has emerged that Downing Street has ordered departments to collect and share “targeted and personaliSed information” on users that visit the GOV.UK portal.   Although officials have insisted that the move to start sharing data was solely to improve the service and that no personal details are being collected, many have raised concerns about the […]

#privacy: Menstruation-tracking apps found sharing user data with Facebook

Privacy International (PI) has found that period-tracking apps have been sharing the intimate data of users to third-party services.  In a new report by the UK-based privacy watchdog, out of the 36 apps that were tests, it was identified that 61% of them automatically transfer data to Facebook the instance a user opens the app.  […]