ÃÛÌÒTV

Data Security 07-29-2016

This Month in SSL: July 2016

Mark Santamaria

Here is our latest news roundup of articles about network and SSL security. ( to see the whole series.)

Data Security

  • Mozilla Firefox announced that they plan to from its browser in the next few months, which is sooner than what they previously planned.
  • Some related apps can steal contact lists, photos, and login credentials.

Data Breaches

  • A data breach at the exposed PII of 4,300 patients.
  • experienced a data breach, exposing usernames, email addresses, and IP addresses for 2 million users.
  • Hackers stole account details for 1.6 million forum members.
  • notified users and admins that they suffered a data breach. They urged users and admins to change login credentials.

Vulnerabilities

  • Adobe’s latest batch of bundles that allowed remote code execution.
  • Oracle patched in over 80 of their products in what is the largest bundle of patches for the company to date.
  • patched several vulnerabilities in their central management system.
  • in SAP HANA and SAP Trex could give an attacker access to sensitive business information.
  • in their operating system, one of which could grant an attacker administrative access to devices.
  • patched the remote execute command vulnerability in its Unified Computing System.
  • fixed a newly discovered remote execution flaw in their products.
  • A affected more than 400,000 devices.
  • A in printers could lead to malware installation.

Malware

  • AVG created six to help combat increasing ransomware attacks.
  • It doesn’t matter if victims pay the ransom, this new ransomware deletes encrypted files regardless.
  • not only encrypts files, but also encrypts the master boot record so devices are unable to load the OS.
  • One steals financial login data and keeps victim from contacting their bank.
  • targets security researchers using Mac.
  • Security researchers discovered a that targets energy companies.

Cybercrime

  • A group of hackers targeted servers to find exact location of pokemon.
  • After being shut down in June, a site that offers access to compromised servers, is now back online.
  • noted that recent DDoS attacks could mean criminals will attack with increasingly longer campaigns.

IoT

  • The automotive industry published its first cybersecurity .
  • Police report a in car thefts where criminals use electronic device to steal vehicles.
  • Arbor Networks' ASERT group discovered and then using them to launch DDoS attacks.

Healthcare

  • from the U.S. Department of Human Services addresses the growing threat ransomware poses for healthcare organizations.

Research & Studies

  • Over half of organizations privileged accounts.
  • The found that 72% of respondents feel they will experience a major data breach within a year.
  • Over half of small to medium-sized businesses were victims of a data breach in the last year, according to a .
  • An revealed that 29% of web traffic is from malicious bots.
  • Payment card fraud is on the rise. One showed one in three consumers is victimized worldwide.

Events

  • is returning for its 19th year in Las Vegas. The cybersecurity conference will begin July 30th and go to August 2nd.
UP NEXT
PKI

3 Surprising Uses of PKI in Big Companies and How to Ensure They Are all Secure

5 Min

Featured Stories

07-03-2024

What is a CA’s Role in delivering digital trust?

11-27-2024

6 actionable ways to secure the IIoT at every stage

Tracking the progress toward post-quantum cryptography

The state of PQC since the publication of FIPS 203, 204 and 205