ÃÛÌÒTV

Breaches 02-26-2016

This Month in SSL: February 2016

Mark Santamaria

Here is our latest news roundup of articles about network and SSL security. ( to see the whole series.)

SSL & Encryption

  • To address the SSL migration dates and the expanding threat landscape, the will be releasing earlier than the usual fall release.

Data Security in General

  • The first hacker to be charged with charges appeared in court in the Eastern District of Virginia.
  • A recently stole and posted personal information for 9,000 Department of Homeland Security employees. The hacker later announced that he will be releasing 20,000 records for FBI employees.
  • announced that they will ban Adobe Flash starting January 2, 2017.
  • Last year announced that Chrome’s Safe Browsing would show warnings for social engineering tactics contained within websites. Google stated that the warnings will now warn users of malicious embedded content, such as advertisements.

Data Breaches

  • The experienced a data breach where hackers accessed SSNs of 63,000 current and former students and employees.
  • regulation and caused a data breach at Washington State Medicaid.

Vulnerabilities

  • A (ASA) software could leave users vulnerable to remote attacks. Following the discovery of the flaw, Cisco released a patch and is advising users to update as soon as possible.
  • A allows malware to circumvent the analysis engine and be whitelisted.
  • Because of a , a caching proxy, attackers are able to perform a DDoS attack when connected to a SSL server.
  • A exposed email addresses and phone numbers of 10,000 Twitter users.

Malware

  • An turned the tables on banking malware distributors by replacing the malware with a free antivirus program.
  • lays in wait for Android users in app stores.
  • with malware. After the malware locked the hospital’s system for ten days, the hospital decided to pay the $17,000-dollar ransom.

Cybercrime

  • . Fortunately, the IRS stated that the hackers did not access compromise taxpayers’ personal information.
  • users with phishing emails, attempting to lure users to a spoofed site where they are directed to enter their login and credit card credentials.

Research & Studies

  • In a survey by , Americans stated that they are more worried about online privacy than they are about losing their main income.
  • According to a study, 50% of data breaches resulted in passwords and email addresses being exposed in 2015.
  • Malware distributed through phishing scams was ranked as the major cause of bank data breaches, according to a study by .
  • Because of healthcare data breaches in 2015 patients are reluctant to share information with medical professionals, according to a new .
UP NEXT
PKI

3 Surprising Uses of PKI in Big Companies and How to Ensure They Are all Secure

5 Min

Featured Stories

07-03-2024

What is a CA’s Role in delivering digital trust?

11-27-2024

6 actionable ways to secure the IIoT at every stage

Tracking the progress toward post-quantum cryptography

The state of PQC since the publication of FIPS 203, 204 and 205