Week In Tech: Another day, another breach
Well, here we are again. It seems like every time you check the news these days there are reports of another cyber-attack. More and more details of the Equifax breach have been coming to light this week– including news that the beleaguered credit reporting agency has admitted that over half a million customers in the UK also had their data stolen during the most controversial breach of this year. We thought we’d take a look at some of this week’s most pressing cybersecurity stories.
Jeremy Fleming, former head of MI5 and current head of GCHQ has warned that fighting off cyberattacks is now as important as GCHQ’s spying efforts and defending against terrorism. Writing for the Telegraph he wrote, “Protecting the digital homeland – keeping our citizens safe and free online – must become and remain as much part of our mission as our global intelligence reach and our round-the-clock efforts against terrorism.”
The City of London has announced plans for a new centralised court complex with a focus on fraud and cyber-crime, in an effort to uphold London’s reputation as an international legal centre post-Brexit. The Square Mile is set to get a new judicial centre, replacing all of the City’s current courts except the Old Bailey, to be located in the Fleet Street area.
Israeli intelligence hacked Russian security firm Kaspersky two years ago and found US National Security Agency (NSA) tools on its network, according to the New York Times. Furthermore, the newspaper claims that the Israelis promptly informed US intelligence of its findings, and reiterated suggestions made last week that Kaspersky uses its anti-virus software to scan users’ PCs for classified information.
Millions of Pornhub users were targeted with a malvertising attack that sought to trick them into installing malware on their PCs, according to infosec firm Proofpoint. By the time the attack was uncovered, it had been active “for more than a year”, Proofpoint said, having already “exposed millions of potential victims in the US, Canada, the UK, and Australia” to malware by pretending to be software updates to popular browsers.
Netflix users beware — a new phishing scam targeting users of the popular streaming app has been spotted by security experts. The cybercriminals behind the campaign are targeting users’ personal as well as business emails, in hopes of harvesting their personal and corporate credentials.
The phishing campaign also tricks users into divulging their credit card data, which can then be used by the scammers to steal money. The stolen credentials can be used by the cyber-criminals to access other accounts, in case victims have reused passwords. The stolen data could also likely end up for sale on the dark web.
Stay safe out there, kids.